Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0ee78b-815c-4995-82e1-c80c288ebeea/1/Mt6KrhtfZvUALR2zZFg_-E-GLSM.roa
File: Mt6KrhtfZvUALR2zZFg_-E-GLSM.roa (raw, json)
Hash identifier: WCt/cvUft2B5xJ16lU8XqOyEyDMnK4j+IZ2AWRYka18=
Subject key identifier: 32:DE:8A:AE:1B:5F:66:F5:00:2D:1D:B3:64:58:3F:F8:4F:86:2D:23
Certificate issuer: /CN=7cd6c0236ff4d6050906957ffd380b3879e6ed6e
Certificate serial: 019131B380DF09467950AD1F1A259833497B
Authority key identifier: 7C:D6:C0:23:6F:F4:D6:05:09:06:95:7F:FD:38:0B:38:79:E6:ED:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fNbAI2_01gUJBpV__TgLOHnm7W4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0ee78b-815c-4995-82e1-c80c288ebeea/1/Mt6KrhtfZvUALR2zZFg_-E-GLSM.roa
Signing time: Thu 08 Aug 2024 11:15:33 +0000
ROA not before: Thu 08 Aug 2024 11:15:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205131
IP address blocks: 194.54.157.0/24 maxlen: 24
194.54.158.0/24 maxlen: 24
194.54.159.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:31:b3:80:df:09:46:79:50:ad:1f:1a:25:98:33:49:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7cd6c0236ff4d6050906957ffd380b3879e6ed6e
Validity
Not Before: Aug 8 11:15:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=32de8aae1b5f66f5002d1db364583ff84f862d23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:75:e0:c0:5d:ca:c2:2d:b5:94:5b:f9:19:81:
d3:b2:2b:79:b2:1a:3b:7c:69:65:0f:70:5d:3b:7b:
64:e8:7d:94:24:bc:9f:0d:5d:db:88:2b:3b:0f:34:
ca:c8:f3:0c:1a:4a:ac:66:27:c3:39:4c:32:1a:d0:
0c:90:07:bb:c7:f2:5a:2a:e8:25:6a:0c:27:8e:0b:
47:33:e4:13:f1:ea:a2:35:e2:2b:82:96:4b:96:64:
1c:e9:fa:e0:41:e9:59:da:3c:41:a3:ab:d8:c6:58:
0b:23:0e:a7:ad:44:2d:1a:49:d6:a5:1c:85:e2:6b:
d9:82:23:51:d0:9a:61:aa:6c:6c:bd:b0:d5:a3:08:
6d:07:68:d1:d8:14:f1:59:2e:64:e9:f2:f6:ea:e4:
57:df:2a:69:60:9f:b5:ca:b6:80:2b:06:e4:d1:b3:
4b:1c:28:d4:24:4b:a3:25:cf:db:ad:d6:f3:00:33:
ab:2b:0e:ba:f4:93:32:0d:78:d0:72:d2:dd:62:84:
42:c8:37:70:a9:79:4a:29:c2:47:bf:70:e9:a9:c7:
9f:f4:f7:47:39:4b:98:c3:ac:37:be:11:2b:8f:c7:
41:b9:0e:5b:49:55:83:f6:dd:0f:82:fd:d8:cc:b2:
e9:be:1c:f7:df:3b:ca:e3:4a:6d:99:03:fd:80:7c:
0b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:DE:8A:AE:1B:5F:66:F5:00:2D:1D:B3:64:58:3F:F8:4F:86:2D:23
X509v3 Authority Key Identifier:
keyid:7C:D6:C0:23:6F:F4:D6:05:09:06:95:7F:FD:38:0B:38:79:E6:ED:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fNbAI2_01gUJBpV__TgLOHnm7W4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0ee78b-815c-4995-82e1-c80c288ebeea/1/Mt6KrhtfZvUALR2zZFg_-E-GLSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0ee78b-815c-4995-82e1-c80c288ebeea/1/fNbAI2_01gUJBpV__TgLOHnm7W4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.54.157.0-194.54.159.255
Signature Algorithm: sha256WithRSAEncryption
24:84:ca:51:40:08:08:ba:61:7d:d5:c4:9d:e2:88:64:aa:90:
68:c9:8e:9e:e6:3a:21:e4:22:74:59:2a:d8:2a:cb:b2:20:5a:
4b:6b:0f:36:83:51:b5:32:4f:ad:07:b6:f4:0a:f8:47:af:37:
be:08:05:59:31:25:14:29:22:ac:b5:04:d3:69:b7:28:76:97:
13:7a:c0:cd:1b:5d:0c:6e:46:a1:83:06:4d:15:a9:8d:2c:e4:
eb:5a:d1:30:0e:55:5f:3c:f7:0b:1f:48:c7:78:38:87:64:2d:
f2:e8:fc:ed:9c:02:8f:17:ba:71:9e:5f:e5:95:b0:52:54:51:
4f:16:e0:7a:47:d7:d6:d8:a6:f7:20:5f:a9:ba:c3:d1:8f:27:
4e:7c:26:49:98:58:e1:6e:d9:24:51:3f:a1:b2:bb:ba:97:7d:
39:5c:be:e8:94:31:23:94:51:62:81:20:ea:0f:f4:2a:a6:d3:
c1:1c:bf:ed:05:11:84:02:7c:8f:5f:61:c0:e7:6f:9d:bc:cc:
05:48:9e:58:0d:64:2a:54:36:64:fa:ce:91:ad:57:94:f8:42:
a3:51:d5:ff:c4:9b:80:e0:3f:a3:e8:49:d5:d6:f9:49:32:2b:
12:cc:3f:1d:95:73:0e:40:05:bf:0c:16:9c:85:5b:dc:fe:37:
14:d1:42:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:10:26 2025 by rpki-client