Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/4e28c8-04f6-4f4a-b060-3f791fb3c392/1/MOrvdMhpwq1N6tui6tdiaPxaACI.roa
File: MOrvdMhpwq1N6tui6tdiaPxaACI.roa (raw, json)
Hash identifier: 5cSl4blao3pL3L5/7bw80ShxUrxu/U/y1JyAG6KQWAI=
Subject key identifier: 30:EA:EF:74:C8:69:C2:AD:4D:EA:DB:A2:EA:D7:62:68:FC:5A:00:22
Certificate issuer: /CN=c95b21442b99b8a6f113612fc0fb32da5f6c8813
Certificate serial: 01856FD4EB9DE91A237EAA1BF9AD95911AE4
Authority key identifier: C9:5B:21:44:2B:99:B8:A6:F1:13:61:2F:C0:FB:32:DA:5F:6C:88:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yVshRCuZuKbxE2EvwPsy2l9siBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/4e28c8-04f6-4f4a-b060-3f791fb3c392/1/MOrvdMhpwq1N6tui6tdiaPxaACI.roa
Signing time: Mon 02 Jan 2023 00:15:03 +0000
ROA not before: Mon 02 Jan 2023 00:15:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2200
IP address blocks: 137.121.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d4:eb:9d:e9:1a:23:7e:aa:1b:f9:ad:95:91:1a:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c95b21442b99b8a6f113612fc0fb32da5f6c8813
Validity
Not Before: Jan 2 00:15:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=30eaef74c869c2ad4deadba2ead76268fc5a0022
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:71:a3:46:8e:2f:aa:07:1f:c6:23:bd:e8:5f:
91:2a:65:c9:8e:3c:8e:fa:e6:9c:84:d9:99:a8:66:
41:be:c6:7b:bd:bf:46:c5:84:4a:20:0e:5f:10:63:
6e:fc:20:5f:11:26:39:56:e5:62:cc:32:ab:68:6d:
ac:5e:d4:6d:74:fc:8b:a8:b0:be:36:3c:4e:35:49:
a1:45:f8:4d:12:04:eb:f3:e2:b5:31:12:5a:82:fc:
96:b5:e5:76:b8:7b:98:a0:9f:8f:1d:c2:5a:46:c2:
b8:7e:73:4a:32:ec:31:a1:1a:82:13:2a:be:c2:48:
02:8e:17:ba:6c:f3:98:24:f9:68:ed:ad:f9:87:e9:
a2:9c:6e:e6:1f:4f:d3:19:2e:c6:45:e2:ce:61:34:
64:26:0e:47:ad:2b:46:50:9f:f1:d1:0f:99:53:69:
82:e8:12:7a:17:9f:72:f2:26:84:16:a5:89:56:20:
dc:9c:d1:7a:be:48:65:ba:bf:a7:56:30:7b:67:3f:
dd:cf:c1:34:36:79:a5:75:87:09:3d:10:b9:c7:f3:
62:86:53:13:26:52:e7:bf:92:18:a3:48:67:34:42:
70:45:91:70:a0:5c:fc:d8:6d:31:d5:57:a1:e4:db:
f8:6d:6d:e3:ec:ac:6e:c6:21:bd:a4:2c:cc:89:81:
e4:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:EA:EF:74:C8:69:C2:AD:4D:EA:DB:A2:EA:D7:62:68:FC:5A:00:22
X509v3 Authority Key Identifier:
keyid:C9:5B:21:44:2B:99:B8:A6:F1:13:61:2F:C0:FB:32:DA:5F:6C:88:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yVshRCuZuKbxE2EvwPsy2l9siBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/4e28c8-04f6-4f4a-b060-3f791fb3c392/1/MOrvdMhpwq1N6tui6tdiaPxaACI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/4e28c8-04f6-4f4a-b060-3f791fb3c392/1/yVshRCuZuKbxE2EvwPsy2l9siBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
137.121.0.0/16
Signature Algorithm: sha256WithRSAEncryption
92:31:bc:f9:87:20:f0:83:05:5b:e1:f2:4f:ce:65:e5:24:ed:
46:80:e7:fa:a8:2a:01:51:8d:f2:11:54:50:78:a8:79:ca:f8:
6a:b4:60:58:b9:87:05:b7:be:51:5f:da:72:fd:b9:ad:78:56:
49:a7:be:20:cd:aa:47:f1:ac:46:d7:c0:be:f7:92:4a:76:df:
c8:af:43:dd:83:83:29:50:9e:a3:b9:e3:c4:6d:56:13:8e:ad:
63:cb:d7:7a:e0:47:a5:da:7b:59:ca:be:9d:29:4f:b7:b6:7d:
ab:7a:8e:8e:41:d8:0a:a0:53:3c:64:bd:fb:c9:18:99:20:e1:
1e:25:70:b4:48:19:db:b7:61:c9:e3:0b:74:72:d7:af:b8:ff:
eb:de:14:bd:dc:ec:69:c5:9b:f2:5c:09:39:0b:d9:10:b1:49:
cc:f6:cc:2d:ba:ae:7b:dd:bd:9b:50:79:49:c1:f9:cd:6d:a5:
c0:0d:4b:02:97:c0:54:4e:33:31:b4:bd:68:68:fb:c5:02:f5:
c2:88:86:5a:06:d8:06:f3:1a:4e:2a:d8:01:6b:ce:a1:61:40:
9f:f6:82:60:0f:1a:fd:7c:d0:df:b2:ca:3b:db:6c:fc:4e:37:
35:08:dd:d2:d5:31:c3:20:7d:bb:dc:f1:c7:39:37:12:df:84:
2c:8f:95:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:40:07 2025 by rpki-client