Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/MhqcPUVWdGpPrfIWk_ee5vpXfV4.roa
File: MhqcPUVWdGpPrfIWk_ee5vpXfV4.roa (raw, json)
Hash identifier: VZyy53zNRKBJnQR8hOjgwk1ZMB+3U3h7IQWl1MMyJAE=
Subject key identifier: 32:1A:9C:3D:45:56:74:6A:4F:AD:F2:16:93:F7:9E:E6:FA:57:7D:5E
Certificate issuer: /CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Certificate serial: 01942444EE83C8DAE4C90962956E53602725
Authority key identifier: BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/MhqcPUVWdGpPrfIWk_ee5vpXfV4.roa
Signing time: Wed 01 Jan 2025 23:48:04 +0000
ROA not before: Wed 01 Jan 2025 23:48:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 19551
IP address blocks: 213.253.215.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:ee:83:c8:da:e4:c9:09:62:95:6e:53:60:27:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Validity
Not Before: Jan 1 23:48:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=321a9c3d4556746a4fadf21693f79ee6fa577d5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:93:f9:fe:78:96:61:99:47:37:a8:1f:a7:81:
0a:9e:5b:0b:e4:94:0f:0b:3d:a0:63:36:4b:4c:1d:
d8:30:ae:81:4f:c2:cb:06:e2:73:10:a5:4c:91:7c:
aa:e4:0f:d1:f9:ea:e7:db:33:2f:bf:ec:16:c6:4a:
a1:fa:c3:a4:b2:eb:76:ad:4c:12:71:c5:60:c0:29:
47:6f:dc:bf:5f:90:8d:ed:a6:03:f1:8c:31:81:89:
7f:74:99:63:6e:d0:2a:cc:a5:a2:41:ff:ce:ed:2e:
a9:48:8e:33:1f:7d:e6:f1:0c:49:2a:3b:2a:e7:6f:
ab:ca:38:40:18:c8:e9:aa:35:2d:45:56:8e:ad:49:
9a:30:16:92:1d:bc:5d:5a:e1:f0:63:4c:ce:07:f0:
69:cf:79:d7:33:69:c0:08:ab:ea:f3:e0:be:e9:fe:
30:01:f2:0c:78:0c:93:37:43:d9:c9:d1:16:20:12:
2f:ae:75:11:bb:81:75:b0:63:02:ab:fd:f1:a2:05:
99:02:17:c7:74:c3:bc:1c:7b:26:dd:1e:d5:3d:67:
28:23:ef:ec:8b:76:92:56:da:9f:7e:aa:7b:32:78:
81:58:21:cc:c5:6a:3a:16:07:f5:db:ae:11:77:97:
ba:73:8f:49:c1:9f:5c:d4:8f:72:61:ff:81:6f:48:
32:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:1A:9C:3D:45:56:74:6A:4F:AD:F2:16:93:F7:9E:E6:FA:57:7D:5E
X509v3 Authority Key Identifier:
keyid:BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/MhqcPUVWdGpPrfIWk_ee5vpXfV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.253.215.0/24
Signature Algorithm: sha256WithRSAEncryption
39:41:f1:13:65:22:e3:78:c2:f3:6a:a8:b9:c3:df:40:d9:1b:
b1:ab:01:db:8e:03:c6:17:d8:6b:c0:a6:35:23:4e:07:fe:43:
b8:dd:cc:00:c3:de:79:33:72:8f:4c:da:de:8b:f9:e3:8a:89:
56:d2:5b:97:5f:4e:4e:18:51:99:72:a1:95:88:ff:45:08:9f:
e3:70:df:07:4a:7b:46:4f:2e:9f:f5:bb:32:ba:02:24:f2:fc:
19:0b:78:c0:ff:bd:43:d2:95:13:fa:e8:60:8d:34:cf:2a:2d:
fb:28:fa:6f:a1:d1:00:1c:d5:46:4f:40:1a:41:ae:70:c8:79:
42:82:64:57:e6:02:96:21:d6:11:f2:41:73:c1:f9:fe:1f:d3:
3c:2f:46:3c:48:24:0e:6f:76:17:e7:84:d5:81:f1:8c:0a:7c:
74:e2:fc:4b:88:d8:d3:e8:f9:cc:a4:80:10:94:13:d5:e7:57:
2d:3e:59:e1:ab:ca:d9:99:c5:9e:b0:3a:df:b3:2b:6e:e9:d4:
93:57:3d:88:62:f0:13:8a:45:57:02:f1:ca:3e:0c:d9:55:05:
14:23:13:c0:42:a0:70:e2:13:0b:22:5b:b3:35:72:a5:1c:6f:
d7:f1:45:a0:80:9f:8d:c5:1c:74:94:a8:c9:83:9c:b4:e3:c4:
94:37:1b:56
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQkRO6DyNrkyQlilW5TYCclMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmYjA5N2EzNmMyMzI1ZDEwMzFmZjQwOTFiYTAwYTg2NDU5
ZDQyODgwHhcNMjUwMTAxMjM0ODA0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMjFhOWMzZDQ1NTY3NDZhNGZhZGYyMTY5M2Y3OWVlNmZhNTc3ZDVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9JP5/niWYZlHN6gfp4EKnlsL5JQP
Cz2gYzZLTB3YMK6BT8LLBuJzEKVMkXyq5A/R+ern2zMvv+wWxkqh+sOksut2rUwS
ccVgwClHb9y/X5CN7aYD8YwxgYl/dJljbtAqzKWiQf/O7S6pSI4zH33m8QxJKjsq
52+ryjhAGMjpqjUtRVaOrUmaMBaSHbxdWuHwY0zOB/Bpz3nXM2nACKvq8+C+6f4w
AfIMeAyTN0PZydEWIBIvrnURu4F1sGMCq/3xogWZAhfHdMO8HHsm3R7VPWcoI+/s
i3aSVtqffqp7MniBWCHMxWo6Fgf1264Rd5e6c49JwZ9c1I9yYf+Bb0gymwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDIanD1FVnRqT63yFpP3nub6V31eMB8GA1UdIwQY
MBaAFL+wl6NsIyXRAx/0CRugCoZFnUKIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdjdDWG8yd2pKZEVESF9RSkc2QUtoa1dkUW9nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9mMmM1ZTgtOGQzNy00ODM4LWEzM2It
ZWNjNDliZGMyYWQ4LzEvTWhxY1BVVldkR3BQcmZJV2tfZWU1dnBYZlY0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy9mMmM1ZTgtOGQzNy00ODM4LWEzM2ItZWNjNDliZGMyYWQ4
LzEvdjdDWG8yd2pKZEVESF9RSkc2QUtoa1dkUW9nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1f3XMA0G
CSqGSIb3DQEBCwUAA4IBAQA5QfETZSLjeMLzaqi5w99A2RuxqwHbjgPGF9hrwKY1
I04H/kO43cwAw955M3KPTNrei/njiolW0luXX05OGFGZcqGViP9FCJ/jcN8HSntG
Ty6f9bsyugIk8vwZC3jA/71D0pUT+uhgjTTPKi37KPpvodEAHNVGT0AaQa5wyHlC
gmRX5gKWIdYR8kFzwfn+H9M8L0Y8SCQOb3YX54TVgfGMCnx04vxLiNjT6PnMpIAQ
lBPV51ctPlnhq8rZmcWesDrfsytu6dSTVz2IYvATikVXAvHKPgzZVQUUIxPAQqBw
4hMLIluzNXKlHG/X8UWggJ+NxRx0lKjJg5y048SUNxtW
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:16:46 2025 by rpki-client