Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/7bf689-82fc-4816-8ece-1ecd9918b3a6/1/mKUXx3zhvsih-ieJYS3s2fZI8qI.roa
File: mKUXx3zhvsih-ieJYS3s2fZI8qI.roa (raw, json)
Hash identifier: naG9jnWfyh6Ead1k247LhrLZcERoQYUd1yh8Uls0xUs=
Subject key identifier: 98:A5:17:C7:7C:E1:BE:C8:A1:FA:27:89:61:2D:EC:D9:F6:48:F2:A2
Certificate issuer: /CN=2fca6592c0fe34fabefcc43719287b844d47ca03
Certificate serial: 19D85298
Authority key identifier: 2F:CA:65:92:C0:FE:34:FA:BE:FC:C4:37:19:28:7B:84:4D:47:CA:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L8plksD-NPq-_MQ3GSh7hE1HygM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/7bf689-82fc-4816-8ece-1ecd9918b3a6/1/mKUXx3zhvsih-ieJYS3s2fZI8qI.roa
Signing time: Sat 01 Jan 2022 07:54:34 +0000
ROA not before: Sat 01 Jan 2022 07:54:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60415
IP address blocks: 185.31.92.0/24 maxlen: 24
185.31.95.0/24 maxlen: 24
185.31.92.0/22 maxlen: 22
185.31.94.0/24 maxlen: 24
185.31.93.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 433607320 (0x19d85298)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fca6592c0fe34fabefcc43719287b844d47ca03
Validity
Not Before: Jan 1 07:54:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=98a517c77ce1bec8a1fa2789612decd9f648f2a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:05:bd:8b:42:cb:df:5c:5b:4c:73:ec:5c:bb:
6a:2a:52:79:2b:37:eb:fd:8f:15:f2:0b:06:8f:16:
4c:15:ef:db:7f:1d:1a:7e:61:6f:0a:2d:f6:97:6d:
bc:c8:2b:15:34:4f:b6:97:51:6e:26:8d:cd:cf:87:
62:ff:98:63:fe:97:2d:2f:f4:42:8a:80:69:ee:9a:
ae:a3:c2:b1:d3:53:32:ca:d9:a0:0e:ed:23:9e:9b:
a5:51:14:0a:7c:95:82:6c:99:c2:8f:55:5d:b3:7d:
a3:e3:1c:b6:7d:24:fc:52:ce:7f:c9:80:62:3a:38:
43:d4:1e:db:df:e1:c5:8d:37:02:07:45:10:ff:0d:
26:3f:48:0f:b2:fa:58:73:49:59:c2:bf:c5:4d:31:
a4:1e:5d:a9:c4:d9:ad:fb:65:e2:f7:ea:25:62:ed:
20:5d:d0:6a:21:49:86:ee:3b:cc:06:5f:82:f1:d7:
69:da:6e:53:d3:88:42:69:3e:c2:99:41:c8:0d:b2:
35:80:da:1f:bd:cc:16:00:2f:c4:1f:07:ee:a7:69:
92:a4:5c:c4:c5:42:15:bc:bb:82:8d:e6:6f:b0:a9:
3e:77:47:84:67:4d:fa:be:91:96:21:aa:db:61:91:
36:6c:34:3e:52:92:d0:f7:48:a2:b4:15:06:3f:50:
cd:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:A5:17:C7:7C:E1:BE:C8:A1:FA:27:89:61:2D:EC:D9:F6:48:F2:A2
X509v3 Authority Key Identifier:
keyid:2F:CA:65:92:C0:FE:34:FA:BE:FC:C4:37:19:28:7B:84:4D:47:CA:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L8plksD-NPq-_MQ3GSh7hE1HygM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/7bf689-82fc-4816-8ece-1ecd9918b3a6/1/mKUXx3zhvsih-ieJYS3s2fZI8qI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/7bf689-82fc-4816-8ece-1ecd9918b3a6/1/L8plksD-NPq-_MQ3GSh7hE1HygM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.31.92.0/22
Signature Algorithm: sha256WithRSAEncryption
23:7a:6e:81:3f:19:99:12:b1:18:81:10:42:ae:32:d3:88:09:
ef:5c:79:5b:47:71:14:e2:09:35:f3:83:58:2a:33:e3:77:9d:
53:52:6b:91:3c:6c:04:0f:13:37:82:9d:34:3e:8f:e4:f4:17:
e7:19:fa:38:84:d7:2d:ce:ad:2d:e2:a9:cc:a6:51:ed:43:d6:
2b:58:bd:52:b6:62:f3:13:a4:e9:3a:31:99:1f:bd:2c:74:99:
c2:df:55:3f:0e:e9:e4:4c:f6:c4:22:6a:96:71:e2:92:62:7a:
e2:11:78:b2:50:03:7e:bd:c4:7a:69:03:fb:a4:f3:94:7f:ef:
6c:77:7d:0f:1b:02:b2:75:24:02:a5:da:6f:89:bc:28:f7:b3:
45:71:39:c8:a6:1c:dd:d8:f3:45:c6:15:45:57:67:db:5e:a2:
0c:12:97:10:b1:f2:2e:85:ce:c2:27:53:63:cc:0f:cd:9d:e4:
c4:44:5e:fc:2a:9c:ee:30:c8:2f:36:56:5e:74:1e:f1:42:f9:
75:8a:7b:97:f7:0c:97:ba:af:70:ce:8a:99:f9:b2:6b:47:bb:
92:7f:2c:98:54:dd:27:2f:d0:30:b1:c7:12:45:c1:2f:bd:62:
cb:ad:16:bc:09:91:22:df:19:20:5c:ee:67:46:3c:4c:cd:99:
03:27:3a:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:44:05 2025 by rpki-client