Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/24dfd6-19ba-48f1-90a3-c055c1f932e7/1/Mzwg5PxlNRoeoVANVxUWwZcoBVo.roa
File: Mzwg5PxlNRoeoVANVxUWwZcoBVo.roa (raw, json)
Hash identifier: TjIsFaI7jsEsjHn/hwUx7se9Mw01mOt8ZTonm93LlYg=
Subject key identifier: 33:3C:20:E4:FC:65:35:1A:1E:A1:50:0D:57:15:16:C1:97:28:05:5A
Certificate issuer: /CN=37858d106021992deb4e0851c47a038909a4ff57
Certificate serial: 0B7A9646
Authority key identifier: 37:85:8D:10:60:21:99:2D:EB:4E:08:51:C4:7A:03:89:09:A4:FF:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N4WNEGAhmS3rTghRxHoDiQmk_1c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/24dfd6-19ba-48f1-90a3-c055c1f932e7/1/Mzwg5PxlNRoeoVANVxUWwZcoBVo.roa
Signing time: Sat 01 Jan 2022 01:56:54 +0000
ROA not before: Sat 01 Jan 2022 01:56:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8769
IP address blocks: 185.121.28.0/22 maxlen: 22
185.254.132.0/22 maxlen: 22
2a06:9c40::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 192583238 (0xb7a9646)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37858d106021992deb4e0851c47a038909a4ff57
Validity
Not Before: Jan 1 01:56:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=333c20e4fc65351a1ea1500d571516c19728055a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b9:66:23:32:2d:dd:a1:b6:2b:49:6f:75:84:
80:a1:1c:48:34:8d:26:f5:9f:7e:79:68:53:01:33:
42:c5:09:ed:76:ae:36:6d:1a:31:3d:4b:b9:fc:53:
58:34:dc:1f:66:73:c6:ce:f3:1b:37:5b:9f:96:66:
89:0d:cb:38:e4:e9:da:4b:eb:c0:49:ab:b7:a6:e5:
7f:3b:cf:5e:e4:9b:5e:7b:40:99:d1:ff:e2:78:15:
d4:78:0c:e4:44:2f:4c:62:04:c7:06:1a:62:13:ab:
80:da:3c:fa:45:90:bf:c4:8d:48:e6:ed:12:8e:0b:
25:7b:38:19:23:65:88:7a:65:4f:34:3a:52:0a:b9:
90:24:ed:a5:a4:9e:ce:12:3a:83:32:b7:b3:bf:6a:
6e:05:73:f5:67:ac:45:da:48:5c:3c:4d:0a:f2:90:
dd:c2:c5:43:97:10:11:d4:cf:04:95:3d:3b:f2:73:
ed:74:4f:9f:2e:79:79:f2:08:c3:dd:92:9f:ce:ce:
47:8e:64:e9:3d:62:e1:73:97:5a:5a:8d:f8:57:62:
58:28:81:93:50:e9:a9:32:99:f3:8a:8e:68:1d:95:
54:f3:f6:f5:68:ed:d4:82:93:3a:a3:9a:b9:be:bf:
5a:d0:92:15:91:ad:e0:29:c6:8e:85:be:04:4e:da:
c3:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:3C:20:E4:FC:65:35:1A:1E:A1:50:0D:57:15:16:C1:97:28:05:5A
X509v3 Authority Key Identifier:
keyid:37:85:8D:10:60:21:99:2D:EB:4E:08:51:C4:7A:03:89:09:A4:FF:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N4WNEGAhmS3rTghRxHoDiQmk_1c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/24dfd6-19ba-48f1-90a3-c055c1f932e7/1/Mzwg5PxlNRoeoVANVxUWwZcoBVo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/24dfd6-19ba-48f1-90a3-c055c1f932e7/1/N4WNEGAhmS3rTghRxHoDiQmk_1c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.121.28.0/22
