Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/8f2f65-7ac9-400a-b64c-e2f22d91624f/1/ouNofRp4Lx4UBnDtfLDArmv8IkY.roa
File: ouNofRp4Lx4UBnDtfLDArmv8IkY.roa (raw, json)
Hash identifier: 5mtcx4ZoLMolpaINO1wgudr8asXvNS77U/qm9UfFJ60=
Subject key identifier: A2:E3:68:7D:1A:78:2F:1E:14:06:70:ED:7C:B0:C0:AE:6B:FC:22:46
Certificate issuer: /CN=3875dfb25624df2bcefd7b2e3e1217a05ad26405
Certificate serial: 08B466BC
Authority key identifier: 38:75:DF:B2:56:24:DF:2B:CE:FD:7B:2E:3E:12:17:A0:5A:D2:64:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OHXfslYk3yvO_XsuPhIXoFrSZAU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/8f2f65-7ac9-400a-b64c-e2f22d91624f/1/ouNofRp4Lx4UBnDtfLDArmv8IkY.roa
Signing time: Sat 01 Jan 2022 09:00:19 +0000
ROA not before: Sat 01 Jan 2022 09:00:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29119
IP address blocks: 141.98.36.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146040508 (0x8b466bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3875dfb25624df2bcefd7b2e3e1217a05ad26405
Validity
Not Before: Jan 1 09:00:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a2e3687d1a782f1e140670ed7cb0c0ae6bfc2246
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ff:01:b9:6d:cd:63:06:90:d6:b5:ba:12:8f:
c4:f3:66:61:c9:09:5a:54:b4:c1:33:31:65:cc:f9:
e9:39:1d:f6:a3:bb:e6:c5:b1:6c:83:cf:bf:ba:f5:
8e:a7:44:a5:52:b5:48:50:4d:46:b6:8e:ac:d1:f2:
00:92:9f:2d:5a:e5:b0:9d:74:c3:d0:17:bd:fe:5f:
7c:30:bb:e5:f8:3d:69:c3:03:a2:3b:6a:ff:ef:73:
4b:03:58:72:b2:57:e3:8b:2c:d7:56:93:71:7c:b8:
a2:39:f0:65:bf:87:ae:21:7a:57:ff:80:6f:63:81:
21:b7:1f:a1:60:3e:3b:fe:7d:a2:97:dd:d2:d8:e2:
a3:95:1f:c9:75:87:36:35:8e:60:d6:ab:73:d7:c8:
4e:fc:c7:95:99:0d:1f:1f:9c:9d:c9:c2:ab:83:5d:
c3:47:85:1f:46:60:a9:aa:37:02:b1:66:f6:f7:ce:
88:e4:8a:ba:58:70:93:f4:ed:c5:98:ee:e3:c4:60:
5b:c4:9f:64:65:6a:50:8d:46:f7:65:f3:6d:e8:38:
45:17:23:28:74:86:79:01:73:43:9b:2e:63:1b:1d:
f6:1b:2d:ab:e4:47:81:bd:43:4c:b5:86:38:91:75:
e2:14:29:74:b0:32:d5:db:f5:b3:69:59:22:2f:37:
01:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:E3:68:7D:1A:78:2F:1E:14:06:70:ED:7C:B0:C0:AE:6B:FC:22:46
X509v3 Authority Key Identifier:
keyid:38:75:DF:B2:56:24:DF:2B:CE:FD:7B:2E:3E:12:17:A0:5A:D2:64:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OHXfslYk3yvO_XsuPhIXoFrSZAU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/8f2f65-7ac9-400a-b64c-e2f22d91624f/1/ouNofRp4Lx4UBnDtfLDArmv8IkY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/8f2f65-7ac9-400a-b64c-e2f22d91624f/1/OHXfslYk3yvO_XsuPhIXoFrSZAU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.36.0/22
Signature Algorithm: sha256WithRSAEncryption
c0:8d:94:b3:33:1d:da:9c:ca:94:03:ab:18:b8:07:53:dd:7b:
d9:eb:6c:46:1b:a3:e6:84:a0:05:9d:7a:c3:3d:58:a6:6a:b2:
60:74:cf:82:5a:56:cc:1a:53:37:19:19:55:1b:7f:c4:59:94:
cb:f4:53:8b:72:0b:97:79:93:da:0e:52:91:be:76:6a:a6:f8:
08:47:ca:43:e6:ca:94:d3:71:0a:ee:35:1e:c3:c8:c4:da:2f:
08:a3:4a:1a:94:2e:b7:20:91:db:cb:2a:f4:35:66:b8:35:6d:
e1:ab:a3:9c:9c:3c:6d:dc:b1:e2:d3:db:07:8a:d0:ab:34:60:
b5:63:4e:2b:94:92:20:ec:ba:21:c9:80:0c:1c:73:07:5a:8d:
53:b1:60:58:85:4f:e5:8b:52:42:6d:da:78:a3:17:1b:09:fe:
43:25:8e:27:50:fe:8b:61:90:8f:e6:22:2f:5b:47:a5:ab:bf:
6b:bf:f6:a2:67:11:9c:1b:92:98:47:62:91:89:1b:34:97:a5:
ef:47:ea:d7:19:8d:66:ec:32:69:c1:77:76:b5:69:86:84:dd:
6b:5c:4c:64:f0:b0:8e:82:a6:d1:5c:8e:1b:80:a0:1e:9d:70:
57:73:15:ae:3e:4c:6c:39:15:b0:85:b3:2c:5f:bb:4c:26:89:
e4:0b:f4:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:29:50 2025 by rpki-client