Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/Mk65rzu_RkrceH34hYZR24Obsg0.roa
File: Mk65rzu_RkrceH34hYZR24Obsg0.roa (raw, json)
Hash identifier: rTzdbjg2prHl5GqIGFCWtd1Ib91ETCuwTrOfSPbAKbI=
Subject key identifier: 32:4E:B9:AF:3B:BF:46:4A:DC:78:7D:F8:85:86:51:DB:83:9B:B2:0D
Certificate issuer: /CN=3fedd85c1eccb5ff4ba930117a7329099c0ff2eb
Certificate serial: 019426D9C61A983BE9A3EAEE2CDED87F0981
Authority key identifier: 3F:ED:D8:5C:1E:CC:B5:FF:4B:A9:30:11:7A:73:29:09:9C:0F:F2:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-3YXB7Mtf9LqTARenMpCZwP8us.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/Mk65rzu_RkrceH34hYZR24Obsg0.roa
Signing time: Thu 02 Jan 2025 11:49:53 +0000
ROA not before: Thu 02 Jan 2025 11:49:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 22363
IP address blocks: 82.81.93.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:c6:1a:98:3b:e9:a3:ea:ee:2c:de:d8:7f:09:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fedd85c1eccb5ff4ba930117a7329099c0ff2eb
Validity
Not Before: Jan 2 11:49:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=324eb9af3bbf464adc787df8858651db839bb20d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:92:d6:ac:92:d9:39:a2:8f:5e:b6:9c:33:70:
c0:93:d5:9e:f9:7d:b6:7d:d3:5c:5d:c3:57:74:11:
23:96:59:6f:f1:f4:11:75:8f:dc:2f:d1:9a:2d:b0:
83:76:d2:fc:e6:53:81:b5:dd:31:6e:71:a1:89:84:
c9:35:77:bb:ae:ba:27:af:93:2f:b4:8c:fa:46:90:
1f:f3:2c:e6:15:64:9a:ec:ac:ae:d1:8d:0e:4b:7b:
26:cf:fb:03:8a:b6:15:fe:8e:8e:04:35:8b:41:ee:
73:be:00:fe:23:83:08:b0:2d:bd:56:77:fb:8d:0a:
05:eb:93:21:35:50:a3:0f:a0:49:b5:a9:1b:0f:b3:
49:89:7c:bb:4e:04:6e:48:c2:f1:a9:e2:fe:92:63:
3f:9c:b8:08:63:36:95:b1:3b:c8:c5:e6:90:64:4d:
a2:d2:b4:55:dc:65:50:a6:81:43:ff:5d:e5:53:9b:
0d:9f:74:f7:9c:c0:79:87:51:76:3b:2d:f4:f7:b4:
b2:c8:f7:54:51:9f:c5:81:8b:20:ab:37:50:98:e2:
fd:b8:e9:df:b9:e1:f0:31:47:28:5b:5c:ef:3a:85:
c8:90:45:a4:01:65:23:8b:62:85:35:a7:ef:cc:19:
b8:66:9d:fa:8c:0e:42:37:7b:68:51:19:63:63:dc:
c1:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:4E:B9:AF:3B:BF:46:4A:DC:78:7D:F8:85:86:51:DB:83:9B:B2:0D
X509v3 Authority Key Identifier:
keyid:3F:ED:D8:5C:1E:CC:B5:FF:4B:A9:30:11:7A:73:29:09:9C:0F:F2:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-3YXB7Mtf9LqTARenMpCZwP8us.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/Mk65rzu_RkrceH34hYZR24Obsg0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.81.93.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:86:f0:82:74:61:40:7f:5d:15:37:0e:ab:a7:3d:9c:6f:2c:
44:c6:80:6b:ca:f2:ea:b7:6e:3d:7c:f9:44:5a:83:0c:b1:19:
10:d7:d4:e6:49:f8:c7:8e:16:88:b1:a7:09:0a:89:38:50:c7:
2b:f3:69:71:46:9e:ae:1d:1e:9c:f7:84:9b:92:25:55:c4:76:
4a:b6:17:86:58:77:90:07:9e:7c:87:de:9b:08:92:7f:1b:bb:
3f:71:cc:5c:4c:93:24:46:dc:58:8d:b5:09:7c:15:ed:72:a7:
3f:ff:c6:b3:8e:42:50:11:e1:32:42:ae:0d:66:e3:5d:66:67:
81:13:23:73:17:65:01:4c:8e:a4:7e:44:42:69:95:5b:73:e8:
5c:f0:10:a2:34:f4:ac:f6:81:a7:6b:fe:2f:e6:60:bb:c6:f4:
75:f5:c9:b2:01:03:40:c1:5e:f3:b7:a7:30:09:8d:b2:7c:ac:
af:34:55:e2:d4:0e:f9:11:ad:79:2e:7b:e4:7e:54:f5:8c:01:
aa:f7:fd:19:d1:d4:4b:6e:ca:0f:1f:bd:3d:68:55:f2:fa:16:
47:3d:0d:3b:d8:1a:e9:a8:cb:39:a1:3e:a7:9e:2a:29:5f:23:
cb:7b:d1:fe:68:e6:84:80:3e:1b:b0:41:52:75:56:aa:90:5f:
b2:87:d5:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 09:38:23 2025 by rpki-client