Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/EKkahFIhDk2xO4BNtQI1KjWsS8Y.roa
File: EKkahFIhDk2xO4BNtQI1KjWsS8Y.roa (raw, json)
Hash identifier: 9dWLn60PVK/jBeLJmvX79qdxl0xWYbrSVkMVI8UbPYo=
Subject key identifier: 10:A9:1A:84:52:21:0E:4D:B1:3B:80:4D:B5:02:35:2A:35:AC:4B:C6
Certificate issuer: /CN=6c4c7986b182ecc36ad74c535beae7299b35ce92
Certificate serial: 01850B2D4CF4B880BC86CB05195A57590F0D
Authority key identifier: 6C:4C:79:86:B1:82:EC:C3:6A:D7:4C:53:5B:EA:E7:29:9B:35:CE:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bEx5hrGC7MNq10xTW-rnKZs1zpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/EKkahFIhDk2xO4BNtQI1KjWsS8Y.roa
Signing time: Tue 13 Dec 2022 11:09:56 +0000
ROA not before: Tue 13 Dec 2022 11:09:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 150398
IP address blocks: 141.11.204.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:0b:2d:4c:f4:b8:80:bc:86:cb:05:19:5a:57:59:0f:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c4c7986b182ecc36ad74c535beae7299b35ce92
Validity
Not Before: Dec 13 11:09:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=10a91a8452210e4db13b804db502352a35ac4bc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:1b:8d:9b:47:b4:dc:e3:f0:95:b7:b0:41:f2:
b5:3e:8b:ce:da:d1:93:8a:28:59:de:89:83:73:7e:
fd:91:4e:0f:2f:c3:5c:05:d9:cd:ff:4c:72:45:3f:
39:e2:e5:58:dd:46:6d:83:8d:8a:4f:10:03:f7:f2:
e5:c8:7d:b0:b4:99:28:3e:46:d2:3a:48:78:63:25:
63:40:86:05:a0:3d:3b:12:f5:9c:70:79:a7:82:e2:
b5:7f:36:32:44:33:c6:92:fd:9b:47:72:90:14:9f:
c9:87:c6:e4:92:cf:6c:92:9f:ef:aa:8c:45:bb:f5:
70:a1:69:62:5c:bc:cc:ab:81:a0:4f:3e:10:51:30:
65:eb:ad:74:82:2c:f0:bc:7b:ac:14:17:fa:db:c7:
00:49:e7:5b:47:42:61:7e:4e:f3:d3:55:ad:61:8c:
da:59:63:0e:f8:44:e9:c1:8e:d3:6f:ee:48:68:97:
40:5b:6e:84:14:7f:ca:d9:2b:54:59:20:66:a1:45:
20:44:74:66:9f:b2:57:e7:1d:5a:d9:8a:b8:c6:b0:
9b:4d:3b:e1:bc:48:ec:25:e3:64:7e:f8:e3:f5:3d:
11:51:2c:fa:23:df:9f:a3:a3:01:fc:a4:28:9e:f4:
2f:3d:87:cc:05:09:e2:90:0b:7b:bf:9b:2b:c4:a2:
66:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:A9:1A:84:52:21:0E:4D:B1:3B:80:4D:B5:02:35:2A:35:AC:4B:C6
X509v3 Authority Key Identifier:
keyid:6C:4C:79:86:B1:82:EC:C3:6A:D7:4C:53:5B:EA:E7:29:9B:35:CE:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bEx5hrGC7MNq10xTW-rnKZs1zpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/EKkahFIhDk2xO4BNtQI1KjWsS8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/bEx5hrGC7MNq10xTW-rnKZs1zpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.204.0/23
Signature Algorithm: sha256WithRSAEncryption
16:cd:60:64:38:6a:ab:72:1e:63:68:4b:96:09:67:f0:ba:76:
1f:5e:ca:6b:68:15:36:72:e5:aa:b4:5e:27:0c:19:59:47:81:
fb:d1:b4:1f:1c:4f:04:cc:df:bf:b6:55:12:c8:bd:cf:69:b1:
b9:bc:4e:84:44:90:a6:18:90:e9:a1:cc:7a:a2:80:a7:a6:05:
3c:9d:ac:10:1f:87:45:b9:3c:78:7d:61:80:c1:71:85:63:39:
fc:63:62:62:d2:7c:5c:b2:3b:ed:86:65:cb:61:e2:ab:89:ee:
48:c4:55:e9:74:ee:ba:4f:d2:76:ac:d0:2d:80:5f:5e:fd:73:
0b:4c:2f:fc:01:14:8b:b8:0c:7c:f2:4d:2e:87:c5:be:90:d3:
60:62:22:d4:ad:59:3f:9e:2a:a8:5e:a9:6a:1b:ab:f1:e4:08:
bc:41:37:0c:67:3b:79:a0:12:c3:fd:d7:a9:73:10:24:cf:94:
d5:f6:86:06:4f:3d:b7:24:30:b5:1c:a7:0e:a5:c3:68:30:ab:
e5:17:fc:8a:54:84:b2:4e:d2:42:6d:23:eb:86:73:df:21:73:
90:22:c9:1a:72:c8:2d:5e:de:2d:77:df:85:51:89:fd:e6:d2:
f4:d3:2a:55:b9:41:a7:e2:90:f6:11:92:81:61:17:e9:e5:5e:
9e:6c:c8:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:56 2023 by rpki-client on console.sobornost.net