Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/MQnREEbf1WLcPjIk_1u7LVE8qP8.roa
File: MQnREEbf1WLcPjIk_1u7LVE8qP8.roa (raw, json)
Hash identifier: A1ctjUQrR27qY8OGeItA1jDJX6nz2XuLnAfo82D1kMU=
Subject key identifier: 31:09:D1:10:46:DF:D5:62:DC:3E:32:24:FF:5B:BB:2D:51:3C:A8:FF
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0BB752E4
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/MQnREEbf1WLcPjIk_1u7LVE8qP8.roa
Signing time: Thu 06 Jan 2022 07:20:37 +0000
ROA not before: Thu 06 Jan 2022 07:20:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28753
IP address blocks: 194.233.12.0/22 maxlen: 22
195.206.144.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 196563684 (0xbb752e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Jan 6 07:20:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3109d11046dfd562dc3e3224ff5bbb2d513ca8ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:c8:5f:ae:0e:a2:08:53:be:b1:48:e0:5d:55:
47:e5:64:51:88:34:47:3f:b5:cd:22:77:d3:5f:6d:
5d:85:1f:78:11:f1:a8:99:7a:3a:e0:02:87:c9:0d:
d0:fe:f3:e2:45:8b:be:b0:87:87:1c:11:6d:e7:c7:
85:75:0a:5d:ee:85:8b:51:17:dc:03:2a:50:38:ea:
fb:46:da:04:69:fa:a5:78:7a:8f:f1:d9:10:b5:bd:
30:76:b2:d3:54:c7:d7:47:0d:46:46:5e:c4:17:2a:
69:78:bb:4b:a2:a4:b1:99:c3:59:c3:2d:da:03:32:
cc:4d:3e:be:8a:f2:07:e4:27:af:7f:c8:48:77:a7:
50:64:a5:f4:e6:88:dc:6e:be:98:48:fe:5d:d0:57:
c7:0f:13:de:19:88:35:2d:83:23:8f:ae:0c:10:96:
71:53:04:69:1d:de:a3:3e:55:a3:94:9e:d5:3e:f3:
d4:b3:8b:6f:b8:b5:46:98:0e:2d:fc:26:c7:c1:0b:
2c:cd:c7:c5:a9:0f:ce:8b:c8:a5:03:b0:7c:a2:07:
63:28:44:4e:d2:d1:95:5f:2c:d9:db:d3:95:e3:41:
47:08:89:50:f7:2a:cd:56:07:16:9c:d0:db:24:4f:
8e:d6:0a:cf:33:3f:1d:2d:49:f0:a7:f4:33:b9:d6:
52:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:09:D1:10:46:DF:D5:62:DC:3E:32:24:FF:5B:BB:2D:51:3C:A8:FF
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/MQnREEbf1WLcPjIk_1u7LVE8qP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.233.12.0/22
195.206.144.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:be:f5:5f:f6:2d:d8:63:23:bb:e6:19:2b:b7:95:41:6a:ca:
65:1f:60:af:78:16:30:86:92:bd:75:54:70:a4:34:7f:28:55:
11:4a:48:79:a2:c0:a8:66:76:ab:25:65:af:8f:21:57:47:09:
ad:97:b3:71:cd:45:a1:9f:8d:d6:a5:16:cb:94:a7:e1:e0:db:
6b:c0:b5:15:b3:56:28:61:7d:3b:0b:e9:df:b0:42:eb:d6:54:
72:af:d0:2b:ff:aa:83:79:df:1d:38:fc:d3:82:e4:db:2c:91:
af:d9:75:84:69:2e:f5:15:32:32:04:49:28:d0:1a:37:e1:f0:
90:3c:76:10:f0:2d:27:4a:37:a3:5c:b9:98:6d:8a:9e:b8:d0:
75:95:21:f6:37:f0:a6:b7:05:49:ed:17:47:2f:d8:4d:1b:5a:
dd:61:11:6a:b9:95:27:ba:21:48:bd:00:21:1a:8e:9a:77:18:
51:9f:e1:b2:28:f3:aa:d7:cc:af:7b:11:2a:ff:e3:13:bc:af:
35:56:81:a0:39:85:0c:e2:98:35:ab:26:f5:3b:92:36:56:27:
fe:cc:30:c3:65:5d:f5:34:86:c0:ea:b4:39:a3:46:d0:c5:ef:
8f:9f:77:49:36:7a:08:73:c6:1c:a5:a9:b4:0e:2b:78:8f:5e:
fb:a5:08:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:00:27 2025 by rpki-client