Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/1XTeBAVPYW8JH-GsdCplR_qigw8.roa
File: 1XTeBAVPYW8JH-GsdCplR_qigw8.roa (raw, json)
Hash identifier: 8KQ0lw/GoYzsGQEEiU/id94sG5NNzBoHnlPW+C6vI6M=
Subject key identifier: D5:74:DE:04:05:4F:61:6F:09:1F:E1:AC:74:2A:65:47:FA:A2:83:0F
Certificate issuer: /CN=6c4c7986b182ecc36ad74c535beae7299b35ce92
Certificate serial: 0181FBDB1ED9ED04D39BD7076903161AA828
Authority key identifier: 6C:4C:79:86:B1:82:EC:C3:6A:D7:4C:53:5B:EA:E7:29:9B:35:CE:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bEx5hrGC7MNq10xTW-rnKZs1zpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/1XTeBAVPYW8JH-GsdCplR_qigw8.roa
Signing time: Thu 14 Jul 2022 08:37:30 +0000
ROA not before: Thu 14 Jul 2022 08:37:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8708
IP address blocks: 141.11.179.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:fb:db:1e:d9:ed:04:d3:9b:d7:07:69:03:16:1a:a8:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c4c7986b182ecc36ad74c535beae7299b35ce92
Validity
Not Before: Jul 14 08:37:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d574de04054f616f091fe1ac742a6547faa2830f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:73:55:6d:3d:71:98:36:4d:21:ce:b7:ef:53:
71:c5:2d:99:02:3a:be:62:2b:9f:c5:5a:af:0d:79:
98:f6:e6:b9:e5:c4:56:e9:cc:d5:4d:b0:f5:a9:cd:
67:a0:64:bc:5d:28:ef:a9:82:51:f7:01:73:30:52:
68:e7:fa:24:94:eb:2b:e2:01:d4:76:05:80:56:bc:
db:59:41:8d:06:41:5d:b0:44:c4:c0:ab:08:0f:f6:
10:aa:8d:35:a3:4c:e3:ba:b7:40:9d:e8:df:51:ff:
e9:db:06:37:d3:ab:fa:83:4f:d6:39:e8:f4:10:b8:
b7:b2:07:f9:bc:cc:4e:4d:95:48:28:e1:98:e2:83:
de:ca:97:6a:c9:c5:0c:c5:5a:9f:b2:6e:9c:e5:65:
16:a4:8b:d2:a6:50:7b:09:0b:86:9d:0f:64:3c:a8:
46:75:6e:62:37:fd:3b:70:ea:b9:62:c5:6c:f2:b1:
47:44:02:a6:ce:d6:0b:a5:64:2d:b5:cc:87:2a:a7:
a1:55:c7:4d:bd:7c:d0:b4:e8:89:17:0b:b6:5a:e2:
f6:49:79:df:05:a9:bd:43:bc:92:2f:5f:e2:49:0c:
b1:08:e7:ac:08:c4:61:1c:66:e9:8d:09:a9:77:8f:
74:14:d8:f4:6e:0c:a8:23:21:67:40:2f:4f:ba:7f:
ad:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:74:DE:04:05:4F:61:6F:09:1F:E1:AC:74:2A:65:47:FA:A2:83:0F
X509v3 Authority Key Identifier:
keyid:6C:4C:79:86:B1:82:EC:C3:6A:D7:4C:53:5B:EA:E7:29:9B:35:CE:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bEx5hrGC7MNq10xTW-rnKZs1zpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/1XTeBAVPYW8JH-GsdCplR_qigw8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/bEx5hrGC7MNq10xTW-rnKZs1zpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.179.0/24
Signature Algorithm: sha256WithRSAEncryption
13:62:4c:17:ae:c8:2d:30:2c:8e:7a:20:25:ce:56:01:43:a8:
d5:4c:20:a0:da:9f:db:3a:5b:b6:43:40:64:6b:f0:0a:cc:5f:
84:4a:a2:94:54:f1:94:88:57:e3:c9:34:62:8f:87:f5:32:3c:
a9:98:25:fc:b7:9f:7c:de:a3:7b:4a:89:c9:91:a9:d5:23:b7:
5c:70:5d:33:f8:aa:dc:75:df:d5:f1:e2:9f:a2:aa:0f:c5:70:
2e:79:37:7e:34:81:e1:65:6f:75:97:b8:a3:7a:1b:ba:78:0d:
66:bc:0b:ac:f6:70:44:11:69:11:08:c7:8c:f1:e3:c5:97:ff:
2f:0c:a2:70:aa:c7:04:2f:25:18:54:42:5e:f1:45:d5:a8:6c:
45:29:12:11:66:fa:1e:3c:fb:40:ac:8b:51:d9:a2:a6:a8:9b:
81:3d:dc:72:18:78:36:72:d4:94:71:65:1d:61:3a:99:51:52:
6e:c3:33:4d:57:f8:cf:26:64:5d:cd:f9:15:8d:94:f8:c7:cf:
06:51:87:53:97:fc:71:27:6d:4a:55:70:30:78:49:e3:34:f5:
3f:50:fd:48:4b:41:c5:16:f3:84:d3:2f:17:4b:cf:21:f3:a9:
ae:da:bf:ce:fa:63:53:94:58:ea:3c:e2:28:0c:de:92:49:b7:
ef:12:3d:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:49:02 2025 by rpki-client