Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/4f-lt3MJ6yC724kq8r0cGujD29Q.roa
File: 4f-lt3MJ6yC724kq8r0cGujD29Q.roa (raw, json)
Hash identifier: /pl18NCnb0KhMDI71784lMCrs4A370qzZjQOA3WVE3c=
Subject key identifier: E1:FF:A5:B7:73:09:EB:20:BB:DB:89:2A:F2:BD:1C:1A:E8:C3:DB:D4
Certificate issuer: /CN=6c4c7986b182ecc36ad74c535beae7299b35ce92
Certificate serial: 0184A933D4176A392FFE4EB7623D78A291B9
Authority key identifier: 6C:4C:79:86:B1:82:EC:C3:6A:D7:4C:53:5B:EA:E7:29:9B:35:CE:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bEx5hrGC7MNq10xTW-rnKZs1zpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/4f-lt3MJ6yC724kq8r0cGujD29Q.roa
Signing time: Thu 24 Nov 2022 10:34:16 +0000
ROA not before: Thu 24 Nov 2022 10:34:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 141.11.44.0/22 maxlen: 24
141.11.39.0/24 maxlen: 24
141.11.42.0/24 maxlen: 24
141.11.41.0/24 maxlen: 24
141.11.45.0/24 maxlen: 24
141.11.47.0/24 maxlen: 24
141.11.46.0/24 maxlen: 24
141.11.2.0/24 maxlen: 24
141.11.10.0/23 maxlen: 24
141.11.17.0/24 maxlen: 24
141.11.22.0/24 maxlen: 24
141.11.18.0/24 maxlen: 24
141.11.25.0/24 maxlen: 24
141.11.31.0/24 maxlen: 24
141.11.33.0/24 maxlen: 24
141.11.32.0/24 maxlen: 24
141.11.160.0/24 maxlen: 24
141.11.176.0/24 maxlen: 24
141.11.182.0/23 maxlen: 24
141.11.189.0/24 maxlen: 24
141.11.187.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:a9:33:d4:17:6a:39:2f:fe:4e:b7:62:3d:78:a2:91:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c4c7986b182ecc36ad74c535beae7299b35ce92
Validity
Not Before: Nov 24 10:34:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e1ffa5b77309eb20bbdb892af2bd1c1ae8c3dbd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:7a:20:f2:11:20:df:75:bd:ff:39:b9:b7:5c:
22:da:9d:1f:51:e1:31:3b:34:18:1a:94:f8:1d:b3:
ec:9f:e0:34:f9:1f:69:9c:17:b9:94:0f:99:04:de:
33:8b:1f:4f:2e:b3:0a:54:00:7b:0f:e2:63:8c:09:
8b:ba:79:3c:1b:ab:06:fc:f4:f4:80:81:42:c0:8b:
2d:3f:e7:82:d0:7b:2e:32:3e:45:8d:68:d1:2f:8e:
b0:0a:ad:a3:a4:a8:38:1e:c3:36:f7:49:73:31:55:
d6:19:c1:7b:12:fb:19:b7:f0:ff:e9:8b:c8:c5:70:
98:cb:74:91:9e:79:b1:4a:42:7b:02:9f:46:55:03:
42:7e:f9:43:88:1f:53:78:c2:b5:ed:db:3c:4b:a3:
ba:7e:9b:9e:48:e7:e6:7d:4a:6f:c0:e4:c6:a5:ad:
7d:c9:3c:e9:d4:6e:95:77:dc:de:2b:94:4c:07:73:
eb:7f:f6:1a:95:f3:8a:51:94:c7:10:65:a5:d5:1d:
9f:f0:72:39:41:3b:1e:73:1d:c0:62:0e:09:fc:4c:
53:7d:15:9a:cd:fd:af:73:06:81:86:2f:65:33:46:
fe:dc:a6:3d:1b:4f:7a:af:67:39:7b:f9:c2:6e:be:
70:fa:7f:7a:e7:84:11:7d:16:e7:0b:b7:27:d0:0c:
53:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:FF:A5:B7:73:09:EB:20:BB:DB:89:2A:F2:BD:1C:1A:E8:C3:DB:D4
X509v3 Authority Key Identifier:
keyid:6C:4C:79:86:B1:82:EC:C3:6A:D7:4C:53:5B:EA:E7:29:9B:35:CE:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bEx5hrGC7MNq10xTW-rnKZs1zpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/4f-lt3MJ6yC724kq8r0cGujD29Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/bEx5hrGC7MNq10xTW-rnKZs1zpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.2.0/24
141.11.10.0/23
141.11.17.0-141.11.18.255
141.11.22.0/24
141.11.25.0/24
141.11.31.0-141.11.33.255
141.11.39.0/24
141.11.41.0-141.11.42.255
141.11.44.0/22
141.11.160.0/24
141.11.176.0/24
141.11.182.0/23
141.11.187.0/24
141.11.189.0/24
Signature Algorithm: sha256WithRSAEncryption
46:48:da:77:a6:8a:a8:c3:f1:14:08:2e:2d:de:bc:5a:66:11:
a4:a4:6a:39:c3:f8:69:81:d9:fe:1f:9a:aa:cf:36:25:59:c9:
7c:bb:71:19:b3:3f:64:4c:a4:18:7c:ed:14:50:c5:c6:2a:e1:
0b:e8:94:6e:a0:ae:1c:3b:0c:81:eb:eb:85:6e:1a:74:d9:fe:
fe:f1:0e:8d:a7:60:cd:07:c6:bf:47:a2:9f:4b:57:60:e1:67:
fa:d4:86:8c:7f:56:58:c9:ee:8b:e6:ff:08:c0:8a:4e:ba:fc:
14:45:83:c0:8f:bb:3d:02:12:28:ed:71:7b:f6:91:ad:5a:f0:
69:93:6e:2d:46:a8:e0:16:f5:bc:65:61:9c:f0:0f:77:93:58:
45:9a:f9:ea:c9:91:cd:9f:3a:21:3e:a3:6a:a3:bd:54:c2:f0:
2a:69:b9:9f:7d:15:86:d1:47:76:94:25:89:84:04:24:db:c5:
0c:ac:5a:df:4c:6a:e5:c2:a9:97:b9:34:98:e1:fb:95:d6:35:
28:3a:4b:7a:80:b6:71:bb:94:56:da:27:7f:e1:3b:0e:be:c3:
b5:3e:1e:71:83:5c:32:61:4e:28:9e:7d:ff:d1:02:e8:24:c1:
1d:4e:31:02:e2:49:1b:32:f0:c1:33:3d:55:df:02:43:09:51:
c5:91:71:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:25:02 2025 by rpki-client