Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/d608b8-501f-491f-a2f2-10e57f56a17a/1/mn0eBW57NQIPiKHlN3VjBOCrBwM.roa
File: mn0eBW57NQIPiKHlN3VjBOCrBwM.roa (raw, json)
Hash identifier: Q9KukE1TFuxZdPyKM+3q4VKMJP4x9GkCYDXI40jMHbY=
Subject key identifier: 9A:7D:1E:05:6E:7B:35:02:0F:88:A1:E5:37:75:63:04:E0:AB:07:03
Certificate issuer: /CN=4d77ccd7a94415dfc68ccca874e94c2e8c22202d
Certificate serial: 0194258ECF86461422F646C471D624B22DEA
Authority key identifier: 4D:77:CC:D7:A9:44:15:DF:C6:8C:CC:A8:74:E9:4C:2E:8C:22:20:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TXfM16lEFd_GjMyodOlMLowiIC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/d608b8-501f-491f-a2f2-10e57f56a17a/1/mn0eBW57NQIPiKHlN3VjBOCrBwM.roa
Signing time: Thu 02 Jan 2025 05:48:23 +0000
ROA not before: Thu 02 Jan 2025 05:48:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 136557
IP address blocks: 185.184.152.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8e:cf:86:46:14:22:f6:46:c4:71:d6:24:b2:2d:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d77ccd7a94415dfc68ccca874e94c2e8c22202d
Validity
Not Before: Jan 2 05:48:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9a7d1e056e7b35020f88a1e537756304e0ab0703
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:7c:3d:79:de:c7:84:5f:18:53:3a:ed:7f:f7:
f1:da:6c:0b:b6:ad:8b:97:3d:d3:30:a6:c4:df:d2:
cf:55:51:c6:6c:7f:cd:27:dd:0a:ee:2e:38:f8:c7:
24:4c:04:7c:f7:f5:21:a8:8c:49:e3:5f:d1:d6:56:
38:29:fa:5b:ad:7e:e9:d6:46:fa:7e:d8:5f:19:e4:
75:55:c8:02:d1:81:8b:3f:c2:f2:69:93:be:c1:71:
0b:5a:1c:3c:0f:63:fa:93:d7:28:6d:c3:cc:6e:f4:
80:3a:31:57:eb:ea:7b:4e:ce:95:6d:06:20:01:0a:
a7:3c:b8:3a:4c:8c:3f:e9:bc:7a:a2:e9:fb:0c:8b:
77:9d:ec:98:e4:c2:ab:5b:9e:bf:66:94:aa:db:be:
f6:bd:6f:9c:db:e9:2f:52:81:0b:36:f7:96:32:85:
38:4d:00:ce:30:b4:9e:ec:19:4c:80:ed:ac:81:39:
40:ff:30:fa:73:d1:28:bb:a9:54:be:3f:67:ee:a8:
70:35:75:fd:86:89:d0:43:55:a2:a0:2c:14:05:9a:
d5:e7:42:fa:84:ac:d0:09:b9:0c:a4:50:99:5e:ae:
aa:cb:97:51:1d:4a:df:ff:b8:de:a4:70:79:90:69:
b9:24:fd:3d:76:a4:0f:57:92:8e:16:94:b1:91:6a:
32:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:7D:1E:05:6E:7B:35:02:0F:88:A1:E5:37:75:63:04:E0:AB:07:03
X509v3 Authority Key Identifier:
keyid:4D:77:CC:D7:A9:44:15:DF:C6:8C:CC:A8:74:E9:4C:2E:8C:22:20:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TXfM16lEFd_GjMyodOlMLowiIC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d608b8-501f-491f-a2f2-10e57f56a17a/1/mn0eBW57NQIPiKHlN3VjBOCrBwM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d608b8-501f-491f-a2f2-10e57f56a17a/1/TXfM16lEFd_GjMyodOlMLowiIC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.184.152.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:0f:da:5a:15:e4:bb:7c:30:5d:41:54:50:f4:58:43:73:ca:
