Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/d07f01-77c0-4a40-9563-d6bb580af785/1/tw-JhgZaIhYM7CuKmzr1AJkdh10.roa
File: tw-JhgZaIhYM7CuKmzr1AJkdh10.roa (raw, json)
Hash identifier: 3rXwFFVqIdNAvyJsMoYPI2Vf5HC08SaiRVdv18FaOaU=
Subject key identifier: B7:0F:89:86:06:5A:22:16:0C:EC:2B:8A:9B:3A:F5:00:99:1D:87:5D
Certificate issuer: /CN=7645692d4bd30cf9e989d55bac8d08e7714493ab
Certificate serial: 019445B3036402A8F5F33F89045D81E476D6
Authority key identifier: 76:45:69:2D:4B:D3:0C:F9:E9:89:D5:5B:AC:8D:08:E7:71:44:93:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dkVpLUvTDPnpidVbrI0I53FEk6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/d07f01-77c0-4a40-9563-d6bb580af785/1/tw-JhgZaIhYM7CuKmzr1AJkdh10.roa
Signing time: Wed 08 Jan 2025 11:35:47 +0000
ROA not before: Wed 08 Jan 2025 11:35:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12637
IP address blocks: 31.14.183.0/24 maxlen: 24
78.40.111.0/24 maxlen: 24
86.106.75.0/24 maxlen: 24
86.106.76.0/24 maxlen: 24
91.233.180.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:45:b3:03:64:02:a8:f5:f3:3f:89:04:5d:81:e4:76:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7645692d4bd30cf9e989d55bac8d08e7714493ab
Validity
Not Before: Jan 8 11:35:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b70f8986065a22160cec2b8a9b3af500991d875d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:77:11:ec:07:80:a0:92:1d:ef:22:c9:bd:e6:
b0:bf:67:93:df:9c:24:11:64:05:07:87:72:ea:34:
33:a3:0e:03:77:66:5a:2d:6f:88:fd:d4:50:73:cf:
e3:66:8c:70:12:4e:a9:3e:6b:ee:f4:11:0f:04:47:
22:5d:67:a9:ef:46:ff:65:03:0f:4a:c1:5b:c4:2f:
82:2c:ea:f1:dc:c3:ad:45:1c:73:ec:72:93:42:0f:
ba:7e:ad:b7:10:51:64:1f:40:f8:f6:a3:aa:fb:77:
4e:96:c1:8e:91:ea:c8:73:56:56:08:a8:d6:8f:5f:
73:30:5f:c5:a5:12:37:db:82:dc:9a:d8:f4:84:ff:
fe:8b:6b:f4:37:1a:57:16:fa:38:ee:d5:53:8a:98:
d6:a2:e7:4c:bf:4c:24:fb:80:fc:78:f7:7c:04:84:
fc:e4:28:82:f9:28:03:78:88:81:a6:44:d0:14:0d:
b8:93:b8:61:ff:28:dd:bd:44:ed:99:42:92:8e:95:
c9:f6:e7:4b:6c:38:fc:11:26:0e:c5:60:64:e5:b2:
fb:12:b1:a3:80:06:e4:59:51:ef:3e:a7:c9:a1:4f:
f5:08:1f:21:3c:0c:ff:83:09:ab:31:c2:e6:1f:1f:
db:62:33:e9:d3:8c:ca:93:d3:2e:1d:3f:0a:3e:7c:
ee:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:0F:89:86:06:5A:22:16:0C:EC:2B:8A:9B:3A:F5:00:99:1D:87:5D
X509v3 Authority Key Identifier:
keyid:76:45:69:2D:4B:D3:0C:F9:E9:89:D5:5B:AC:8D:08:E7:71:44:93:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dkVpLUvTDPnpidVbrI0I53FEk6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/d07f01-77c0-4a40-9563-d6bb580af785/1/tw-JhgZaIhYM7CuKmzr1AJkdh10.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/d07f01-77c0-4a40-9563-d6bb580af785/1/dkVpLUvTDPnpidVbrI0I53FEk6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.183.0/24
78.40.111.0/24
86.106.75.0-86.106.76.255
91.233.180.0/23
Signature Algorithm: sha256WithRSAEncryption
53:54:4e:42:c2:69:5d:e0:a7:d8:af:4a:8b:27:3a:f3:5b:cc:
74:97:1b:8e:da:95:5c:4a:66:19:00:6c:b2:a6:57:6c:a1:df:
9b:2f:d8:5d:16:e9:1f:3e:18:69:c4:0c:02:76:f3:37:9c:e6:
ae:f9:4a:a8:42:62:ae:c0:72:3d:96:40:d0:68:be:da:78:1e:
22:12:4b:93:e0:07:c6:d6:a7:34:60:5e:7f:30:33:4a:59:1c:
90:bd:5c:df:52:03:dd:cd:73:6a:9b:5d:b5:2d:22:92:ae:c1:
92:73:0a:3d:07:d3:cc:e7:9e:e1:3b:e8:ed:1e:df:0f:ac:80:
fa:d9:4a:70:5b:9b:a4:eb:a2:bc:17:45:1f:dd:08:90:fc:89:
b0:60:64:65:f1:ca:c9:9b:be:0b:d3:71:fb:22:6a:39:5e:12:
82:fa:6c:4a:03:47:8e:85:7b:1a:ee:80:8b:ec:06:0c:fd:63:
9c:cc:72:c1:17:5a:7f:f8:2e:41:46:e1:82:74:45:b4:7a:33:
a0:ce:da:07:e6:73:e5:ea:b5:e7:42:8d:bd:5c:bd:63:df:b1:
77:ca:6e:0f:8c:cf:b8:17:ba:2c:d5:fa:ef:97:c2:4f:7c:2a:
fc:59:54:a0:ad:85:13:17:0a:16:bd:51:1e:fa:b4:05:19:a1:
62:04:bd:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 19:16:32 2025 by rpki-client on console.sobornost.net