Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/d41002-4346-4cef-9f40-fce2f83c3df9/1/11imtel-AD1solHjM_dwthc82lo.roa
File: 11imtel-AD1solHjM_dwthc82lo.roa (raw, json)
Hash identifier: o0XN2Ow6nsF4LN+NvFOUS8wQpU/KiuNSSepXlwvoXZQ=
Subject key identifier: D7:58:A6:B5:E9:7E:00:3D:6C:A2:51:E3:33:F7:70:B6:17:3C:DA:5A
Certificate issuer: /CN=bf1ce08452d4a51a9eb4d423d8a03a916235b572
Certificate serial: 012E30
Authority key identifier: BF:1C:E0:84:52:D4:A5:1A:9E:B4:D4:23:D8:A0:3A:91:62:35:B5:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vxzghFLUpRqetNQj2KA6kWI1tXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/d41002-4346-4cef-9f40-fce2f83c3df9/1/11imtel-AD1solHjM_dwthc82lo.roa
Signing time: Tue 25 Jan 2022 18:23:35 +0000
ROA not before: Tue 25 Jan 2022 18:23:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 152.89.199.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77360 (0x12e30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf1ce08452d4a51a9eb4d423d8a03a916235b572
Validity
Not Before: Jan 25 18:23:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d758a6b5e97e003d6ca251e333f770b6173cda5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:4d:cc:20:d7:c4:27:60:32:e8:a7:e1:77:bf:
05:6e:ee:2b:2c:e8:6c:42:4c:cf:1e:25:62:4c:c2:
ec:17:77:32:71:79:9e:eb:42:e1:ef:2a:ff:8f:0a:
49:ed:94:31:14:c8:c8:85:7a:1c:3c:4b:d7:91:80:
d3:ff:98:81:5d:b6:63:10:5a:d5:64:1d:47:3b:72:
bd:b9:7d:d6:af:02:39:67:05:35:4a:8d:86:75:69:
5d:98:33:a9:0b:94:e5:9e:32:f8:2a:b2:a9:3a:be:
e2:de:93:78:18:c9:f5:d0:f6:ef:ab:22:60:62:7a:
16:ef:ea:05:b9:55:40:39:6a:e7:0b:69:57:f9:57:
b7:f9:e2:7d:20:d7:62:8f:37:c0:fc:fb:08:1c:8d:
45:19:8b:9a:17:87:ea:d6:48:18:cd:69:68:e9:a9:
e1:70:d7:a5:b8:77:47:c8:b6:9e:92:5c:38:46:8a:
5c:50:63:18:27:f7:6f:8a:f5:96:91:cd:2c:25:50:
3b:9b:fe:55:7a:81:4c:e6:02:7d:fd:3e:50:f6:a4:
c1:f9:97:26:c1:7c:bb:07:40:b8:75:72:2d:d4:74:
22:a5:66:30:5d:ff:88:1b:52:33:00:fc:fd:db:ae:
ab:e2:b2:ca:5f:72:b5:cb:bd:6d:39:c0:11:27:d3:
67:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:58:A6:B5:E9:7E:00:3D:6C:A2:51:E3:33:F7:70:B6:17:3C:DA:5A
X509v3 Authority Key Identifier:
keyid:BF:1C:E0:84:52:D4:A5:1A:9E:B4:D4:23:D8:A0:3A:91:62:35:B5:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vxzghFLUpRqetNQj2KA6kWI1tXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d41002-4346-4cef-9f40-fce2f83c3df9/1/11imtel-AD1solHjM_dwthc82lo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d41002-4346-4cef-9f40-fce2f83c3df9/1/vxzghFLUpRqetNQj2KA6kWI1tXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.89.199.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:a1:96:5b:ed:dd:69:99:7b:8c:7b:5d:57:25:c4:97:1b:79:
11:2b:3a:4b:15:a8:d8:f1:0d:75:8d:ec:f4:07:a7:17:46:69:
63:bb:d3:78:cc:7c:c3:c5:55:b3:bd:df:51:78:bf:84:42:3c:
df:ee:ad:dc:46:5e:32:83:90:1d:cc:78:d8:39:22:19:51:47:
93:2f:0f:4a:a7:3e:dd:41:ec:dc:0e:a9:34:18:04:41:a5:07:
e7:bb:88:b9:2a:7a:6d:6a:c2:c1:86:97:4d:7c:9e:ce:a0:be:
5b:f2:69:0f:7e:32:40:b9:4c:8e:c6:1c:7a:b0:15:62:f7:98:
68:bb:b8:75:e8:d9:98:71:17:c8:f7:0e:a8:51:e8:ff:ba:f2:
53:94:9f:87:c6:ac:ad:06:f6:50:ae:5e:91:19:66:77:6e:39:
73:08:45:c6:d5:9d:16:2b:1d:4d:6c:c0:7c:06:69:e4:76:7a:
3a:87:44:9b:e9:fd:d3:74:5c:8b:00:8a:7d:f2:a9:e4:91:2e:
89:4d:53:a1:d5:9a:f1:ff:dc:9b:9e:ac:ff:a5:ad:a9:4b:00:
cd:01:9d:74:ed:7a:6c:cd:0d:99:f6:a8:84:eb:20:41:fd:0d:
0e:e4:d3:2a:9f:e6:fb:1c:93:9b:95:35:47:69:27:85:6e:45:
47:a0:24:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:02 2024 by rpki-client on console-ams.rpki-client.org