Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/TvNONv9kAVJFNlomIa_IbK1wd4k.roa
File: TvNONv9kAVJFNlomIa_IbK1wd4k.roa (raw, json)
Hash identifier: DaU2dN770a5bHCwuBMmKJFAZYjiNjRZ3OA0p17vf3JE=
Subject key identifier: 4E:F3:4E:36:FF:64:01:52:45:36:5A:26:21:AF:C8:6C:AD:70:77:89
Certificate issuer: /CN=6c4c7986b182ecc36ad74c535beae7299b35ce92
Certificate serial: 0332EA9D
Authority key identifier: 6C:4C:79:86:B1:82:EC:C3:6A:D7:4C:53:5B:EA:E7:29:9B:35:CE:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bEx5hrGC7MNq10xTW-rnKZs1zpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/TvNONv9kAVJFNlomIa_IbK1wd4k.roa
Signing time: Wed 23 Feb 2022 14:05:44 +0000
ROA not before: Wed 23 Feb 2022 14:05:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211936
IP address blocks: 141.11.71.0/24 maxlen: 24
141.11.88.0/21 maxlen: 24
141.11.86.0/23 maxlen: 24
141.11.12.0/22 maxlen: 24
141.11.26.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53668509 (0x332ea9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c4c7986b182ecc36ad74c535beae7299b35ce92
Validity
Not Before: Feb 23 14:05:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ef34e36ff64015245365a2621afc86cad707789
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:a5:2d:a5:39:c2:7e:cb:63:a0:03:3d:06:1f:
24:87:ea:2d:e7:e7:49:6d:96:f0:31:1c:ca:16:d4:
cf:05:c5:54:4a:51:2a:fb:06:3d:d6:b7:65:9d:18:
80:d0:91:54:89:48:ad:3c:be:cf:80:c5:c5:c4:0b:
3b:4d:f7:7e:85:44:88:9a:19:5b:59:90:92:05:1a:
d4:fc:df:5a:ad:91:64:a2:53:62:d3:ff:e3:95:52:
c2:d9:9a:df:ef:b9:10:f4:81:40:f3:d5:d1:92:0b:
5f:69:0c:60:a6:e7:93:97:63:ba:71:5f:44:7b:f1:
23:dd:24:45:a2:e1:51:c2:5b:c5:bc:0f:d7:15:c6:
8a:81:95:2e:34:c0:c9:ce:04:f3:53:34:20:08:5f:
a4:b7:7b:81:8e:ea:e0:81:d5:f3:81:41:98:4c:9b:
ec:52:bb:9b:9f:1c:fe:d9:e8:4f:36:32:dc:bd:86:
96:a7:11:5c:b5:71:48:b8:d7:f8:13:8b:28:7b:f2:
d3:d7:23:90:61:d2:38:98:84:db:a3:39:e3:65:b1:
5b:03:27:21:18:f6:20:27:6e:63:34:dd:21:88:2d:
b2:aa:e4:f7:ad:36:c8:04:ff:b6:e4:7a:37:34:1b:
f5:90:c6:41:eb:e9:ab:c4:47:49:96:65:7f:64:b6:
6b:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:F3:4E:36:FF:64:01:52:45:36:5A:26:21:AF:C8:6C:AD:70:77:89
X509v3 Authority Key Identifier:
keyid:6C:4C:79:86:B1:82:EC:C3:6A:D7:4C:53:5B:EA:E7:29:9B:35:CE:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bEx5hrGC7MNq10xTW-rnKZs1zpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/TvNONv9kAVJFNlomIa_IbK1wd4k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/bEx5hrGC7MNq10xTW-rnKZs1zpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.12.0/22
141.11.26.0/24
141.11.71.0/24
141.11.86.0-141.11.95.255
Signature Algorithm: sha256WithRSAEncryption
3d:b5:a9:e8:92:fd:3f:54:ca:1d:53:a7:40:30:24:f2:64:8b:
aa:14:83:a2:6e:e6:b7:0e:5c:6f:b4:77:da:0b:29:06:90:60:
fc:ca:a3:c8:8e:16:b4:11:e6:e8:f7:a3:3e:ff:f2:f3:1c:7c:
48:51:7a:9f:e9:ee:cc:ff:5f:ae:4f:7c:58:3c:34:59:2b:4f:
a1:9d:fa:ca:a1:39:43:fd:e1:bb:af:3d:a9:ca:bc:47:be:cb:
b7:1b:2d:de:d6:4e:56:c0:ca:89:61:ff:40:0f:8c:51:e4:63:
0b:36:da:b8:f3:8d:1c:7e:43:80:a2:61:9f:ea:df:69:08:b4:
3c:04:6d:0c:0c:b0:60:de:ce:75:17:ab:ba:40:86:e4:5b:20:
f7:ee:cb:fd:01:b2:81:ad:13:d9:fd:9c:86:70:0f:e6:6d:01:
7c:dc:4c:09:d7:2d:d0:37:8a:4c:ce:0e:23:25:cd:cb:13:49:
d3:71:8c:e5:5b:83:8e:a3:24:d7:dc:da:39:33:d7:d1:22:1e:
27:92:a4:ae:41:ec:01:ab:9d:3b:e5:56:6b:4c:a2:9d:33:b1:
68:b8:5b:a1:68:b8:f6:5a:75:2b:a1:84:4d:1f:b5:ef:7f:a0:
b0:91:30:97:52:2a:d4:e1:94:15:c6:c9:42:eb:f6:cd:07:c1:
94:b6:e3:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:21:02 2025 by rpki-client