Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/tmCvOcikf6kw-PyMgBnbn-vm_mk.roa
File: tmCvOcikf6kw-PyMgBnbn-vm_mk.roa (raw, json)
Hash identifier: y5SjAI/bJSsqpgfwvcHwvK0u8LHIhoHVOPyErdfTeuk=
Subject key identifier: B6:60:AF:39:C8:A4:7F:A9:30:F8:FC:8C:80:19:DB:9F:EB:E6:FE:69
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 019421B23B933B4FACCC6D4A8230DC06AABF
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/tmCvOcikf6kw-PyMgBnbn-vm_mk.roa
Signing time: Wed 01 Jan 2025 11:48:36 +0000
ROA not before: Wed 01 Jan 2025 11:48:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 216446
IP address blocks: 195.136.16.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:3b:93:3b:4f:ac:cc:6d:4a:82:30:dc:06:aa:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 11:48:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b660af39c8a47fa930f8fc8c8019db9febe6fe69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:df:10:88:c9:33:cf:66:cc:2f:d7:d8:fd:04:
23:c4:89:55:ba:a4:a3:4e:4a:e1:c3:a7:50:ab:4a:
bb:7b:06:ea:be:81:a0:e3:78:14:23:8f:1a:f5:9a:
fd:e2:e7:74:04:9c:ce:94:f0:9c:c3:47:da:3c:bb:
90:9d:67:d0:31:2f:df:46:5f:2a:dd:2b:d7:fb:b6:
65:ca:95:f1:4d:c1:87:16:53:d8:91:94:ac:b7:06:
27:f1:1d:4e:ad:27:2f:fc:97:73:94:51:5e:54:24:
aa:72:26:4d:4c:4b:09:b4:5e:5f:4c:57:88:e8:47:
7d:4e:a9:3e:88:7f:76:79:27:14:ac:f6:9d:b8:f3:
72:2e:78:ef:fc:87:de:92:da:5a:39:fb:72:8e:b1:
c3:e5:15:bc:b4:6f:4a:48:b5:33:96:58:81:ce:8e:
c7:1b:a1:e2:cc:8f:51:80:20:e4:21:7e:a6:5f:f1:
ab:40:2b:01:24:d7:c4:42:26:1a:f3:49:19:11:25:
68:06:70:a2:d1:76:a1:8f:b0:e4:66:57:d5:dd:91:
a3:1a:83:19:c5:8b:6c:4c:9c:ea:02:a6:51:a5:93:
2b:5b:4f:5d:da:d3:81:bf:59:0b:3b:40:ae:07:4a:
6b:11:8b:4e:b8:c6:c8:28:fa:e0:c3:6d:38:0a:17:
aa:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:60:AF:39:C8:A4:7F:A9:30:F8:FC:8C:80:19:DB:9F:EB:E6:FE:69
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/tmCvOcikf6kw-PyMgBnbn-vm_mk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.136.16.0/23
Signature Algorithm: sha256WithRSAEncryption
b5:49:92:29:5d:d7:e4:90:0a:45:f9:a7:71:13:d0:f8:ac:f7:
ae:1d:ee:86:a2:28:59:d5:dd:2f:c5:04:12:2c:50:12:1c:95:
71:7d:94:c5:e2:b9:ad:50:0b:8b:ce:5b:80:0a:51:f1:d1:c3:
f6:1d:0a:ea:30:c1:6c:a3:03:60:2b:8a:5a:46:a1:34:cc:57:
ff:53:84:74:b1:48:04:95:c4:9c:4b:db:fe:b9:eb:d3:da:95:
4b:07:10:05:3c:79:5d:a0:47:18:36:f9:2f:54:b9:0f:0c:da:
f8:54:9b:2b:58:ec:df:36:dd:a8:28:70:96:c0:e1:1c:18:83:
8b:ad:14:b0:02:03:0c:09:77:07:5f:34:8d:eb:e1:f6:d1:20:
39:1b:99:3d:df:59:23:bf:95:9e:39:bb:0f:df:80:83:6d:1a:
f8:4e:fe:98:d1:1c:28:87:59:eb:17:11:bb:ce:f6:b4:19:ae:
05:f7:de:b2:c2:f9:7a:b8:f9:79:40:58:14:d4:7a:6c:d9:97:
7c:1c:ac:b0:76:e5:e6:0c:36:ce:55:9f:35:45:f7:3a:da:3c:
34:fd:1b:de:7c:8b:cc:7f:85:4c:bc:f2:cb:7c:f6:da:c1:fd:
22:87:0c:50:ba:ba:24:a5:fa:07:d6:a9:6d:3e:5b:83:03:31:
96:f6:98:f0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQhsjuTO0+szG1KgjDcBqq/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0NjgzNGU2ODg5MGYzOTg2YTFiMDQ1N2NlMGY1NGFlMDNj
MmQ3NmIwHhcNMjUwMTAxMTE0ODM2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNjYwYWYzOWM4YTQ3ZmE5MzBmOGZjOGM4MDE5ZGI5ZmViZTZmZTY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt98QiMkzz2bML9fY/QQjxIlVuqSj
Tkrhw6dQq0q7ewbqvoGg43gUI48a9Zr94ud0BJzOlPCcw0faPLuQnWfQMS/fRl8q
3SvX+7ZlypXxTcGHFlPYkZSstwYn8R1OrScv/JdzlFFeVCSqciZNTEsJtF5fTFeI
6Ed9Tqk+iH92eScUrPaduPNyLnjv/IfektpaOftyjrHD5RW8tG9KSLUzlliBzo7H
G6HizI9RgCDkIX6mX/GrQCsBJNfEQiYa80kZESVoBnCi0Xahj7DkZlfV3ZGjGoMZ
xYtsTJzqAqZRpZMrW09d2tOBv1kLO0CuB0prEYtOuMbIKPrgw204CheqDwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLZgrznIpH+pMPj8jIAZ25/r5v5pMB8GA1UdIwQY
MBaAFFRoNOaIkPOYahsEV84PVK4DwtdrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkdnMDVvaVE4NWhxR3dSWHpnOVVyZ1BDMTJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS81ZjJmMGItZmQ4Mi00NGZhLWI2MzQt
NTI3NjZiMjRiYWE0LzEvdG1Ddk9jaWtmNmt3LVB5TWdCbmJuLXZtX21rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS81ZjJmMGItZmQ4Mi00NGZhLWI2MzQtNTI3NjZiMjRiYWE0
LzEvVkdnMDVvaVE4NWhxR3dSWHpnOVVyZ1BDMTJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBw4gQMA0G
CSqGSIb3DQEBCwUAA4IBAQC1SZIpXdfkkApF+adxE9D4rPeuHe6GoihZ1d0vxQQS
LFASHJVxfZTF4rmtUAuLzluAClHx0cP2HQrqMMFsowNgK4paRqE0zFf/U4R0sUgE
lcScS9v+uevT2pVLBxAFPHldoEcYNvkvVLkPDNr4VJsrWOzfNt2oKHCWwOEcGIOL
rRSwAgMMCXcHXzSN6+H20SA5G5k931kjv5WeObsP34CDbRr4Tv6Y0Rwoh1nrFxG7
zva0Ga4F996ywvl6uPl5QFgU1Hps2Zd8HKywduXmDDbOVZ81Rfc62jw0/RvefIvM
f4VMvPLLfPbawf0ihwxQurokpfoH1qltPluDAzGW9pjw
-----END CERTIFICATE-----
Generated at Wed Feb 19 21:57:55 2025 by rpki-client