Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/MFvnq-Jvvb3KlPajM4diJVhum68.roa
File: MFvnq-Jvvb3KlPajM4diJVhum68.roa (raw, json)
Hash identifier: prXLx8wwgM0ungCkaSfoTHQk1r/8tPqOxXPWaDXunGQ=
Subject key identifier: 30:5B:E7:AB:E2:6F:BD:BD:CA:94:F6:A3:33:87:62:25:58:6E:9B:AF
Certificate issuer: /CN=6c4c7986b182ecc36ad74c535beae7299b35ce92
Certificate serial: 01840B5D0E76EE83BF399B90FF0280B6CA52
Authority key identifier: 6C:4C:79:86:B1:82:EC:C3:6A:D7:4C:53:5B:EA:E7:29:9B:35:CE:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bEx5hrGC7MNq10xTW-rnKZs1zpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/MFvnq-Jvvb3KlPajM4diJVhum68.roa
Signing time: Mon 24 Oct 2022 18:59:18 +0000
ROA not before: Mon 24 Oct 2022 18:59:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 141.11.44.0/22 maxlen: 24
141.11.40.0/22 maxlen: 24
141.11.39.0/24 maxlen: 24
141.11.42.0/24 maxlen: 24
141.11.41.0/24 maxlen: 24
141.11.45.0/24 maxlen: 24
141.11.47.0/24 maxlen: 24
141.11.46.0/24 maxlen: 24
141.11.2.0/24 maxlen: 24
141.11.10.0/23 maxlen: 24
141.11.17.0/24 maxlen: 24
141.11.22.0/24 maxlen: 24
141.11.18.0/24 maxlen: 24
141.11.25.0/24 maxlen: 24
141.11.31.0/24 maxlen: 24
141.11.33.0/24 maxlen: 24
141.11.32.0/24 maxlen: 24
141.11.160.0/24 maxlen: 24
141.11.176.0/24 maxlen: 24
141.11.182.0/23 maxlen: 24
141.11.189.0/24 maxlen: 24
141.11.187.0/24 maxlen: 24
141.11.94.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:0b:5d:0e:76:ee:83:bf:39:9b:90:ff:02:80:b6:ca:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c4c7986b182ecc36ad74c535beae7299b35ce92
Validity
Not Before: Oct 24 18:59:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=305be7abe26fbdbdca94f6a333876225586e9baf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:c5:80:7a:f0:fb:4a:6f:a5:02:61:a2:ac:a0:
18:ae:fa:bd:99:31:48:11:bf:70:1a:ef:94:58:a0:
51:da:63:fb:b9:a3:c7:a5:52:2a:e2:0e:c0:24:a6:
65:4e:a4:47:9d:ff:bd:e6:cb:e7:9e:32:1e:10:26:
15:fd:3c:21:d4:86:a8:7c:f6:99:07:db:7d:06:48:
a1:b1:7b:dd:8c:ef:70:54:b9:3b:a3:ba:7e:08:4b:
3c:54:cb:87:32:90:cf:25:f6:5e:f6:76:68:b2:37:
84:d4:76:05:1d:f4:3c:bc:90:1e:43:73:52:15:ae:
25:5c:36:77:eb:d7:35:7b:35:5e:88:f1:fe:bf:57:
e3:cb:df:bb:bf:b8:ab:73:bc:8c:eb:ea:e7:f3:9a:
1e:bb:69:11:5f:d2:e7:91:1a:b6:0a:d2:af:26:54:
d4:51:e7:f5:6c:bd:54:6a:ee:a1:e2:46:fe:a9:01:
63:d9:bd:d5:25:5e:0d:09:4b:7c:23:10:ef:3e:b2:
1f:59:64:18:15:b1:db:61:29:9d:a2:9d:26:bd:9f:
e1:fb:d6:94:72:bc:95:86:30:f0:d1:48:38:18:89:
b0:5c:b5:e7:ed:49:f3:1b:d4:de:20:52:8e:af:a1:
90:b3:98:69:31:61:92:99:c3:39:f5:af:de:97:44:
d7:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:5B:E7:AB:E2:6F:BD:BD:CA:94:F6:A3:33:87:62:25:58:6E:9B:AF
X509v3 Authority Key Identifier:
keyid:6C:4C:79:86:B1:82:EC:C3:6A:D7:4C:53:5B:EA:E7:29:9B:35:CE:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bEx5hrGC7MNq10xTW-rnKZs1zpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/MFvnq-Jvvb3KlPajM4diJVhum68.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/bEx5hrGC7MNq10xTW-rnKZs1zpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.2.0/24
141.11.10.0/23
141.11.17.0-141.11.18.255
141.11.22.0/24
141.11.25.0/24
141.11.31.0-141.11.33.255
141.11.39.0-141.11.47.255
141.11.94.0/23
141.11.160.0/24
141.11.176.0/24
141.11.182.0/23
141.11.187.0/24
141.11.189.0/24
Signature Algorithm: sha256WithRSAEncryption
89:7b:aa:29:e6:c6:d6:c4:52:a5:b0:66:e4:80:5e:70:d4:69:
30:6f:f2:2f:ec:78:22:28:0b:72:26:97:6b:e0:38:7f:c0:a0:
3a:db:08:31:73:df:3f:47:6c:3f:05:bb:79:c4:1a:85:8e:f0:
a8:3b:ec:db:07:6f:d7:41:89:08:51:d1:b4:96:0f:95:7e:83:
96:b4:f2:86:3a:7f:20:b1:4d:5b:82:85:9d:b7:8a:9c:3f:6b:
ae:4c:1f:40:8a:8c:06:2a:35:6c:e1:22:1f:5a:3e:74:c7:7d:
9c:15:be:00:e6:9d:5a:7d:c0:79:94:1b:dd:f5:5b:24:e8:7d:
71:21:00:53:e9:f5:3c:c1:01:db:e4:f4:6b:0b:be:ae:12:96:
91:cf:16:88:75:b4:4d:dd:4f:b8:10:eb:17:45:76:dd:08:0f:
e9:78:b8:9f:7c:5d:fd:4e:a0:fd:cc:df:e6:75:8c:94:22:04:
fd:b1:0b:8b:86:1c:b2:ca:c8:f0:e1:c4:8d:c0:3c:5f:30:f2:
26:51:25:93:7d:26:00:8a:8f:d2:47:5c:e4:53:94:47:41:14:
cc:b5:4f:d6:16:15:e7:58:89:11:8e:1a:97:72:f2:cd:90:fb:
15:70:32:1f:e3:0e:7c:97:34:e3:fa:de:b4:2d:46:e3:80:5e:
2e:2e:39:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:16 2023 by rpki-client on console-fra.rpki-client.org