68:4f:bf:ed:fa:40:de:d6:eb:bb:f0:69:5b:2f:ce:92:7c:f4:
f2:01:d3:ce:46:a0:82:66:98:78:f1:bf:a5:32:18:07:4c:6a:
b7:12:2e:e3:f7:df:68:f6:df:13:f2:10:7b:55:dc:2f:37:05:
6f:e5:3a:62:bf:b7:f4:5e:ad:87:c5:e1:f2:ca:fe:b2:61:9b:
ef:c1:66:be:87:bf:13:9b:24:91:4f:6c:b7:5d:8e:e8:be:71:
99:42:66:7f:4f:36:18:61:0f:54:a3:09:5e:6b:2d:31:0a:0e:
95:f6:0f:de:92:5e:57:37:b2:f7:1f:a9:e3:3d:ab:bd:98:cb:
05:60:41:4e:66:94:db:e6:46:0a:8d:a4:63:ec:09:f7:2e:81:
4d:a8:3b:ae:fa:97:73:a6:67:5a:61:29:b9:03:c4:8d:e0:bd:
95:65:eb:ae:80:73:02:91:fc:3d:80:54:21:c4:71:c6:1f:b3:
6a:53:15:4f:d1:cc:46:18:7a:3e:52:bf:dc:c4:23:71:17:d9:
0d:04:2a:77:07:f7:b7:27:19:2a:5a:ec:e7:81:36:f4:34:2e:
2b:a9:dd:e8:42:69:53:4a:e0:62:5f:2c:59:90:1e:61:aa:ec:
a6:b0:b6:36
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQljs+GRhQi9kbEcdYksi3qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkNzdjY2Q3YTk0NDE1ZGZjNjhjY2NhODc0ZTk0YzJlOGMy
MjIwMmQwHhcNMjUwMTAyMDU0ODIzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YTdkMWUwNTZlN2IzNTAyMGY4OGExZTUzNzc1NjMwNGUwYWIwNzAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7Hw9ed7HhF8YUzrtf/fx2mwLtq2L
lz3TMKbE39LPVVHGbH/NJ90K7i44+MckTAR89/UhqIxJ41/R1lY4KfpbrX7p1kb6
fthfGeR1VcgC0YGLP8LyaZO+wXELWhw8D2P6k9cobcPMbvSAOjFX6+p7Ts6VbQYg
AQqnPLg6TIw/6bx6oun7DIt3neyY5MKrW56/ZpSq2772vW+c2+kvUoELNveWMoU4
TQDOMLSe7BlMgO2sgTlA/zD6c9Eou6lUvj9n7qhwNXX9honQQ1WioCwUBZrV50L6
hKzQCbkMpFCZXq6qy5dRHUrf/7jepHB5kGm5JP09dqQPV5KOFpSxkWoyrwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJp9HgVuezUCD4ih5Td1YwTgqwcDMB8GA1UdIwQY
MBaAFE13zNepRBXfxozMqHTpTC6MIiAtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVFhmTTE2bEVGZF9Hak15b2RPbE1Mb3dpSUMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9kNjA4YjgtNTAxZi00OTFmLWEyZjIt
MTBlNTdmNTZhMTdhLzEvbW4wZUJXNTdOUUlQaUtIbE4zVmpCT0NyQndNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS9kNjA4YjgtNTAxZi00OTFmLWEyZjItMTBlNTdmNTZhMTdh
LzEvVFhmTTE2bEVGZF9Hak15b2RPbE1Mb3dpSUMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAubiYMA0G
CSqGSIb3DQEBCwUAA4IBAQDAD9paFeS7fDBdQVRQ9FhDc8poT7/t+kDe1uu78Glb
L86SfPTyAdPORqCCZph48b+lMhgHTGq3Ei7j999o9t8T8hB7VdwvNwVv5Tpiv7f0
Xq2HxeHyyv6yYZvvwWa+h78TmySRT2y3XY7ovnGZQmZ/TzYYYQ9Uowleay0xCg6V
9g/ekl5XN7L3H6njPau9mMsFYEFOZpTb5kYKjaRj7An3LoFNqDuu+pdzpmdaYSm5
A8SN4L2VZeuugHMCkfw9gFQhxHHGH7NqUxVP0cxGGHo+Ur/cxCNxF9kNBCp3B/e3
JxkqWuzngTb0NC4rqd3oQmlTSuBiXyxZkB5hquymsLY2
-----END CERTIFICATE-----
Generated at Sat Apr 5 16:39:24 2025 by rpki-client