Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/Q3vW1DXXWdp1kBG5ivXPatmWUng.roa
File: Q3vW1DXXWdp1kBG5ivXPatmWUng.roa (raw, json)
Hash identifier: P0LrpKIzFaST5nsPqFuyHuAK2tWfCOMCFYCyibDV3PA=
Subject key identifier: 43:7B:D6:D4:35:D7:59:DA:75:90:11:B9:8A:F5:CF:6A:D9:96:52:78
Certificate issuer: /CN=6c4c7986b182ecc36ad74c535beae7299b35ce92
Certificate serial: 0184CDBF0E0BDE75E655FC644FAF02D9668E
Authority key identifier: 6C:4C:79:86:B1:82:EC:C3:6A:D7:4C:53:5B:EA:E7:29:9B:35:CE:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bEx5hrGC7MNq10xTW-rnKZs1zpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/Q3vW1DXXWdp1kBG5ivXPatmWUng.roa
Signing time: Thu 01 Dec 2022 12:52:41 +0000
ROA not before: Thu 01 Dec 2022 12:52:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 141.11.44.0/22 maxlen: 24
141.11.39.0/24 maxlen: 24
141.11.42.0/24 maxlen: 24
141.11.41.0/24 maxlen: 24
141.11.45.0/24 maxlen: 24
141.11.47.0/24 maxlen: 24
141.11.46.0/24 maxlen: 24
141.11.2.0/24 maxlen: 24
141.11.10.0/23 maxlen: 24
141.11.17.0/24 maxlen: 24
141.11.22.0/24 maxlen: 24
141.11.18.0/24 maxlen: 24
141.11.25.0/24 maxlen: 24
141.11.31.0/24 maxlen: 24
141.11.33.0/24 maxlen: 24
141.11.32.0/24 maxlen: 24
141.11.160.0/24 maxlen: 24
141.11.176.0/24 maxlen: 24
141.11.182.0/23 maxlen: 24
141.11.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:cd:bf:0e:0b:de:75:e6:55:fc:64:4f:af:02:d9:66:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c4c7986b182ecc36ad74c535beae7299b35ce92
Validity
Not Before: Dec 1 12:52:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=437bd6d435d759da759011b98af5cf6ad9965278
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:17:e9:a1:0d:7b:25:c5:e5:fc:44:e6:9f:06:
6b:74:4e:c4:67:9d:36:8c:00:52:56:fc:71:ae:c6:
c7:38:80:b7:9b:a1:3d:cd:00:19:d1:42:5e:31:0e:
c2:46:2c:bc:43:10:5f:86:48:73:1f:f8:69:43:f8:
ea:74:5f:3e:d4:bf:41:12:7f:c9:91:ca:e0:0b:2b:
ba:c8:32:68:55:ef:cf:2c:88:97:59:37:e2:f5:ae:
16:c4:66:a7:46:72:db:97:d3:ca:a4:0d:79:0f:28:
b4:ce:79:8c:24:70:69:82:57:98:a5:c4:d1:15:8b:
a4:8a:87:00:f1:55:86:e3:e6:b8:e2:63:3a:db:26:
32:09:7c:d8:13:f6:da:f5:40:4f:5b:17:da:2b:ac:
26:ac:65:4e:99:82:52:84:fa:0a:41:df:fc:d2:8d:
ac:41:11:5c:3d:b2:9b:7c:09:56:49:b1:0d:33:92:
15:f1:68:2c:f8:e8:0b:36:04:f4:d8:7c:b6:80:90:
08:e6:4f:2a:58:7e:82:c4:44:9a:b9:6a:2c:6f:cb:
f5:84:cd:e5:2d:63:07:4c:a8:f0:71:59:96:72:e7:
ab:09:25:ce:6e:1c:d9:47:dd:52:5a:30:23:b2:e7:
5d:28:5f:7b:51:68:4a:df:03:9b:01:89:7c:8a:43:
62:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:7B:D6:D4:35:D7:59:DA:75:90:11:B9:8A:F5:CF:6A:D9:96:52:78
X509v3 Authority Key Identifier:
keyid:6C:4C:79:86:B1:82:EC:C3:6A:D7:4C:53:5B:EA:E7:29:9B:35:CE:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bEx5hrGC7MNq10xTW-rnKZs1zpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/Q3vW1DXXWdp1kBG5ivXPatmWUng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/bEx5hrGC7MNq10xTW-rnKZs1zpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.2.0/24
