Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/ObD0TSshvNYM1nNsP_XHcbwYKiw.roa
File: ObD0TSshvNYM1nNsP_XHcbwYKiw.roa (raw, json)
Hash identifier: 5kY3b966D2vq60uwypm+y2zTTnjRWVsrN+5j9iIUr9o=
Subject key identifier: 39:B0:F4:4D:2B:21:BC:D6:0C:D6:73:6C:3F:F5:C7:71:BC:18:2A:2C
Certificate issuer: /CN=6c4c7986b182ecc36ad74c535beae7299b35ce92
Certificate serial: 0183F525655DB8A6A6D5C900CCE41E98241A
Authority key identifier: 6C:4C:79:86:B1:82:EC:C3:6A:D7:4C:53:5B:EA:E7:29:9B:35:CE:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bEx5hrGC7MNq10xTW-rnKZs1zpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/ObD0TSshvNYM1nNsP_XHcbwYKiw.roa
Signing time: Thu 20 Oct 2022 11:26:52 +0000
ROA not before: Thu 20 Oct 2022 11:26:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212335
IP address blocks: 141.11.126.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f5:25:65:5d:b8:a6:a6:d5:c9:00:cc:e4:1e:98:24:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c4c7986b182ecc36ad74c535beae7299b35ce92
Validity
Not Before: Oct 20 11:26:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=39b0f44d2b21bcd60cd6736c3ff5c771bc182a2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b2:97:57:68:83:4d:b7:61:60:4e:78:7d:bb:
5e:06:ec:99:7d:4d:06:33:20:e4:e0:ad:a9:15:2e:
93:51:99:9c:4e:7b:2e:2a:ef:f7:fe:4e:7d:2c:c4:
fd:5a:ca:48:2b:b6:eb:b7:8d:13:15:c3:98:08:ca:
02:8b:5f:1b:d5:c1:57:28:71:73:12:07:51:7b:c9:
76:50:97:cc:11:8a:b9:25:b2:7c:7d:46:93:f2:58:
14:2d:7f:e1:e3:39:77:08:2c:5a:aa:dc:cb:47:20:
fd:6f:a9:1b:52:72:d8:f0:21:39:ac:64:60:3b:c8:
91:86:f9:19:69:07:4f:62:af:9c:f2:e8:6f:93:f8:
6c:71:9a:36:c9:19:a0:02:ad:09:94:d2:38:13:ca:
15:61:3f:4e:0b:da:a7:22:55:b4:6d:09:9c:b8:42:
0f:5b:61:35:2d:e5:92:66:a0:05:a7:ca:48:ab:b0:
a0:8b:39:5e:bc:bf:20:93:a1:a4:b0:6b:07:39:16:
95:57:89:12:df:5f:02:84:59:1b:52:8d:5d:8c:bc:
a4:9a:2f:ce:2a:9f:cf:e7:4e:e6:68:43:40:0a:06:
c3:29:1c:a9:be:8d:91:58:cf:73:60:7d:3a:7d:e0:
77:6b:d1:f9:d0:ae:04:79:72:16:7e:15:59:f6:0f:
f7:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:B0:F4:4D:2B:21:BC:D6:0C:D6:73:6C:3F:F5:C7:71:BC:18:2A:2C
X509v3 Authority Key Identifier:
keyid:6C:4C:79:86:B1:82:EC:C3:6A:D7:4C:53:5B:EA:E7:29:9B:35:CE:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bEx5hrGC7MNq10xTW-rnKZs1zpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/ObD0TSshvNYM1nNsP_XHcbwYKiw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/bEx5hrGC7MNq10xTW-rnKZs1zpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.126.0/24
Signature Algorithm: sha256WithRSAEncryption
36:99:8f:79:0c:20:6c:42:ba:04:ef:95:58:56:d2:c2:d8:1e:
3f:59:8e:1d:14:0c:50:42:cb:83:5f:df:1c:5e:4a:fc:d4:a0:
12:69:53:8e:88:4e:7f:fd:af:57:5e:20:3a:61:b2:25:98:45:
d8:04:3a:1a:15:5f:01:a9:55:12:71:13:3b:04:29:cf:ce:86:
c9:2a:17:de:8d:45:a2:c0:cc:be:bc:f9:f4:f2:e3:47:77:3b:
81:85:87:81:9f:95:3f:02:74:f6:5c:13:4d:f7:15:55:38:cd:
06:1f:43:9e:52:5a:83:65:1d:f6:2d:77:93:73:81:18:68:8a:
62:86:b2:d3:c1:5f:f2:57:ad:b3:88:ac:37:68:1d:cb:ac:44:
e5:e1:f3:50:fe:29:a7:f2:1e:61:60:d5:c5:1d:85:3a:f5:6c:
c7:8d:54:67:ac:da:e0:9c:ad:db:97:22:44:8c:68:3b:8b:4d:
67:dd:95:09:b9:64:62:d8:f8:d0:db:df:12:63:80:e8:63:11:
93:90:cd:6d:d4:be:0c:ef:8b:03:60:45:47:73:5f:61:1c:2e:
6c:f5:d5:be:9c:95:18:eb:ce:cf:e1:e5:39:2a:e8:32:6e:21:
5a:a4:8c:3f:7f:f1:ed:9e:5f:88:1a:cb:3f:a0:74:a8:86:ea:
7b:d4:ea:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:24:58 2025 by rpki-client