Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/MRvwQ2Y8PpGLULkMeePxylhDvmE.roa
File: MRvwQ2Y8PpGLULkMeePxylhDvmE.roa (raw, json)
Hash identifier: 2zhQc3wgfK29BXLRUCi63zpCnNH+xnI4C+8b3oPDIP8=
Subject key identifier: 31:1B:F0:43:66:3C:3E:91:8B:50:B9:0C:79:E3:F1:CA:58:43:BE:61
Certificate issuer: /CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Certificate serial: 0194206876E2BDB742AC10F3A2389DE2139E
Authority key identifier: E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/MRvwQ2Y8PpGLULkMeePxylhDvmE.roa
Signing time: Wed 01 Jan 2025 05:48:24 +0000
ROA not before: Wed 01 Jan 2025 05:48:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206119
IP address blocks: 178.254.168.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:76:e2:bd:b7:42:ac:10:f3:a2:38:9d:e2:13:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Validity
Not Before: Jan 1 05:48:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=311bf043663c3e918b50b90c79e3f1ca5843be61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:00:30:73:81:bc:23:9e:f1:73:62:29:15:0d:
35:fd:6b:5e:ec:00:4c:1f:b1:4e:ed:2d:47:22:4d:
49:67:f0:9f:bd:ba:98:92:ce:6d:6d:8a:50:a0:bd:
65:6d:13:e4:ac:02:82:e7:24:d3:0e:96:e2:ed:96:
db:40:4f:7d:83:cd:2e:87:46:39:6d:8e:6a:21:7d:
42:39:ce:cf:9e:8b:fd:89:2b:28:84:cf:be:36:c0:
7d:44:a1:15:63:20:83:f5:92:24:af:72:21:d4:6a:
7f:46:ef:94:b7:ac:87:5b:0f:92:fd:e9:40:59:e3:
d5:25:2a:38:92:0b:d0:9f:6e:55:ea:ed:cb:ab:cc:
dd:98:d5:a4:6f:36:28:95:2b:07:c3:c8:e0:ae:1f:
38:48:a2:27:6f:73:3b:93:6f:80:44:c7:5c:80:a1:
e8:99:5e:57:bd:b2:50:10:18:63:0b:5b:05:79:cc:
05:be:aa:ce:e6:dc:1e:60:63:a6:98:74:cb:c4:ec:
6b:6d:15:1c:2d:7b:4d:fc:e4:37:6b:a3:89:12:30:
cb:50:1f:00:19:92:e6:fc:bb:47:76:bc:67:aa:7f:
ea:0d:e7:57:3e:59:e5:e0:53:6e:5b:4f:ca:c7:1d:
77:b3:22:59:5c:30:6c:e7:c7:b4:07:c4:02:b3:4d:
ba:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:1B:F0:43:66:3C:3E:91:8B:50:B9:0C:79:E3:F1:CA:58:43:BE:61
X509v3 Authority Key Identifier:
keyid:E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/MRvwQ2Y8PpGLULkMeePxylhDvmE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.254.168.0/24
Signature Algorithm: sha256WithRSAEncryption
17:04:d2:8c:dc:48:88:82:42:7d:9a:c4:8a:46:ef:4e:0c:a4:
1c:eb:d2:13:b6:10:cc:6e:e6:84:ac:31:d2:4d:42:1e:18:01:
91:f0:7f:2a:c5:6c:86:99:db:21:08:d3:22:b5:5d:b5:e6:1d:
9b:56:db:60:ae:aa:8c:e4:a1:25:46:fe:62:5b:0d:5d:69:57:
b2:5b:8c:78:1c:b3:4b:6e:1c:82:4c:4f:35:ee:8d:0a:79:40:
0a:e3:67:2d:d1:2c:6d:d0:25:4f:ea:a7:ca:7d:ed:4f:f3:92:
62:84:b9:ff:e0:a4:db:42:a0:52:8c:e4:9f:10:f2:e1:42:b4:
e9:05:1d:81:1e:76:d2:38:51:cb:b3:20:2c:93:69:1f:74:1e:
2b:ef:91:5a:c8:87:0b:07:3c:1f:88:38:7d:5b:7e:8b:f7:1c:
e4:62:d1:77:23:e5:64:f9:da:a1:e9:62:56:0f:2e:e8:e9:9b:
67:ea:7d:5b:c6:bf:ff:5a:12:d4:97:5b:a0:27:78:cc:5b:57:
42:25:e7:bf:33:9a:a6:39:e7:51:60:68:a2:7c:9b:5d:79:93:
b2:3d:0f:ab:17:ec:4e:a6:cd:3a:d2:17:ad:cc:18:b4:cd:d1:
00:0c:2f:dd:39:cd:9f:2b:66:ce:0b:04:d7:82:23:da:cb:30:
ff:26:66:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 14:58:44 2025 by rpki-client