Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/ba9940-338d-420b-a500-548f512f4f29/1/MOwL6i6ZoVkBCNx5PQBSCGdGSyA.roa
File: MOwL6i6ZoVkBCNx5PQBSCGdGSyA.roa (raw, json)
Hash identifier: LtoWYGKgL2eDDbnlaHmBCI9T4rrDZbSsvmecODC486o=
Subject key identifier: 30:EC:0B:EA:2E:99:A1:59:01:08:DC:79:3D:00:52:08:67:46:4B:20
Certificate issuer: /CN=9d9606edeef908959ce4336ab395ca9083316108
Certificate serial: 01423C
Authority key identifier: 9D:96:06:ED:EE:F9:08:95:9C:E4:33:6A:B3:95:CA:90:83:31:61:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nZYG7e75CJWc5DNqs5XKkIMxYQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/ba9940-338d-420b-a500-548f512f4f29/1/MOwL6i6ZoVkBCNx5PQBSCGdGSyA.roa
Signing time: Sat 29 Jan 2022 09:25:23 +0000
ROA not before: Sat 29 Jan 2022 09:25:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60631
IP address blocks: 178.211.145.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82492 (0x1423c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d9606edeef908959ce4336ab395ca9083316108
Validity
Not Before: Jan 29 09:25:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=30ec0bea2e99a1590108dc793d00520867464b20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:6c:c4:11:61:b5:9a:a2:04:d1:58:79:03:4f:
0c:67:b1:cf:ab:00:29:3b:93:22:b5:36:82:bd:52:
7f:2b:2c:e6:3b:cd:ef:03:f5:0a:18:d2:d6:b7:67:
63:dc:39:90:16:cb:4b:3d:f3:bf:e5:8d:91:5f:14:
bc:82:ee:33:9a:d9:33:c0:48:ff:0f:22:cd:6d:00:
0a:12:f7:69:07:1a:2a:da:a9:47:2f:71:0d:8d:c0:
e0:59:4a:68:2a:7a:91:33:77:55:1a:9d:82:39:43:
8a:f4:25:fe:28:6d:2b:9e:d7:88:b1:78:53:4e:89:
0b:67:79:84:4f:95:0f:e1:bd:a7:ed:e2:88:1c:95:
93:5e:5d:55:14:cc:6c:de:8c:c2:a3:f9:d2:fc:5e:
5c:4c:72:64:8c:8b:d5:08:5f:dd:bf:b2:8b:e5:94:
7c:a3:94:31:27:47:0d:96:44:0a:41:d4:7e:24:97:
3a:bf:b6:22:3f:9c:49:c8:50:68:ee:e8:cd:c3:38:
fd:fd:a9:67:65:07:07:c5:20:53:56:6d:d4:43:f0:
46:a0:f9:ae:eb:0e:75:95:7b:1b:e5:2a:2f:6e:7d:
fc:69:36:10:48:93:aa:f5:4e:28:b6:5a:f0:9f:be:
f2:9e:f6:1a:04:0e:f9:46:90:cd:3f:f1:aa:f1:32:
c7:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:EC:0B:EA:2E:99:A1:59:01:08:DC:79:3D:00:52:08:67:46:4B:20
X509v3 Authority Key Identifier:
keyid:9D:96:06:ED:EE:F9:08:95:9C:E4:33:6A:B3:95:CA:90:83:31:61:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nZYG7e75CJWc5DNqs5XKkIMxYQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ba9940-338d-420b-a500-548f512f4f29/1/MOwL6i6ZoVkBCNx5PQBSCGdGSyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ba9940-338d-420b-a500-548f512f4f29/1/nZYG7e75CJWc5DNqs5XKkIMxYQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.211.145.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:a8:70:7f:5f:e2:ad:41:36:6c:6d:b0:a1:91:17:82:0e:ba:
a8:1b:2f:e8:b5:d8:5c:e0:e3:36:b9:6b:07:3d:1b:42:ea:1b:
1e:41:16:df:c8:c7:23:5b:92:83:ce:2e:61:26:ce:3d:6f:14:
d1:0e:7b:cd:d7:66:3e:32:4a:16:e9:0e:e5:02:19:d1:81:de:
f1:e8:fe:b5:0e:f8:98:c1:bc:ea:ea:40:90:08:6f:23:97:62:
4f:e8:94:5e:39:5c:95:f2:c0:11:26:de:82:bf:cf:0c:bd:e6:
74:b2:37:33:79:c6:78:27:8e:de:03:6f:ce:f9:0f:b3:94:d5:
f8:c9:5d:b9:22:f0:0c:3e:db:e3:dc:70:de:01:6d:02:a3:0f:
0b:48:c7:e3:0a:98:df:81:92:f8:21:03:0e:97:5d:77:eb:ab:
5a:2a:48:4b:92:76:ba:47:8d:bf:50:39:4e:6c:98:fd:1a:cc:
80:8b:bd:2b:de:f2:2c:1b:1b:28:a3:e9:2c:1e:22:51:89:83:
4a:e3:47:3a:fd:e6:ce:5f:f0:d8:3d:47:ca:67:c9:9f:fc:1c:
77:55:de:89:64:13:5d:68:01:11:a0:8a:d3:72:a8:b7:40:1c:
c4:6a:cf:fd:e7:78:13:a7:28:6b:51:df:bc:80:57:13:47:25:
ae:6c:d3:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 16:15:36 2025 by rpki-client