Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/ML7Lpx2n5IaRHvErxQ3F3mC9eoA.roa
File: ML7Lpx2n5IaRHvErxQ3F3mC9eoA.roa (raw, json)
Hash identifier: 7lh8IVxMzNOye7MoV2wQmo8+k8SIYxp7usLH9MCvefs=
Subject key identifier: 30:BE:CB:A7:1D:A7:E4:86:91:1E:F1:2B:C5:0D:C5:DE:60:BD:7A:80
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 019420D5F4E138447BE74BFA449A8CAEC235
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/ML7Lpx2n5IaRHvErxQ3F3mC9eoA.roa
Signing time: Wed 01 Jan 2025 07:48:00 +0000
ROA not before: Wed 01 Jan 2025 07:48:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199994
IP address blocks: 144.208.214.160/27 maxlen: 27
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:f4:e1:38:44:7b:e7:4b:fa:44:9a:8c:ae:c2:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Jan 1 07:48:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=30becba71da7e486911ef12bc50dc5de60bd7a80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:51:cb:0c:57:42:c7:87:bf:6d:52:c0:55:0e:
34:b7:d7:b8:f4:1c:14:b7:3b:cf:be:3a:4a:b8:12:
10:3f:c2:75:2f:d8:e5:18:9b:19:e6:ba:b9:06:e3:
b7:0b:ed:b9:78:45:52:b8:86:10:36:90:aa:c8:cd:
3a:fa:b3:24:c6:64:fc:b9:94:c1:9e:27:b1:71:bb:
3a:fa:13:68:0c:33:00:ad:fb:a0:ad:df:ec:e4:e0:
8b:96:43:13:9c:93:13:af:4e:d2:ed:1f:31:27:fe:
e2:ee:a0:39:a6:14:90:8f:86:ac:45:80:61:35:42:
c2:eb:27:da:70:5c:c1:94:5b:ef:86:c5:1e:42:2c:
01:47:45:40:30:e9:85:b5:63:3d:f9:97:e7:35:a0:
3f:1b:29:98:51:e1:e2:e9:77:a2:21:86:a2:d8:cb:
70:20:45:e6:d2:b3:8a:4d:d3:66:30:9d:8f:a6:16:
99:ff:a1:70:7f:cb:64:85:26:d2:99:6c:ca:cf:a5:
4b:95:f9:a0:ae:73:ad:de:c4:af:da:eb:b4:c2:a4:
67:c2:6f:29:94:4d:69:b3:b8:66:d8:ca:5f:0d:9d:
26:4d:f2:2f:13:6d:e4:64:aa:ff:f8:c7:c8:ca:8c:
74:80:50:6f:96:fe:21:6e:8b:2e:3f:dd:90:72:a9:
f7:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:BE:CB:A7:1D:A7:E4:86:91:1E:F1:2B:C5:0D:C5:DE:60:BD:7A:80
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/ML7Lpx2n5IaRHvErxQ3F3mC9eoA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.208.214.160/27
Signature Algorithm: sha256WithRSAEncryption
08:e9:11:35:fb:ac:7c:00:9e:67:ce:a1:52:b3:5b:d5:0a:4c:
f3:c1:bb:c3:66:a7:c3:fa:10:43:1d:a1:00:59:5a:16:b3:fc:
11:40:df:d0:31:a3:2a:51:0a:2a:5b:66:1c:aa:3d:8d:0b:64:
24:77:12:15:d8:ad:5b:dc:9e:ad:5e:be:d5:14:fe:ef:ae:f9:
a3:0c:c5:fe:ff:f1:e1:f0:f0:7a:8d:6b:00:3f:d8:94:7d:bc:
12:7d:95:bc:04:ed:e9:4e:f3:cc:58:2d:f1:84:12:14:9e:a7:
d3:14:1a:22:9b:a4:d1:a9:95:dc:00:a2:73:6a:3e:3f:43:9f:
77:ad:3e:8e:c4:7d:ae:61:4d:38:a2:8f:36:77:25:e5:42:9a:
1f:94:b5:cd:62:ab:7c:48:80:29:27:c0:e2:a9:1d:9f:c1:b1:
36:87:5c:ed:91:91:9e:52:9d:85:54:d0:f0:1c:5d:5c:31:e3:
29:69:d4:d6:a0:75:88:5e:2e:58:b3:d6:19:ff:ad:8a:87:5a:
f3:6a:32:d5:86:16:cc:8a:40:f7:1e:72:90:fd:04:15:38:a1:
b9:00:25:f3:04:8c:37:69:c6:95:f7:61:92:44:72:4a:f3:0e:
1c:e8:33:95:5e:f2:c5:95:28:f6:31:1e:f5:05:8a:71:87:d9:
b9:c8:d6:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 13:03:48 2025 by rpki-client