Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/d7609e-6396-4155-ad35-b74089d8e59e/1/MW6oQOvjV2e_PwEbcnuFf5t37_k.roa
File: MW6oQOvjV2e_PwEbcnuFf5t37_k.roa (raw, json)
Hash identifier: F4Y/mTkulLSP2rOR19C/iRPlf73Ujip+NSzMoPhFesw=
Subject key identifier: 31:6E:A8:40:EB:E3:57:67:BF:3F:01:1B:72:7B:85:7F:9B:77:EF:F9
Certificate issuer: /CN=946733318c62c47920fe375ad99cb729ee90a1ad
Certificate serial: 01856D418089E8DAC0D77DC44C4CD977068C
Authority key identifier: 94:67:33:31:8C:62:C4:79:20:FE:37:5A:D9:9C:B7:29:EE:90:A1:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lGczMYxixHkg_jda2Zy3Ke6Qoa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/d7609e-6396-4155-ad35-b74089d8e59e/1/MW6oQOvjV2e_PwEbcnuFf5t37_k.roa
Signing time: Sun 01 Jan 2023 12:14:47 +0000
ROA not before: Sun 01 Jan 2023 12:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207894
IP address blocks: 185.114.197.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:41:80:89:e8:da:c0:d7:7d:c4:4c:4c:d9:77:06:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=946733318c62c47920fe375ad99cb729ee90a1ad
Validity
Not Before: Jan 1 12:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=316ea840ebe35767bf3f011b727b857f9b77eff9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:20:41:de:02:a1:3b:df:5d:58:9e:08:66:f9:
f2:56:b9:5e:82:a3:b9:73:be:fd:9c:36:18:70:dd:
2f:79:54:f5:0c:65:ec:75:c0:7f:39:0c:74:14:e8:
6f:af:e4:ed:3c:2a:dc:6b:35:8e:e0:f3:82:81:fc:
d5:ec:de:a4:04:e5:d7:79:12:3a:eb:9a:82:ad:2d:
0e:64:1e:d6:00:a7:64:b3:1e:6d:02:40:52:93:67:
ee:5c:53:4e:58:3a:69:3f:fe:fa:b5:07:27:42:c3:
e6:6f:0b:2b:67:e2:14:50:8a:b5:6f:33:9e:95:aa:
c2:15:d5:2d:2a:bd:1b:49:08:18:bf:30:ba:df:47:
09:38:9b:ed:7b:91:7c:3a:ad:62:ca:97:48:43:ad:
c3:1d:68:1d:63:71:56:11:cc:b8:b5:29:dd:5e:6b:
d7:2f:10:04:7e:58:36:e1:83:85:e7:0f:66:d1:28:
63:64:56:79:27:ef:a9:ba:cf:e9:6a:ff:75:15:a4:
11:3e:1d:36:dd:d4:a1:2b:1c:56:3c:c8:de:52:ae:
6f:31:18:0c:43:06:5d:e1:ce:1b:d9:b1:32:d8:95:
0c:4e:7c:86:92:cf:da:e7:8b:b6:50:4f:16:b3:a7:
03:fd:d3:95:88:79:b1:53:4f:c8:d8:88:01:ff:9b:
f9:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:6E:A8:40:EB:E3:57:67:BF:3F:01:1B:72:7B:85:7F:9B:77:EF:F9
X509v3 Authority Key Identifier:
keyid:94:67:33:31:8C:62:C4:79:20:FE:37:5A:D9:9C:B7:29:EE:90:A1:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lGczMYxixHkg_jda2Zy3Ke6Qoa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d7609e-6396-4155-ad35-b74089d8e59e/1/MW6oQOvjV2e_PwEbcnuFf5t37_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d7609e-6396-4155-ad35-b74089d8e59e/1/lGczMYxixHkg_jda2Zy3Ke6Qoa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.114.197.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:b5:ba:0b:64:16:be:53:c4:b9:0d:11:ab:a9:f4:52:83:a3:
db:b8:4b:b6:18:82:03:06:0d:0b:0b:1e:e9:b4:a0:7f:37:69:
c0:73:1e:04:6a:39:cc:67:97:cf:fa:08:cf:0c:67:56:e9:1c:
90:13:a4:51:c4:2b:97:61:93:24:4a:48:27:d3:d9:67:9b:52:
7b:99:4e:01:5b:96:fd:be:fa:27:c1:d4:2b:7b:3b:8e:28:25:
81:1e:70:9a:32:87:f0:16:29:b4:dc:24:fd:14:33:39:e3:e5:
4a:25:36:18:b0:70:79:a8:43:26:cf:58:08:e5:f8:50:dc:89:
63:9e:46:25:72:db:cd:4e:45:a7:53:37:3a:90:f4:01:f7:96:
47:aa:ac:6b:22:51:0d:5a:e6:3a:95:73:6f:d8:c3:0f:0e:60:
e3:fe:0f:4a:02:95:57:b9:2a:e3:ec:d2:23:5f:27:d4:1e:79:
c9:af:51:f9:25:da:b9:1c:a2:ed:74:b5:ea:cb:de:1f:24:4c:
38:3b:17:62:31:8c:b9:06:e0:43:62:1b:8f:51:f1:65:2b:b1:
6b:43:8b:57:bd:d3:60:02:94:38:58:94:94:97:d5:28:02:dc:
9d:42:12:28:bd:ef:d8:b0:38:b7:08:49:e0:2f:86:6b:5f:0b:
40:35:66:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 19:31:16 2025 by rpki-client