Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/2invFC8npSqiVaqorxQgNtR3xSo.roa
File: 2invFC8npSqiVaqorxQgNtR3xSo.roa (raw, json)
Hash identifier: 71UqhcIsdgoHMuEoW6IeZrLEL5+OFPpA/jF2A3RECNc=
Subject key identifier: DA:29:EF:14:2F:27:A5:2A:A2:55:AA:A8:AF:14:20:36:D4:77:C5:2A
Certificate issuer: /CN=6c4c7986b182ecc36ad74c535beae7299b35ce92
Certificate serial: 0302A8FC
Authority key identifier: 6C:4C:79:86:B1:82:EC:C3:6A:D7:4C:53:5B:EA:E7:29:9B:35:CE:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bEx5hrGC7MNq10xTW-rnKZs1zpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/2invFC8npSqiVaqorxQgNtR3xSo.roa
Signing time: Fri 11 Feb 2022 10:27:18 +0000
ROA not before: Fri 11 Feb 2022 10:27:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 142617
IP address blocks: 141.11.36.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50505980 (0x302a8fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c4c7986b182ecc36ad74c535beae7299b35ce92
Validity
Not Before: Feb 11 10:27:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da29ef142f27a52aa255aaa8af142036d477c52a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:d3:b1:86:c2:7a:a0:a8:87:8f:14:88:bd:52:
bc:af:61:31:2d:e2:56:04:37:b2:ca:66:9c:10:b3:
fd:6f:c8:a2:c3:0f:30:b3:5e:12:02:75:21:2d:3c:
50:bc:3b:5c:50:12:ac:11:fc:c0:86:03:12:bb:1b:
14:d0:f4:32:31:da:f6:ec:2c:4b:0d:bd:25:4b:87:
79:b5:14:44:0e:16:fc:85:44:f0:95:ff:a8:d0:ee:
05:7f:b0:43:2c:1b:80:11:2c:91:39:d7:3c:7a:8d:
ca:22:0a:b4:58:3a:6e:53:e4:b3:79:9d:10:ac:2a:
c3:14:e3:cc:c4:0b:a7:ef:75:0d:fc:e0:95:92:04:
40:2e:91:dd:67:d4:f1:7c:d4:38:02:44:58:61:51:
6b:4f:90:6b:26:3b:bc:43:03:89:3e:f0:dd:fe:86:
9b:3c:82:ca:41:0d:f8:16:02:b7:71:71:27:fe:e7:
22:bc:11:f7:54:51:7e:66:3f:a1:dd:22:13:0b:d2:
62:6e:82:1c:cc:25:d3:f0:1d:71:8f:a5:67:b9:0c:
42:05:d8:c9:58:e1:25:9e:23:30:3c:cc:1e:31:8f:
48:d7:f9:fa:cc:5f:09:69:b6:0b:e8:3c:e1:98:61:
56:3b:97:05:c5:f2:05:94:e3:8f:a7:6c:cf:0f:b6:
07:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:29:EF:14:2F:27:A5:2A:A2:55:AA:A8:AF:14:20:36:D4:77:C5:2A
X509v3 Authority Key Identifier:
keyid:6C:4C:79:86:B1:82:EC:C3:6A:D7:4C:53:5B:EA:E7:29:9B:35:CE:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bEx5hrGC7MNq10xTW-rnKZs1zpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/2invFC8npSqiVaqorxQgNtR3xSo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/bEx5hrGC7MNq10xTW-rnKZs1zpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.36.0/23
Signature Algorithm: sha256WithRSAEncryption
