Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/a47ac4-66ee-4ca4-a121-174dd79717a0/1/Ms6mUiUJwvfyn-Gyx6vxwS96l3k.roa
File: Ms6mUiUJwvfyn-Gyx6vxwS96l3k.roa (raw, json)
Hash identifier: K1W6wg1H8LRg1mRIJUbc1zmLvaAtOeHdoxU0Jm9DpZw=
Subject key identifier: 32:CE:A6:52:25:09:C2:F7:F2:9F:E1:B2:C7:AB:F1:C1:2F:7A:97:79
Certificate issuer: /CN=be1fb6a86da58366d87e453abee51756135c4d6d
Certificate serial: 01E06813
Authority key identifier: BE:1F:B6:A8:6D:A5:83:66:D8:7E:45:3A:BE:E5:17:56:13:5C:4D:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vh-2qG2lg2bYfkU6vuUXVhNcTW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/a47ac4-66ee-4ca4-a121-174dd79717a0/1/Ms6mUiUJwvfyn-Gyx6vxwS96l3k.roa
Signing time: Sat 01 Jan 2022 14:08:11 +0000
ROA not before: Sat 01 Jan 2022 14:08:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39838
IP address blocks: 194.36.138.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31483923 (0x1e06813)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be1fb6a86da58366d87e453abee51756135c4d6d
Validity
Not Before: Jan 1 14:08:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=32cea6522509c2f7f29fe1b2c7abf1c12f7a9779
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:42:35:44:72:32:21:01:f4:1f:28:21:ce:69:
30:3f:41:96:3c:61:49:e8:66:a8:fa:64:fd:15:b9:
20:e3:66:3f:eb:f8:25:03:5a:8d:2f:94:06:7b:03:
4e:73:77:0b:8e:d4:7f:3f:0e:9e:91:05:d3:ba:13:
a6:f4:1d:f0:43:cd:6b:5b:33:6b:67:0f:cf:bb:7e:
5d:34:41:5c:e8:16:4e:b7:55:65:cd:fe:dd:1c:8a:
55:9f:b4:c9:6b:e8:26:19:d4:30:81:89:45:8c:92:
dc:45:f8:46:84:6c:2d:93:e3:a4:a9:bf:e6:bc:a0:
10:ea:0b:f6:a4:d2:72:1c:32:0f:71:d3:e4:cd:cb:
28:ae:98:7d:35:ed:ad:af:c0:71:80:54:6d:18:9e:
3c:0b:6d:77:8a:9c:93:af:2e:12:d2:76:3b:c1:29:
c4:12:eb:ec:51:8f:7f:7c:ec:e0:0d:ac:82:29:59:
5a:fc:b0:a4:89:c1:93:e0:02:bd:05:f9:90:42:15:
f4:83:fd:63:cb:f5:58:86:da:19:f3:42:bd:4c:22:
81:a1:0f:6f:23:01:46:46:65:10:ec:74:ed:0e:fe:
25:13:23:c0:2d:f7:89:25:21:88:a7:40:6e:19:d6:
b5:8c:81:ea:bd:3f:1b:e8:34:ca:0a:67:13:3e:37:
fd:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:CE:A6:52:25:09:C2:F7:F2:9F:E1:B2:C7:AB:F1:C1:2F:7A:97:79
X509v3 Authority Key Identifier:
keyid:BE:1F:B6:A8:6D:A5:83:66:D8:7E:45:3A:BE:E5:17:56:13:5C:4D:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vh-2qG2lg2bYfkU6vuUXVhNcTW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a47ac4-66ee-4ca4-a121-174dd79717a0/1/Ms6mUiUJwvfyn-Gyx6vxwS96l3k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a47ac4-66ee-4ca4-a121-174dd79717a0/1/vh-2qG2lg2bYfkU6vuUXVhNcTW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.36.138.0/24
Signature Algorithm: sha256WithRSAEncryption
79:c7:2a:41:69:2f:cf:14:6b:df:c2:50:70:02:3c:a8:0e:32:
cc:30:f9:62:23:62:14:79:8b:c0:6e:22:3f:d5:07:93:1b:2a:
13:9f:a4:17:c2:0f:ea:4c:1f:97:2e:41:8d:80:95:59:b8:38:
dd:7e:8b:51:a2:5b:8f:02:ee:c8:2b:64:c7:ac:01:ce:c5:5b:
1f:75:d1:1b:db:d6:4c:9f:ac:55:e2:73:0e:cf:b7:bb:46:3c:
4b:36:63:ab:2f:d9:8c:23:1a:d0:bd:73:ff:18:35:da:f0:6b:
97:29:f3:a5:ba:c6:30:20:13:f9:41:5b:50:92:5a:67:11:93:
7b:87:a0:48:86:65:aa:fc:c0:d1:7c:d7:cb:83:b7:c9:2e:9e:
a4:2d:71:e4:73:1e:ff:05:6a:f0:1d:64:48:a7:6a:88:9d:19:
25:be:0e:c0:8e:89:8b:1c:3d:68:d5:ee:90:17:5f:a4:91:52:
aa:a4:fe:bf:55:f3:b8:ed:94:63:da:14:a0:b0:ea:8d:bf:0e:
cb:4c:61:50:37:05:47:a4:cb:19:72:c1:8c:c4:ce:8f:3a:a9:
cf:19:ae:68:08:a5:ae:79:fa:8d:4f:ed:29:87:2f:5f:b5:2c:
80:e7:f5:df:64:62:0a:b9:84:f6:a3:97:19:bd:ed:4f:10:6b:
f8:80:41:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:21:14 2025 by rpki-client