Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/8SsU7-3IgNhL-RKplE66RkGpMLw.roa
File: 8SsU7-3IgNhL-RKplE66RkGpMLw.roa (raw, json)
Hash identifier: 7vNBxFWkTmZgciyQOPRnt5iKP3hpF4Jb9TwCIA6ggDk=
Subject key identifier: F1:2B:14:EF:ED:C8:80:D8:4B:F9:12:A9:94:4E:BA:46:41:A9:30:BC
Certificate issuer: /CN=6c4c7986b182ecc36ad74c535beae7299b35ce92
Certificate serial: 018510709B33795031342AF3386415B6F718
Authority key identifier: 6C:4C:79:86:B1:82:EC:C3:6A:D7:4C:53:5B:EA:E7:29:9B:35:CE:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bEx5hrGC7MNq10xTW-rnKZs1zpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/8SsU7-3IgNhL-RKplE66RkGpMLw.roa
Signing time: Wed 14 Dec 2022 11:41:33 +0000
ROA not before: Wed 14 Dec 2022 11:41:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33387
IP address blocks: 141.11.107.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:10:70:9b:33:79:50:31:34:2a:f3:38:64:15:b6:f7:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c4c7986b182ecc36ad74c535beae7299b35ce92
Validity
Not Before: Dec 14 11:41:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f12b14efedc880d84bf912a9944eba4641a930bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:46:62:b8:03:71:89:8a:c3:61:e2:92:78:79:
1a:46:bf:67:7e:8f:96:13:60:19:62:e2:3a:29:f6:
33:83:e9:c4:ca:b7:56:e6:7f:4c:4d:1c:20:fa:b8:
8c:cf:fa:43:66:cd:ef:19:e6:e2:1c:47:7a:1c:ef:
85:0f:0d:c5:42:ae:88:de:56:79:62:8b:42:2e:a6:
3b:72:55:eb:ed:eb:bc:e3:97:18:5c:aa:42:50:97:
68:46:a5:29:ee:f4:5a:9d:de:39:18:53:aa:ce:28:
f3:e9:85:53:9c:97:87:46:dc:62:bb:89:2c:0c:dc:
58:32:50:b6:8c:a2:65:3e:04:d9:a1:34:0c:59:44:
b8:9b:0d:3d:5e:0a:5f:a4:b3:d0:c2:60:68:93:8e:
5e:7f:50:52:cd:c1:dd:78:b4:b4:1c:e6:0e:87:94:
66:27:b5:ae:cb:b8:ee:a1:86:59:25:3c:88:65:50:
62:ba:2a:5b:b6:0e:7a:51:2e:c8:29:94:08:db:08:
23:55:bf:ac:76:77:d0:94:c9:1d:cd:6b:49:02:f0:
c4:4f:73:f3:06:86:f5:4e:0a:7b:24:b6:79:0b:6d:
ea:8e:37:b7:59:b1:80:d8:fc:37:a8:a3:cf:c0:67:
e1:7c:aa:3e:93:39:58:d2:73:ab:9b:6c:a2:bd:bc:
3e:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:2B:14:EF:ED:C8:80:D8:4B:F9:12:A9:94:4E:BA:46:41:A9:30:BC
X509v3 Authority Key Identifier:
keyid:6C:4C:79:86:B1:82:EC:C3:6A:D7:4C:53:5B:EA:E7:29:9B:35:CE:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bEx5hrGC7MNq10xTW-rnKZs1zpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/8SsU7-3IgNhL-RKplE66RkGpMLw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/bEx5hrGC7MNq10xTW-rnKZs1zpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.107.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:f3:ee:95:7f:3a:7f:53:a4:4a:79:cd:e7:30:9f:42:21:f7:
fc:86:45:aa:a4:27:5f:5f:ca:43:4d:b0:bd:6d:e2:8e:9a:57:
b8:54:51:38:1a:a1:99:a9:7f:07:e1:e0:50:90:97:e3:50:75:
0b:f0:e9:20:5d:68:b6:d3:e2:ff:1b:34:47:18:68:77:e3:bf:
12:38:ab:d5:48:88:8b:a4:3a:22:fd:d8:73:df:c2:d6:b7:1e:
d5:e1:cc:a7:2b:ea:c1:88:54:73:13:26:0b:bd:ca:f7:5e:8f:
0c:5c:5f:c2:d5:d6:f2:86:cf:83:02:29:52:0b:33:e2:16:ea:
bd:47:01:b7:8e:90:aa:9c:fc:61:5d:0a:77:d5:58:24:5c:1f:
f0:7d:bf:c7:3b:c5:53:a5:a5:9e:cc:b2:5a:e5:55:6e:fb:0c:
75:80:1b:77:c3:09:2f:b0:6d:ca:35:8b:79:a0:0b:7f:e5:3c:
69:f6:a2:23:ed:a2:02:cc:ca:fa:7d:17:d3:0b:0d:54:45:81:
af:b9:19:56:d6:17:5f:9e:f1:c1:01:7a:e7:d5:82:3e:4b:13:
e8:0b:fd:d0:4b:e5:16:8e:30:f0:51:96:14:1d:81:a0:27:27:
36:b0:15:26:19:1d:34:92:e4:d0:28:02:00:e3:39:87:3e:2f:
0f:01:b7:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:14 2023 by rpki-client on console-fra.rpki-client.org