Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/936eab-094e-4903-9148-a76f86575247/1/nrXTmk51bp0T9kga4VPS2QayDPM.roa
File: nrXTmk51bp0T9kga4VPS2QayDPM.roa (raw, json)
Hash identifier: dWD2FdGqVXuk5LmNMEYatDgkLQdAr1j//wK1667cw+0=
Subject key identifier: 9E:B5:D3:9A:4E:75:6E:9D:13:F6:48:1A:E1:53:D2:D9:06:B2:0C:F3
Certificate issuer: /CN=3124de2d6b780b3dbb5fbf5b926dcb8d2f0cc106
Certificate serial: 043E73B4
Authority key identifier: 31:24:DE:2D:6B:78:0B:3D:BB:5F:BF:5B:92:6D:CB:8D:2F:0C:C1:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MSTeLWt4Cz27X79bkm3LjS8MwQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/936eab-094e-4903-9148-a76f86575247/1/nrXTmk51bp0T9kga4VPS2QayDPM.roa
Signing time: Thu 23 Jun 2022 17:01:20 +0000
ROA not before: Thu 23 Jun 2022 17:01:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 141.98.4.0/24 maxlen: 24
141.98.7.0/24 maxlen: 24
141.98.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71201716 (0x43e73b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3124de2d6b780b3dbb5fbf5b926dcb8d2f0cc106
Validity
Not Before: Jun 23 17:01:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9eb5d39a4e756e9d13f6481ae153d2d906b20cf3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b2:64:e0:00:28:8b:5b:7d:2c:f9:0e:aa:c7:
82:26:43:46:dc:73:56:88:01:42:1d:03:58:e6:62:
e8:07:50:55:65:a5:5b:95:99:4b:00:be:04:f0:14:
95:f1:0e:bd:04:c7:0d:49:ab:7c:2a:3d:42:6e:45:
44:e5:6d:37:68:4c:34:42:0d:a8:8a:02:9c:f1:9c:
77:b5:90:eb:56:38:ba:03:4b:3f:4e:0d:aa:bc:b8:
5f:59:db:f3:1b:ff:48:73:1b:30:9d:8b:af:bc:42:
23:b8:4d:95:40:07:93:ce:41:34:be:80:75:55:33:
87:9e:bc:de:96:90:1f:37:9e:bd:f7:36:08:3c:7c:
0a:67:fa:67:ef:cf:85:12:66:a6:55:01:f2:f4:0d:
7a:0e:17:24:5b:2a:a0:47:fb:0d:32:2e:21:52:21:
6e:4f:df:88:82:7f:ba:c2:ad:fa:41:90:d2:c9:a8:
d2:cb:48:ce:68:cc:a9:df:06:15:c0:67:ea:9f:36:
1a:bb:a7:8a:8d:51:63:ad:f1:ea:43:52:b2:9f:3d:
43:ab:62:42:d7:7f:c9:46:46:48:6c:14:c3:15:7a:
a2:03:9b:3e:79:06:71:94:6b:a6:08:40:8e:c8:c2:
1f:26:99:07:d5:94:40:09:da:f4:72:3b:8e:ee:fd:
fd:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:B5:D3:9A:4E:75:6E:9D:13:F6:48:1A:E1:53:D2:D9:06:B2:0C:F3
X509v3 Authority Key Identifier:
keyid:31:24:DE:2D:6B:78:0B:3D:BB:5F:BF:5B:92:6D:CB:8D:2F:0C:C1:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MSTeLWt4Cz27X79bkm3LjS8MwQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/936eab-094e-4903-9148-a76f86575247/1/nrXTmk51bp0T9kga4VPS2QayDPM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/936eab-094e-4903-9148-a76f86575247/1/MSTeLWt4Cz27X79bkm3LjS8MwQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.4.0/23
141.98.7.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:a0:80:5f:7d:db:31:0b:e5:d4:03:b4:59:5a:ed:91:2e:27:
15:46:6f:0c:02:0e:83:cd:14:8f:bd:23:80:80:9d:24:ec:2e:
5a:3e:0c:f6:0e:4a:0b:81:8e:4f:7a:82:22:d5:0c:79:a4:45:
36:49:65:cf:a9:f1:b4:ca:72:04:52:1c:05:a7:e2:89:9f:46:
6c:c2:7b:9d:1d:84:fc:23:64:73:f7:99:c4:fb:89:bc:b0:1c:
7e:b9:42:d7:88:a8:59:ce:fd:1d:60:13:4e:b7:1a:c0:e9:a0:
4c:82:f9:c2:30:f8:f7:59:f9:b5:54:d2:f3:d4:70:cc:96:ba:
f9:d0:ab:ea:a7:f7:10:7f:f4:00:e3:97:8f:8d:86:1e:99:90:
ad:6d:ba:f0:e8:6f:39:e0:94:96:03:c9:c8:1e:b2:d5:db:2e:
49:6f:7e:01:36:3d:62:81:1f:12:70:e9:db:ff:4a:47:22:ff:
5a:da:e2:1a:86:84:94:06:fe:d7:08:76:a9:5c:e9:29:fe:22:
1c:84:db:b0:7e:d0:1c:4e:ba:25:10:2d:3a:a8:1e:d3:2e:1d:
fa:1d:6e:dd:fd:79:c1:3d:7f:d3:5c:80:7e:0d:7a:99:d5:63:
1b:b5:69:e2:1f:ab:ff:e3:47:63:c4:e9:cd:0e:bf:2f:8a:bf:
74:6a:fa:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:47 2024 by rpki-client on console-fra.rpki-client.org