185.254.132.0/22
IPv6:
2a06:9c40::/29
Signature Algorithm: sha256WithRSAEncryption
21:15:27:52:7c:12:0e:e7:02:96:2b:c3:1f:d0:9d:84:c4:e5:
21:1e:51:22:5f:a3:11:0b:4b:7c:24:27:9b:9f:2e:a8:7c:a7:
73:f9:d3:72:ea:19:45:62:4b:5f:0b:30:2d:1a:8c:d8:30:9d:
77:02:b4:ef:91:f0:c0:02:64:a7:4e:79:84:cd:92:0c:99:14:
f2:58:f3:3d:14:55:d9:32:0c:0a:cf:b7:00:f0:6f:6b:ba:35:
ef:2d:25:c3:59:ac:2d:79:8d:aa:31:0b:98:57:16:8d:32:cf:
08:3f:25:de:8a:b3:a2:b8:7f:87:37:9d:a4:ce:27:79:b0:a6:
33:55:5e:00:82:4d:95:59:48:0b:d3:04:e0:a8:d7:85:69:e8:
1f:e2:1d:6e:e9:bd:30:e8:03:dd:b4:ef:44:fa:dc:4e:97:49:
19:76:b8:29:f0:d4:ce:53:d6:4e:c8:54:fc:eb:68:52:73:27:
07:b7:de:ea:f8:3e:29:96:a3:f6:6a:59:58:9a:7a:12:38:e8:
e0:ae:94:0f:99:28:47:be:24:9c:fc:dd:8a:ee:66:fc:86:fd:
3d:61:45:05:e0:03:c4:46:bc:8e:27:4d:54:44:59:0d:5f:05:
fc:0e:8c:47:72:86:2c:15:5c:2c:8d:28:4f:b0:98:02:c5:41:
2d:88:00:99
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIEC3qWRjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
Nzg1OGQxMDYwMjE5OTJkZWI0ZTA4NTFjNDdhMDM4OTA5YTRmZjU3MB4XDTIyMDEw
MTAxNTY1NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzMzYzIwZTRmYzY1
MzUxYTFlYTE1MDBkNTcxNTE2YzE5NzI4MDU1YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK25ZiMyLd2htitJb3WEgKEcSDSNJvWffnloUwEzQsUJ7Xau
Nm0aMT1LufxTWDTcH2Zzxs7zGzdbn5ZmiQ3LOOTp2kvrwEmrt6blfzvPXuSbXntA
mdH/4ngV1HgM5EQvTGIExwYaYhOrgNo8+kWQv8SNSObtEo4LJXs4GSNliHplTzQ6
Ugq5kCTtpaSezhI6gzK3s79qbgVz9WesRdpIXDxNCvKQ3cLFQ5cQEdTPBJU9O/Jz
7XRPny55efIIw92Sn87OR45k6T1i4XOXWlqN+FdiWCiBk1DpqTKZ84qOaB2VVPP2
9Wjt1IKTOqOaub6/WtCSFZGt4CnGjoW+BE7aw/cCAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBQzPCDk/GU1Gh6hUA1XFRbBlygFWjAfBgNVHSMEGDAWgBQ3hY0QYCGZLetO
CFHEegOJCaT/VzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L040V05FR0FobVMzclRnaFJ4SG9EaVFta18xYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTQvMjRkZmQ2LTE5YmEtNDhmMS05MGEzLWMwNTVjMWY5MzJlNy8x
L016d2c1UHhsTlJvZW9WQU5WeFVXd1pjb0JWby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTQv
MjRkZmQ2LTE5YmEtNDhmMS05MGEzLWMwNTVjMWY5MzJlNy8xL040V05FR0FobVMz
clRnaFJ4SG9EaVFta18xYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEArl5HAMEArn+hDANBAIAAjAHAwUD
KgacQDANBgkqhkiG9w0BAQsFAAOCAQEAIRUnUnwSDucClivDH9CdhMTlIR5RIl+j
EQtLfCQnm58uqHync/nTcuoZRWJLXwswLRqM2DCddwK075HwwAJkp055hM2SDJkU
8ljzPRRV2TIMCs+3APBva7o17y0lw1msLXmNqjELmFcWjTLPCD8l3oqzorh/hzed
pM4nebCmM1VeAIJNlVlIC9ME4KjXhWnoH+Idbum9MOgD3bTvRPrcTpdJGXa4KfDU
zlPWTshU/OtoUnMnB7fe6vg+KZaj9mpZWJp6Ejjo4K6UD5koR74knPzdiu5m/Ib9
PWFFBeADxEa8jidNVERZDV8F/A6MR3KGLBVcLI0oT7CYAsVBLYgAmQ==
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:40:28 2025 by rpki-client