Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/529414-d7a5-49eb-9bd6-cbf1bbb0fd18/1/PMQRbIjTFNkHkij5CmX2ovxx-tw.roa
File: PMQRbIjTFNkHkij5CmX2ovxx-tw.roa (raw, json)
Hash identifier: dKJfdh4NULtI18RqgGKTX6OjJ6hh996LrdbVVRDGWFM=
Subject key identifier: 3C:C4:11:6C:88:D3:14:D9:07:92:28:F9:0A:65:F6:A2:FC:71:FA:DC
Certificate issuer: /CN=ff40503cb21a922897971726f6b7eecc253f1193
Certificate serial: 04DEFDA1
Authority key identifier: FF:40:50:3C:B2:1A:92:28:97:97:17:26:F6:B7:EE:CC:25:3F:11:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_0BQPLIakiiXlxcm9rfuzCU_EZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/529414-d7a5-49eb-9bd6-cbf1bbb0fd18/1/PMQRbIjTFNkHkij5CmX2ovxx-tw.roa
Signing time: Sat 01 Jan 2022 12:01:53 +0000
ROA not before: Sat 01 Jan 2022 12:01:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19905
IP address blocks: 193.40.195.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81722785 (0x4defda1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff40503cb21a922897971726f6b7eecc253f1193
Validity
Not Before: Jan 1 12:01:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3cc4116c88d314d9079228f90a65f6a2fc71fadc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:43:c7:1e:4c:a6:1b:a3:15:fa:6f:9d:c9:c0:
31:fd:6b:94:05:c9:dc:77:18:c6:59:78:97:37:08:
41:6d:54:71:13:b0:e4:82:ae:7f:ea:bd:3f:0a:1c:
ab:0d:85:99:c2:eb:12:ff:82:ed:3e:2b:be:a1:27:
88:f2:3f:48:bf:d4:00:2b:b7:5b:5b:03:ce:42:46:
b9:49:92:20:d3:f6:55:d1:af:c2:7e:3b:45:4e:95:
ca:a7:44:32:90:c1:60:da:9d:05:47:a9:b1:dd:0e:
36:18:b5:be:96:9c:0b:ae:7e:41:88:5b:a5:66:ae:
db:25:47:8e:c0:c8:98:fc:79:ff:d3:54:9f:e1:98:
7b:2f:10:69:76:c9:f4:8c:6f:c5:d4:43:c7:0d:09:
7d:66:55:64:d5:c7:a5:69:71:4e:a8:ce:31:e0:b4:
3e:85:a6:df:b5:52:2f:00:71:b7:64:76:4a:fb:82:
f0:72:a7:62:5a:a4:a0:5b:98:f8:90:d0:af:b4:b3:
80:4e:02:b3:01:c8:31:b7:32:1a:55:89:65:79:aa:
ab:84:28:0f:c7:1f:40:05:c1:d7:33:ed:96:34:a1:
9d:7e:6b:8a:f9:85:b1:6c:24:0b:0f:df:1a:f2:ed:
8e:af:1a:49:78:d8:28:15:e2:83:94:b7:22:d5:9b:
02:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:C4:11:6C:88:D3:14:D9:07:92:28:F9:0A:65:F6:A2:FC:71:FA:DC
X509v3 Authority Key Identifier:
keyid:FF:40:50:3C:B2:1A:92:28:97:97:17:26:F6:B7:EE:CC:25:3F:11:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_0BQPLIakiiXlxcm9rfuzCU_EZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/529414-d7a5-49eb-9bd6-cbf1bbb0fd18/1/PMQRbIjTFNkHkij5CmX2ovxx-tw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/529414-d7a5-49eb-9bd6-cbf1bbb0fd18/1/_0BQPLIakiiXlxcm9rfuzCU_EZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.40.195.0/24
Signature Algorithm: sha256WithRSAEncryption
71:ea:19:7b:ad:5e:fa:a7:e1:14:54:19:ea:18:e5:4f:37:48:
ae:64:92:98:53:04:1e:57:da:32:79:03:62:5b:f0:4b:07:ca:
1d:46:38:c9:b0:d9:71:bc:00:8a:e5:b4:dc:4e:5b:88:48:b8:
0d:7e:ce:bf:06:7b:b5:0d:07:27:df:32:31:f9:81:22:03:6f:
41:20:de:93:05:03:51:48:9f:80:47:be:ef:be:af:c5:2c:1d:
84:a1:96:ac:fd:e8:c8:53:8f:39:a2:24:ed:f1:14:89:b9:73:
be:47:39:35:8d:ba:79:33:51:0a:be:61:b6:d9:cc:08:87:26:
bb:99:47:67:dc:6a:7c:3f:ee:95:20:fe:4d:5e:75:c4:19:72:
95:60:4e:74:46:9f:65:57:34:3e:5a:af:9e:6b:fb:63:73:62:
5c:1b:b2:91:e4:12:26:f2:81:17:b7:55:9b:1f:cc:3e:13:60:
49:c9:de:c3:48:92:22:c7:2a:c9:1c:35:fa:7e:3b:90:1e:70:
94:00:01:d5:9d:32:59:72:ce:3c:d0:b8:e7:14:c9:e2:1d:0e:
d0:14:bb:d5:c0:34:98:0e:a4:1c:43:df:51:87:f2:65:f1:10:
39:a6:d1:05:3b:fd:86:52:b1:90:0b:3d:7c:36:dc:c6:d2:f4:
f7:88:00:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 03:34:39 2025 by rpki-client