Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/E_MVMHnEdElYGkw4jdqEaMJuxZs.roa
File: E_MVMHnEdElYGkw4jdqEaMJuxZs.roa (raw, json)
Hash identifier: vQtoz/g3HwbtUGPaz7XcXunPygsAfnpAumGcmedx6nY=
Subject key identifier: 13:F3:15:30:79:C4:74:49:58:1A:4C:38:8D:DA:84:68:C2:6E:C5:9B
Certificate issuer: /CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f
Certificate serial: 04568E95
Authority key identifier: 29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/E_MVMHnEdElYGkw4jdqEaMJuxZs.roa
Signing time: Tue 08 Feb 2022 08:21:56 +0000
ROA not before: Tue 08 Feb 2022 08:21:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 85.239.149.0/24 maxlen: 24
85.239.151.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72781461 (0x4568e95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f
Validity
Not Before: Feb 8 08:21:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=13f3153079c47449581a4c388dda8468c26ec59b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:53:90:72:20:34:c3:d3:51:d8:b4:fc:b5:ec:
38:6c:34:52:89:50:c8:7e:f6:a6:39:46:cb:15:d2:
9f:61:ce:47:a8:d7:4d:f4:f6:2e:12:56:ee:2f:dc:
27:8e:56:1a:10:ff:5e:9e:bc:72:5c:1e:10:88:40:
c2:c9:33:13:39:d5:79:86:56:f6:e3:7f:c6:bb:5e:
0c:e1:f5:b6:fd:93:31:f3:b8:db:22:67:f8:83:3c:
29:9b:c6:92:c1:d6:26:16:3d:68:fa:4c:b2:e3:c6:
95:70:1b:34:d6:b1:b5:87:1a:e7:13:f1:47:a7:c8:
59:3b:b2:5e:e7:4e:85:3b:6e:fc:7e:c2:a2:c4:00:
fd:6f:52:52:87:29:50:e6:8d:39:57:e9:97:ff:bf:
45:17:c9:40:74:6b:7a:6f:cd:9f:fc:38:aa:6e:e5:
fb:bf:3d:01:19:96:e6:6f:0a:28:4b:b7:29:38:65:
ba:f7:49:f4:ae:68:98:00:cf:72:76:9c:26:37:71:
f5:29:f6:86:ba:fd:5b:48:09:bf:9b:98:4a:cf:f7:
0a:7d:5f:05:c9:0f:c2:61:1e:72:a1:dc:6b:27:fe:
ea:a7:bb:d2:5c:6e:dc:52:71:ef:f3:b4:09:61:53:
d2:82:10:a3:08:e2:d9:10:36:ea:e2:6d:39:a1:26:
55:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:F3:15:30:79:C4:74:49:58:1A:4C:38:8D:DA:84:68:C2:6E:C5:9B
X509v3 Authority Key Identifier:
keyid:29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/E_MVMHnEdElYGkw4jdqEaMJuxZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.239.149.0/24
85.239.151.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:b1:6d:f8:1c:0c:55:35:e4:32:55:69:c5:ff:cd:e5:d1:51:
0a:6c:fd:b4:1a:8a:c5:a3:df:8a:da:47:28:60:49:26:1c:5f:
74:cb:5c:7c:e0:79:33:23:bd:6f:af:58:89:50:0f:97:7b:32:
66:e0:23:49:3c:90:77:5c:1a:31:e9:50:2e:f8:b4:04:58:19:
c9:cc:9d:90:87:73:1c:d2:40:4c:ed:7e:84:5e:3e:e6:31:d3:
56:9e:14:ca:09:e4:1c:85:d7:de:38:f4:3e:9f:af:a4:74:0f:
eb:67:8c:1f:c6:cf:bf:47:39:88:6d:6d:09:7f:42:f1:f1:bb:
a1:24:1d:6b:cc:bd:8b:fc:cc:67:97:f7:17:08:fd:c8:26:ef:
f5:87:ef:ad:d4:2d:73:f4:be:e8:a5:ae:c7:91:a5:2c:41:3e:
bd:00:a5:28:15:6c:ed:71:2d:b1:99:55:7f:55:ea:1f:de:34:
16:30:ab:7f:51:35:6d:b4:4f:9c:96:b6:b3:18:e9:f4:98:5a:
20:ad:99:b1:e6:f0:ef:27:a3:e9:f0:bd:9a:3d:a9:3c:c3:c0:
e5:1d:33:ad:6e:ff:6b:5d:cc:d9:23:c9:f2:ba:72:da:72:46:
3e:3d:65:f4:00:f1:c6:ec:a5:c6:c1:ac:5e:58:d2:52:73:e7:
9c:7c:4f:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:57:28 2025 by rpki-client