Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/MaF_qGgSsndFqGF1rW0eNsHoIrA.roa
File: MaF_qGgSsndFqGF1rW0eNsHoIrA.roa (raw, json)
Hash identifier: ZAMP0DTLU4aIH+2cZcipTYXMEZpVIzafvY6PRTO3Es8=
Subject key identifier: 31:A1:7F:A8:68:12:B2:77:45:A8:61:75:AD:6D:1E:36:C1:E8:22:B0
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 019425FCA7D1CC6D16CC17B0BD7B38614CDC
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/MaF_qGgSsndFqGF1rW0eNsHoIrA.roa
Signing time: Thu 02 Jan 2025 07:48:22 +0000
ROA not before: Thu 02 Jan 2025 07:48:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 24929
IP address blocks: 77.79.237.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:a7:d1:cc:6d:16:cc:17:b0:bd:7b:38:61:4c:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 2 07:48:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=31a17fa86812b27745a86175ad6d1e36c1e822b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:b1:38:39:c8:12:9a:d9:58:8d:ab:27:07:b9:
65:c9:e8:9b:c3:21:d2:a7:de:a8:1f:67:e7:05:d8:
d6:bf:c4:dc:32:0b:ec:eb:e0:14:61:3a:20:71:5f:
d7:12:d4:ad:b0:ad:dd:66:ab:98:f6:0d:fc:78:ae:
e5:3a:36:67:d0:48:45:14:bc:3c:9f:28:82:68:9b:
f0:83:9a:c5:ef:e1:16:f3:50:39:a3:0f:15:ac:78:
54:f1:77:2a:da:ee:44:80:c4:16:a4:84:d5:25:74:
87:ac:d7:0c:e5:fa:dd:a6:a6:8e:56:48:15:e4:d2:
0a:ef:3f:74:28:ec:8b:31:db:a6:a4:91:f3:cb:70:
2d:da:ca:5b:42:9f:b2:77:3e:27:4f:ef:79:18:73:
b5:19:36:4a:06:5f:62:e5:48:5d:c0:ca:75:0b:66:
25:97:46:03:e0:ec:5a:fd:34:b9:2c:00:49:dd:1d:
e3:aa:4f:24:4d:db:58:6e:bd:aa:1b:31:ba:4e:84:
9c:02:71:17:92:ef:b5:fe:01:1d:68:97:1c:b9:91:
72:d8:81:90:d8:c6:75:b5:6d:a3:6a:7b:ce:2e:e5:
cb:17:cd:b5:b6:dc:0e:aa:1f:50:ff:75:c2:a9:d2:
f7:7b:16:d1:7c:09:75:80:cd:73:d1:44:9a:1a:c6:
80:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:A1:7F:A8:68:12:B2:77:45:A8:61:75:AD:6D:1E:36:C1:E8:22:B0
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/MaF_qGgSsndFqGF1rW0eNsHoIrA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.79.237.0/24
Signature Algorithm: sha256WithRSAEncryption
06:7a:14:00:62:e6:f3:de:3e:d2:e0:38:1b:62:9b:74:33:ba:
2f:58:30:f1:f7:b2:78:2e:88:ec:32:93:bc:cb:e6:c7:a3:0d:
3e:44:fa:10:48:d7:b6:a5:eb:8a:cd:6e:0d:dd:bd:69:36:64:
ab:1a:b4:a9:f3:d0:79:55:28:43:13:cd:6a:2d:d8:18:47:5e:
cd:64:05:be:07:88:f6:6c:35:bd:b6:27:19:ee:c5:46:56:20:
a4:80:1f:f3:05:1e:27:10:93:30:81:d6:af:49:7a:80:fc:18:
a7:94:5f:a1:37:38:5a:39:28:92:26:44:fd:c2:c6:d2:95:a8:
6f:41:ec:f6:fe:f2:4a:64:14:85:90:c8:17:cd:a3:c4:59:76:
82:32:2b:03:f4:4e:1c:b5:6e:37:cf:72:84:77:05:90:8d:27:
b5:1c:70:c2:1e:97:c3:21:62:fa:b8:42:dc:25:ec:3f:22:ff:
89:81:f0:bb:35:37:cd:26:aa:57:86:38:29:d2:6e:50:be:0e:
42:a9:77:9d:25:73:51:4a:4d:fe:bc:25:27:b2:d0:ca:65:4b:
14:1a:c1:6a:e1:2f:41:da:20:5e:a1:98:5d:4e:e0:de:3d:18:
30:7a:93:71:2e:87:17:b4:01:13:a5:dd:1a:8b:24:48:67:d4:
cd:88:06:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:31:25 2025 by rpki-client