Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/mSjcV52HZtMV8wKCw1m_j47p8QM.roa
File: mSjcV52HZtMV8wKCw1m_j47p8QM.roa (raw, json)
Hash identifier: VlbTGAXgnwfNiezCbsbpN5bORYiIjV+Y/7fPJYlZ6Vk=
Subject key identifier: 99:28:DC:57:9D:87:66:D3:15:F3:02:82:C3:59:BF:8F:8E:E9:F1:03
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 16371572
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/mSjcV52HZtMV8wKCw1m_j47p8QM.roa
Signing time: Fri 21 Jan 2022 17:23:56 +0000
ROA not before: Fri 21 Jan 2022 17:23:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210542
IP address blocks: 185.147.35.0/24 maxlen: 24
2a06:a000:1b0::/44 maxlen: 48
2a06:a005:70::/44 maxlen: 48
2a06:a005:60::/44 maxlen: 48
2a06:a001:a000::/44 maxlen: 48
2a06:a001:a060::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 372708722 (0x16371572)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Jan 21 17:23:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9928dc579d8766d315f30282c359bf8f8ee9f103
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:41:90:9c:b6:a3:3f:6f:cf:ca:53:ea:1e:48:
6a:b8:61:62:16:da:60:ec:4c:82:21:53:7f:86:70:
f1:b6:ce:cc:6e:ee:46:b5:83:70:ec:ac:9f:5e:1c:
14:6d:4c:89:ee:e6:02:1a:52:66:05:f0:48:f1:07:
4a:be:d3:b1:96:19:90:2e:dc:b0:22:e5:0d:06:6a:
11:6a:ce:9a:b2:0a:28:8b:88:b3:a2:10:08:e4:64:
45:d0:49:d7:52:44:bb:aa:16:13:dc:96:92:1c:7c:
fd:57:22:3d:b5:59:5b:39:18:38:e7:59:c5:e7:4f:
57:45:f4:e5:8b:16:44:25:0d:27:3f:90:97:59:36:
cb:f1:44:c5:14:74:9c:f0:7d:48:0b:fa:90:3e:21:
c7:8c:55:52:6b:53:7f:ab:aa:70:92:ad:5d:40:86:
3c:bb:b4:32:3b:ea:17:74:56:08:b5:6e:55:50:e6:
d0:eb:ac:68:8f:54:85:e4:39:07:a6:9e:54:a5:89:
69:17:92:ad:25:4a:a6:b2:47:8d:78:13:5d:29:8f:
f1:40:3e:b9:f2:f5:bb:7a:c9:47:2b:24:3b:c9:09:
14:a8:8d:3b:52:1c:2a:10:ef:a3:d6:14:14:60:69:
98:30:52:ae:e5:f3:14:06:6c:f1:ba:63:aa:db:53:
eb:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:28:DC:57:9D:87:66:D3:15:F3:02:82:C3:59:BF:8F:8E:E9:F1:03
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/mSjcV52HZtMV8wKCw1m_j47p8QM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.147.35.0/24
IPv6:
2a06:a000:1b0::/44
2a06:a001:a000::/44
2a06:a001:a060::/44
2a06:a005:60::/43
Signature Algorithm: sha256WithRSAEncryption
0f:29:0e:5e:cb:ba:ef:fa:65:77:c9:86:24:e6:3c:95:21:a3:
23:fa:b1:79:64:8b:d3:1c:de:d2:c2:15:b9:5c:af:e8:52:82:
74:a2:00:ab:4f:76:1a:ce:0e:12:71:f6:a4:98:79:9a:0f:a6:
6d:78:c3:ba:1c:d8:b3:13:d8:85:9b:e7:e1:79:50:ca:8c:19:
60:af:6c:d2:00:6a:a0:07:bf:a8:a0:ae:ff:3e:1a:b3:c6:3b:
fb:2f:77:9b:65:21:d7:4a:7d:f3:f4:8a:81:cc:0d:a6:6a:48:
a9:6b:d2:c8:30:4e:56:da:76:51:a9:f0:97:dd:cb:2d:b0:11:
4f:de:d4:d2:2c:23:38:1d:30:59:fd:37:57:8d:85:83:e9:ab:
0e:77:f7:e8:4a:77:1f:25:f3:6c:51:3d:27:7c:a5:aa:2e:fd:
df:86:7f:a8:84:32:b9:0b:28:84:e2:ef:34:c7:9c:db:e8:01:
0d:d6:bb:13:ec:a9:c0:10:4c:03:41:62:5b:58:da:f1:15:95:
fe:d0:7f:8a:ad:64:70:62:59:c8:64:ae:f4:07:99:d1:5a:21:
d7:94:b2:f1:f3:5f:f1:30:33:67:14:42:5b:16:24:8a:ab:3c:
93:04:2d:14:7a:f0:1a:89:6f:16:34:65:e2:21:f3:f9:04:21:
3c:ac:f4:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 10:20:08 2025 by rpki-client