96:d6:89:a3:11:67:10:bf:f5:7d:6b:12:7e:67:3a:a6:cd:e8:
1b:52:da:ab:90:c8:a3:bb:be:8d:7b:1e:c5:f9:78:ea:28:96:
b8:42:c4:88:a8:c4:85:12:6c:fb:91:b3:2a:1c:2a:c9:7e:48:
ca:67:bf:f4:23:47:52:58:77:f3:7c:4f:ca:a7:b8:d8:9b:04:
1a:14:e1:97:60:f2:1f:3b:7d:1c:a5:5a:f0:29:cf:64:15:79:
2c:35:d7:96:3c:80:22:e3:e0:f1:87:f6:1d:3b:0c:72:5d:09:
b1:83:b6:f8:fe:9d:49:02:21:b7:43:0c:fb:68:28:8e:b1:1a:
f9:9a:13:1b:b5:db:65:d7:5f:6d:94:2e:a4:e9:cc:9b:09:91:
46:2e:0e:e8:a9:7c:d8:8b:04:c9:be:48:d0:8a:ad:82:78:e9:
ee:8b:91:89:34:46:ef:1d:20:26:0f:d1:c0:e4:b9:c9:09:fc:
60:38:6b:f3:37:cb:e3:1b:9f:07:dc:33:96:2b:0d:e7:60:01:
43:ee:fc:45:94:56:50:07:e6:76:75:98:f3:bb:fe:9b:9a:c3:
ab:18:50:4e:a2:4f:2d:79:09:cc:10:66:1f:6b:03:bf:f9:9d:
b3:0a:f5:9a:5f:2e:de:02:3c:c2:51:c8:1b:41:2f:b9:d9:22:
bc:14:de:da
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAwKo/DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
YzRjNzk4NmIxODJlY2MzNmFkNzRjNTM1YmVhZTcyOTliMzVjZTkyMB4XDTIyMDIx
MTEwMjcxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGEyOWVmMTQyZjI3
YTUyYWEyNTVhYWE4YWYxNDIwMzZkNDc3YzUyYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJXTsYbCeqCoh48UiL1SvK9hMS3iVgQ3sspmnBCz/W/IosMP
MLNeEgJ1IS08ULw7XFASrBH8wIYDErsbFND0MjHa9uwsSw29JUuHebUURA4W/IVE
8JX/qNDuBX+wQywbgBEskTnXPHqNyiIKtFg6blPks3mdEKwqwxTjzMQLp+91Dfzg
lZIEQC6R3WfU8XzUOAJEWGFRa0+QayY7vEMDiT7w3f6GmzyCykEN+BYCt3FxJ/7n
IrwR91RRfmY/od0iEwvSYm6CHMwl0/AdcY+lZ7kMQgXYyVjhJZ4jMDzMHjGPSNf5
+sxfCWm2C+g84ZhhVjuXBcXyBZTjj6dszw+2B+UCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTaKe8ULyelKqJVqqivFCA21HfFKjAfBgNVHSMEGDAWgBRsTHmGsYLsw2rX
TFNb6ucpmzXOkjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JFeDVockdDN01OcTEweFRXLXJuS1pzMXpwSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWYvYzRlNWNhLThhYTUtNGU2NC1hMDIyLTI2Y2ExNDhkMDdhZi8x
LzJpbnZGQzhucFNxaVZhcW9yeFFnTnRSM3hTby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWYv
YzRlNWNhLThhYTUtNGU2NC1hMDIyLTI2Y2ExNDhkMDdhZi8xL2JFeDVockdDN01O
cTEweFRXLXJuS1pzMXpwSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAY0LJDANBgkqhkiG9w0BAQsFAAOC
AQEAltaJoxFnEL/1fWsSfmc6ps3oG1Laq5DIo7u+jXsexfl46iiWuELEiKjEhRJs
+5GzKhwqyX5Iyme/9CNHUlh383xPyqe42JsEGhThl2DyHzt9HKVa8CnPZBV5LDXX
ljyAIuPg8Yf2HTsMcl0JsYO2+P6dSQIht0MM+2gojrEa+ZoTG7XbZddfbZQupOnM
mwmRRi4O6Kl82IsEyb5I0Iqtgnjp7ouRiTRG7x0gJg/RwOS5yQn8YDhr8zfL4xuf
B9wzlisN52ABQ+78RZRWUAfmdnWY87v+m5rDqxhQTqJPLXkJzBBmH2sDv/mdswr1
ml8u3gI8wlHIG0EvudkivBTe2g==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:39:59 2025 by rpki-client