141.11.10.0/23
141.11.17.0-141.11.18.255
141.11.22.0/24
141.11.25.0/24
141.11.31.0-141.11.33.255
141.11.39.0/24
141.11.41.0-141.11.42.255
141.11.44.0/22
141.11.160.0/24
141.11.176.0/24
141.11.182.0/23
141.11.189.0/24
Signature Algorithm: sha256WithRSAEncryption
05:3f:38:a3:3d:65:63:35:5d:20:f5:5d:86:92:cf:32:a1:d6:
b1:8c:ba:cd:93:1b:9f:9f:f5:54:fb:09:03:25:70:4f:fb:ec:
9f:28:10:a0:4d:76:c3:9a:b9:72:74:db:fe:02:03:64:2f:bf:
fc:fe:11:ec:4c:33:c9:88:e4:d3:10:04:ac:7b:5f:ff:39:bb:
29:58:33:79:75:aa:fc:cf:82:51:14:f3:7b:d4:b5:5d:f4:89:
db:a5:01:3e:25:5f:de:30:be:2b:81:43:40:36:71:fb:0d:a1:
a7:ef:d5:7e:6b:5f:79:93:7f:95:74:96:1c:9c:b6:60:0c:f8:
bc:94:70:ab:c9:84:2f:d7:81:b3:d3:64:46:5c:39:15:c9:66:
2f:a2:8d:74:16:b6:37:3f:99:a3:19:a3:7f:08:4e:a6:98:c9:
48:19:c6:cc:a6:eb:9b:d9:d6:61:26:7e:9b:ee:9e:42:97:4e:
43:78:ba:85:3e:7d:f2:77:12:db:82:07:e5:4a:3b:a2:e2:a7:
dd:4d:fd:33:ae:36:7d:02:30:ff:18:c8:59:3c:a9:01:a7:99:
07:0c:e0:f7:8f:49:a5:32:17:e1:a2:38:fb:52:db:c7:c6:f2:
49:e1:47:66:36:c3:a7:b0:9b:7b:32:cd:11:be:32:36:83:5d:
57:c5:3f:0f
-----BEGIN CERTIFICATE-----
MIIFXTCCBEWgAwIBAgISAYTNvw4L3nXmVfxkT68C2WaOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjNGM3OTg2YjE4MmVjYzM2YWQ3NGM1MzViZWFlNzI5OWIz
NWNlOTIwHhcNMjIxMjAxMTI1MjQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MzdiZDZkNDM1ZDc1OWRhNzU5MDExYjk4YWY1Y2Y2YWQ5OTY1Mjc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkxfpoQ17JcXl/ETmnwZrdE7EZ502
jABSVvxxrsbHOIC3m6E9zQAZ0UJeMQ7CRiy8QxBfhkhzH/hpQ/jqdF8+1L9BEn/J
kcrgCyu6yDJoVe/PLIiXWTfi9a4WxGanRnLbl9PKpA15Dyi0znmMJHBpgleYpcTR
FYukiocA8VWG4+a44mM62yYyCXzYE/ba9UBPWxfaK6wmrGVOmYJShPoKQd/80o2s
QRFcPbKbfAlWSbENM5IV8Wgs+OgLNgT02Hy2gJAI5k8qWH6CxESauWosb8v1hM3l
LWMHTKjwcVmWcuerCSXObhzZR91SWjAjsuddKF97UWhK3wObAYl8ikNitQIDAQAB
o4ICaTCCAmUwHQYDVR0OBBYEFEN71tQ111nadZARuYr1z2rZllJ4MB8GA1UdIwQY
MBaAFGxMeYaxguzDatdMU1vq5ymbNc6SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYkV4NWhyR0M3TU5xMTB4VFctcm5LWnMxenBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi9jNGU1Y2EtOGFhNS00ZTY0LWEwMjIt
MjZjYTE0OGQwN2FmLzEvUTN2VzFEWFhXZHAxa0JHNWl2WFBhdG1XVW5nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi9jNGU1Y2EtOGFhNS00ZTY0LWEwMjItMjZjYTE0OGQwN2Fm
LzEvYkV4NWhyR0M3TU5xMTB4VFctcm5LWnMxenBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMH8GCCsGAQUFBwEHAQH/BHAwbjBsBAIAATBmAwQAjQsCAwQB
jQsKMAwDBACNCxEDBACNCxIDBACNCxYDBACNCxkwDAMEAI0LHwMEAY0LIAMEAI0L
JzAMAwQAjQspAwQAjQsqAwQCjQssAwQAjQugAwQAjQuwAwQBjQu2AwQAjQu9MA0G
CSqGSIb3DQEBCwUAA4IBAQAFPzijPWVjNV0g9V2Gks8yodaxjLrNkxufn/VU+wkD
JXBP++yfKBCgTXbDmrlydNv+AgNkL7/8/hHsTDPJiOTTEASse1//ObspWDN5dar8
z4JRFPN71LVd9InbpQE+JV/eML4rgUNANnH7DaGn79V+a195k3+VdJYcnLZgDPi8
lHCryYQv14Gz02RGXDkVyWYvoo10FrY3P5mjGaN/CE6mmMlIGcbMpuub2dZhJn6b
7p5Cl05DeLqFPn3ydxLbggflSjui4qfdTf0zrjZ9AjD/GMhZPKkBp5kHDOD3j0ml
Mhfhojj7UtvHxvJJ4UdmNsOnsJt7Ms0RvjI2g11XxT8P
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:33 2024 by rpki-client on console-ams.rpki-client.org