Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/HhqBIJms0UtLUV77hdrSeujPitw.roa
File: HhqBIJms0UtLUV77hdrSeujPitw.roa (raw, json)
Hash identifier: hTVDvJ3paByVaVJcV5e0Ks3IuJ+7BIZVRo08rv5yCy8=
Subject key identifier: 1E:1A:81:20:99:AC:D1:4B:4B:51:5E:FB:85:DA:D2:7A:E8:CF:8A:DC
Certificate issuer: /CN=6c4c7986b182ecc36ad74c535beae7299b35ce92
Certificate serial: 0265D12A
Authority key identifier: 6C:4C:79:86:B1:82:EC:C3:6A:D7:4C:53:5B:EA:E7:29:9B:35:CE:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bEx5hrGC7MNq10xTW-rnKZs1zpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/HhqBIJms0UtLUV77hdrSeujPitw.roa
Signing time: Sat 01 Jan 2022 08:03:21 +0000
ROA not before: Sat 01 Jan 2022 08:03:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30823
IP address blocks: 141.11.45.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40227114 (0x265d12a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c4c7986b182ecc36ad74c535beae7299b35ce92
Validity
Not Before: Jan 1 08:03:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e1a812099acd14b4b515efb85dad27ae8cf8adc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:25:25:a9:8b:bb:cb:88:be:96:d6:b8:ba:c7:
fc:b8:e1:89:80:5c:4d:68:7b:8f:2b:57:22:49:8e:
17:e5:97:b5:6d:b7:9c:89:69:27:b9:3c:cb:a9:d9:
9c:5d:cc:2c:c5:33:9b:d0:73:26:98:20:cf:0c:b7:
d4:ae:4b:ef:c1:43:4e:a3:2f:da:6b:a2:f8:05:d8:
2a:8b:61:c3:07:b3:58:f9:ff:be:dd:18:e6:40:a2:
44:c9:bc:7e:c3:4d:b7:3e:3d:eb:bb:bb:78:5d:c4:
e5:84:ea:56:6f:82:2c:8b:19:5e:c3:4c:24:8b:e2:
7b:7a:1b:ce:f0:bf:8a:65:f5:ea:2e:c5:81:e7:c6:
fa:39:b9:79:d4:51:2a:8a:6f:83:49:ef:86:d1:31:
bd:94:7a:c4:c1:a2:43:77:9f:c7:cc:b4:ba:ce:b0:
be:c7:44:2c:bb:19:fb:50:80:ac:3b:78:26:5e:6d:
4c:14:8d:8d:ea:46:88:9f:b0:c8:ff:3f:af:78:c6:
a3:3f:fe:95:86:9f:1b:d4:df:a2:ba:a4:20:3f:18:
72:32:4f:7b:93:3d:a0:e0:3f:00:7b:00:06:b5:e4:
03:4f:51:cc:c6:c2:07:52:de:b8:43:2c:dc:2e:ca:
1e:da:2f:8f:dc:4d:ae:7e:01:d6:cf:cd:6b:e6:e0:
97:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:1A:81:20:99:AC:D1:4B:4B:51:5E:FB:85:DA:D2:7A:E8:CF:8A:DC
X509v3 Authority Key Identifier:
keyid:6C:4C:79:86:B1:82:EC:C3:6A:D7:4C:53:5B:EA:E7:29:9B:35:CE:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bEx5hrGC7MNq10xTW-rnKZs1zpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/HhqBIJms0UtLUV77hdrSeujPitw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/bEx5hrGC7MNq10xTW-rnKZs1zpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.45.0/24
Signature Algorithm: sha256WithRSAEncryption
94:b6:c7:5e:3f:33:30:b5:97:1c:c1:f6:26:78:ca:c0:a3:0b:
65:81:64:ce:36:a1:40:dc:67:24:f1:cc:02:b0:5e:eb:c8:ec:
66:29:c0:81:15:40:2c:b9:56:3e:ce:2a:98:93:74:de:5c:4c:
18:13:7c:e7:b6:e9:24:22:e8:a7:c3:e9:dc:79:45:49:87:1a:
7a:48:ca:68:e4:1d:f0:12:49:84:00:a2:ae:5a:e9:4a:c5:19:
7a:8a:3b:b5:b5:b2:2f:28:46:19:c7:03:ad:00:ea:f8:94:7e:
74:db:b8:cd:e6:bc:13:04:3a:63:02:9d:bc:29:13:32:47:38:
32:7a:0f:83:55:b3:28:09:65:d8:d9:29:dc:8a:61:3f:2f:03:
ae:2f:e4:da:da:af:4b:94:e2:21:ad:08:c6:ff:1f:52:d7:79:
15:fc:88:83:da:f0:d6:78:ea:98:f5:44:89:fc:56:b2:77:08:
7a:d2:51:e0:22:64:3c:63:f5:05:4d:07:2b:85:d9:1c:ee:5a:
9c:74:21:cc:54:7b:bc:2f:6d:3f:4c:eb:21:be:c9:5f:ce:0e:
d1:86:18:21:69:82:85:ad:cd:e0:47:4f:79:84:24:77:09:ff:
24:c0:97:8d:94:56:0a:d7:ae:a2:41:34:c4:46:d1:ae:ca:7b:
78:ec:94:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:33 2024 by rpki-client on console-ams.rpki-client.org