Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/936eab-094e-4903-9148-a76f86575247/1/TOpWbZR4HhaXVcINeSL_XRC-xu0.roa
File: TOpWbZR4HhaXVcINeSL_XRC-xu0.roa (raw, json)
Hash identifier: tD6HxsMy7s9p77WFv1U23hzE1y2Rsmp7oJb2dhFa86c=
Subject key identifier: 4C:EA:56:6D:94:78:1E:16:97:55:C2:0D:79:22:FF:5D:10:BE:C6:ED
Certificate issuer: /CN=3124de2d6b780b3dbb5fbf5b926dcb8d2f0cc106
Certificate serial: 0428F155
Authority key identifier: 31:24:DE:2D:6B:78:0B:3D:BB:5F:BF:5B:92:6D:CB:8D:2F:0C:C1:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MSTeLWt4Cz27X79bkm3LjS8MwQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/936eab-094e-4903-9148-a76f86575247/1/TOpWbZR4HhaXVcINeSL_XRC-xu0.roa
Signing time: Mon 13 Jun 2022 20:24:46 +0000
ROA not before: Mon 13 Jun 2022 20:24:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 141.98.7.0/24 maxlen: 24
141.98.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69792085 (0x428f155)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3124de2d6b780b3dbb5fbf5b926dcb8d2f0cc106
Validity
Not Before: Jun 13 20:24:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4cea566d94781e169755c20d7922ff5d10bec6ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:53:5e:50:3b:61:5b:64:68:df:aa:2e:9c:f3:
33:5e:ea:8b:c9:6c:f8:f9:f3:ae:75:6a:e6:4a:a6:
f4:ae:48:df:e2:ab:a7:2e:3d:c2:9b:99:7e:aa:27:
01:af:b3:f3:b3:78:1e:48:7b:b9:17:da:4c:59:9e:
df:04:94:07:e6:23:37:b5:6b:2d:90:52:01:fa:1b:
2e:cf:67:36:f6:c5:ec:0a:f8:a0:f0:fc:79:be:85:
d0:4a:97:98:9a:30:da:1a:67:84:93:34:da:20:5b:
c5:d7:99:1a:66:95:21:e5:41:ac:1d:75:ba:25:34:
b4:67:cf:39:61:7e:cb:77:0c:54:78:71:47:1b:e6:
41:f5:27:f2:10:c8:84:9d:e1:74:94:eb:78:c7:70:
1e:74:a1:27:11:8f:1f:b2:ef:ab:ff:f8:bd:b2:b0:
bd:06:a0:21:4e:09:7e:cb:88:1c:bc:31:eb:93:34:
d7:3a:02:d5:74:43:56:16:a8:1f:87:01:68:7f:95:
0c:e3:4f:e5:25:15:87:a9:17:9b:75:09:ee:7b:ea:
85:dc:ba:5a:bb:1d:ec:ac:65:d9:a4:9e:a2:7d:ed:
d5:e8:77:58:64:15:4f:33:4c:dd:6c:4b:3a:f4:39:
b6:b3:0e:ba:57:9b:4a:59:d1:76:f4:72:7c:b6:75:
09:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:EA:56:6D:94:78:1E:16:97:55:C2:0D:79:22:FF:5D:10:BE:C6:ED
X509v3 Authority Key Identifier:
keyid:31:24:DE:2D:6B:78:0B:3D:BB:5F:BF:5B:92:6D:CB:8D:2F:0C:C1:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MSTeLWt4Cz27X79bkm3LjS8MwQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/936eab-094e-4903-9148-a76f86575247/1/TOpWbZR4HhaXVcINeSL_XRC-xu0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/936eab-094e-4903-9148-a76f86575247/1/MSTeLWt4Cz27X79bkm3LjS8MwQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.5.0/24
141.98.7.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:8e:bb:7c:b2:73:41:4c:bf:d6:00:3b:10:15:d9:fc:f1:d9:
3e:3a:ec:31:65:81:d5:c4:3d:a6:fd:58:bb:aa:45:89:52:29:
8a:d2:a7:fb:2e:0e:c4:6b:76:94:f8:bf:f2:b8:85:91:81:db:
46:f1:09:e1:af:6d:82:05:ca:b4:3a:4a:4e:2f:90:63:01:cb:
84:ed:78:3b:76:d6:9f:84:f6:63:4b:3c:47:fd:81:7e:13:98:
f5:da:cb:98:d5:14:c9:50:c6:d2:7c:4b:ac:fc:ad:ea:c7:dc:
b9:b5:97:a3:9b:5d:b1:73:78:6f:4e:38:1a:8f:43:98:54:c4:
d2:f8:69:28:6c:7f:f6:ae:c4:d8:8e:3f:b3:c6:5f:a2:fd:79:
89:74:6e:4f:1b:62:e9:8d:fc:9f:31:94:6f:59:10:5e:f5:ba:
e2:d4:80:d0:cb:8c:c2:49:d9:a8:77:fd:7b:f9:f9:76:c4:a7:
39:2d:36:fb:17:d0:25:bc:3d:cb:f4:45:65:85:1e:70:f3:f9:
f4:94:3e:48:9a:da:95:f8:93:16:6e:9f:6c:2f:84:a8:45:64:
53:22:25:f5:f8:e7:19:98:7f:62:11:ee:2e:41:65:f8:4b:43:
5b:da:54:76:c8:fe:d5:e2:4f:b3:69:ea:42:4c:81:06:f2:1e:
1f:df:76:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:47 2024 by rpki-client on console-fra.rpki-client.org