Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/kytVOyt1M8NbIZyc5ijDyDDVxsE.roa
File: kytVOyt1M8NbIZyc5ijDyDDVxsE.roa (raw, json)
Hash identifier: Y7+RszSV5OiIX0iGfe98pyi8W98zsfjSZBT1CwiTvV8=
Subject key identifier: 93:2B:55:3B:2B:75:33:C3:5B:21:9C:9C:E6:28:C3:C8:30:D5:C6:C1
Certificate issuer: /CN=6c4c7986b182ecc36ad74c535beae7299b35ce92
Certificate serial: 03F9DFD6
Authority key identifier: 6C:4C:79:86:B1:82:EC:C3:6A:D7:4C:53:5B:EA:E7:29:9B:35:CE:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bEx5hrGC7MNq10xTW-rnKZs1zpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/kytVOyt1M8NbIZyc5ijDyDDVxsE.roa
Signing time: Thu 21 Apr 2022 10:10:01 +0000
ROA not before: Thu 21 Apr 2022 10:10:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 141.11.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66707414 (0x3f9dfd6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c4c7986b182ecc36ad74c535beae7299b35ce92
Validity
Not Before: Apr 21 10:10:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=932b553b2b7533c35b219c9ce628c3c830d5c6c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c7:90:7c:b4:1c:a0:ae:57:38:ac:81:ba:16:
8e:b4:ad:5d:45:55:6a:eb:e0:70:c8:fe:5b:f8:10:
28:ee:29:1f:4f:83:de:02:ae:cf:66:93:9a:69:46:
29:18:2c:cf:ad:a4:9c:60:a3:fa:5f:aa:1a:98:c2:
f9:7c:dd:40:42:05:1e:6f:4d:33:25:81:60:ce:df:
b8:91:8e:36:db:1a:3c:f1:94:3a:7c:f3:ca:20:15:
6f:aa:ea:f6:56:8b:f1:24:bc:05:8c:2f:e8:a5:0e:
48:d7:d5:8e:ed:e7:d7:91:78:ff:27:c6:3a:c1:56:
5e:1a:a2:36:c1:ac:42:51:e0:5b:96:29:9e:c3:ba:
37:6e:8d:29:af:3d:81:cf:39:14:e5:8e:db:75:e4:
58:03:c3:8b:95:7b:d4:b1:a1:97:36:61:8f:8e:40:
e7:5b:87:a1:d8:1c:35:a3:cf:fe:c4:9a:de:bc:90:
5e:cc:dc:80:12:58:fb:30:6d:1b:08:15:66:28:53:
6f:c8:66:97:d4:48:b4:7a:db:f3:ea:50:b8:4f:ab:
74:33:cc:d7:31:de:ae:ba:c5:c5:8e:88:ac:dd:51:
41:ce:d3:47:d7:90:e2:6f:6d:fc:64:92:ff:58:db:
94:cf:c2:fe:d3:84:f4:3e:31:00:63:d1:0e:b2:fe:
3f:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:2B:55:3B:2B:75:33:C3:5B:21:9C:9C:E6:28:C3:C8:30:D5:C6:C1
X509v3 Authority Key Identifier:
keyid:6C:4C:79:86:B1:82:EC:C3:6A:D7:4C:53:5B:EA:E7:29:9B:35:CE:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bEx5hrGC7MNq10xTW-rnKZs1zpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/kytVOyt1M8NbIZyc5ijDyDDVxsE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/bEx5hrGC7MNq10xTW-rnKZs1zpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.71.0/24
Signature Algorithm: sha256WithRSAEncryption
72:3b:52:8f:4a:2f:e5:ea:57:b4:a4:78:df:8e:75:78:f0:48:
99:fd:25:ba:a0:1f:a2:57:dd:1a:c8:d3:cb:0c:2f:1d:cf:ca:
1f:0c:c5:f5:b9:d3:bd:28:10:14:2a:e1:e7:bb:35:35:e7:d3:
9d:cd:10:d5:7b:f8:0f:69:e4:21:4d:55:62:fa:10:e4:ae:c4:
fb:2f:97:e6:b0:f9:71:0e:7b:b1:32:ed:0c:58:2d:c6:90:90:
68:4d:33:47:9c:53:99:4c:37:f9:07:7d:30:4a:50:93:5f:e4:
f7:49:9d:0f:31:ec:9e:b4:7e:49:b2:9e:28:53:7d:11:20:49:
41:7c:56:ba:5f:c9:6d:d4:26:30:4d:73:a3:bd:51:d1:bc:3a:
47:65:c7:d0:44:1d:34:41:39:b5:18:2d:00:38:79:a0:d3:3d:
0f:ef:1c:84:65:16:62:49:42:c6:3e:af:e6:fc:99:cc:9a:25:
40:67:41:a2:1a:91:89:ee:6f:1f:1b:5b:a9:14:be:93:5d:bc:
6a:f0:5a:d4:c3:c2:82:1f:fb:16:7b:2c:98:4f:53:bd:b8:24:
cf:42:d6:6a:ca:fb:11:ae:67:e0:5f:ca:bb:01:29:5b:05:ca:
92:c1:5f:58:8e:24:70:d3:cb:44:0b:51:9f:6f:67:8f:c8:d5:
d3:6c:86:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:11:12 2025 by rpki-client