Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/598642-e36f-4c5c-a8e0-a0b514249c06/1/MsnI-u7LkeeE69ZloHFmZOTlmD0.roa
File: MsnI-u7LkeeE69ZloHFmZOTlmD0.roa (raw, json)
Hash identifier: XecQr/pmj9Aj5ThuCx25weN12wO9WTw13cR3JrVWOQg=
Subject key identifier: 32:C9:C8:FA:EE:CB:91:E7:84:EB:D6:65:A0:71:66:64:E4:E5:98:3D
Certificate issuer: /CN=d41bca39861f9c30c757614801f86d17e5ea1e4b
Certificate serial: 018224F3555B29F2FA009ACB394DF61BAA71
Authority key identifier: D4:1B:CA:39:86:1F:9C:30:C7:57:61:48:01:F8:6D:17:E5:EA:1E:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1BvKOYYfnDDHV2FIAfhtF-XqHks.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/598642-e36f-4c5c-a8e0-a0b514249c06/1/MsnI-u7LkeeE69ZloHFmZOTlmD0.roa
Signing time: Fri 22 Jul 2022 08:08:23 +0000
ROA not before: Fri 22 Jul 2022 08:08:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22653
IP address blocks: 194.31.204.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:24:f3:55:5b:29:f2:fa:00:9a:cb:39:4d:f6:1b:aa:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d41bca39861f9c30c757614801f86d17e5ea1e4b
Validity
Not Before: Jul 22 08:08:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=32c9c8faeecb91e784ebd665a0716664e4e5983d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:5c:e6:46:a4:51:5a:9f:dd:5c:72:b5:a2:89:
1c:61:30:4d:88:b4:4c:35:5b:52:a1:bc:2c:a1:c3:
28:9f:cb:8c:74:c7:d0:5b:9b:fc:ab:cc:f4:e3:3f:
02:25:02:f3:39:cf:a7:34:36:d8:c0:b6:df:42:7f:
f4:61:1d:8a:58:d0:3f:7d:d6:f4:9e:99:67:b5:91:
0f:31:4c:68:51:41:e7:3f:11:b7:57:7b:5f:90:4d:
b4:15:20:4d:62:f5:b2:12:30:68:25:8d:21:1e:63:
e6:09:89:bd:f2:a7:b9:b1:52:97:1d:5d:cf:82:a0:
46:50:e4:b7:fb:37:82:2c:00:63:c2:eb:42:6b:f7:
25:6f:01:83:6f:32:cc:1f:6d:1e:40:ca:12:e5:c1:
e2:24:f2:97:ed:21:70:d2:ef:40:dd:c3:38:f8:8a:
30:e4:55:5d:46:6a:e7:11:3f:5e:f6:12:33:91:8b:
a5:70:10:33:54:a5:05:b5:73:cb:3d:77:0e:7f:19:
94:71:6b:80:0a:79:c4:27:42:c3:44:5e:fe:16:16:
92:3e:30:d8:f2:9d:9b:f8:dc:9f:0e:d9:cb:74:cc:
53:a8:b6:50:ca:4b:6e:d4:2d:94:39:63:50:fa:e8:
70:58:e9:1c:1c:f8:e6:95:96:98:3e:52:c2:33:33:
ba:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:C9:C8:FA:EE:CB:91:E7:84:EB:D6:65:A0:71:66:64:E4:E5:98:3D
X509v3 Authority Key Identifier:
keyid:D4:1B:CA:39:86:1F:9C:30:C7:57:61:48:01:F8:6D:17:E5:EA:1E:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1BvKOYYfnDDHV2FIAfhtF-XqHks.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/598642-e36f-4c5c-a8e0-a0b514249c06/1/MsnI-u7LkeeE69ZloHFmZOTlmD0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/598642-e36f-4c5c-a8e0-a0b514249c06/1/1BvKOYYfnDDHV2FIAfhtF-XqHks.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.204.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:2b:f0:4f:99:9f:1d:c3:2e:ce:7c:9f:12:bd:cc:c7:35:a8:
9f:c4:97:87:eb:a4:25:36:08:6f:33:24:ea:80:fa:c4:d0:24:
7a:05:c5:a0:b8:c3:fc:43:f3:af:77:5e:52:4b:8a:37:eb:73:
a1:df:ef:9f:b9:7c:2e:63:a0:c7:99:cd:36:8f:3b:9e:5a:32:
5c:0b:1c:25:ad:b4:ff:85:86:87:d6:2e:15:0a:52:fb:3e:9c:
2c:df:fc:56:47:dd:35:e6:91:2b:a2:02:05:c9:60:8e:58:3b:
15:bb:36:4a:ba:d1:d5:b5:6e:4f:85:02:a1:25:bf:88:11:20:
cf:08:12:89:c7:46:21:47:db:7c:53:d2:df:00:22:90:e3:c7:
cf:da:b6:21:a1:93:b6:67:fa:d3:6b:8d:5a:98:88:08:3f:ad:
b2:f4:ab:a0:ca:b3:ec:8d:c2:42:2b:85:cf:1b:7f:32:26:4e:
76:4c:02:f5:bd:72:c9:14:84:9e:58:21:f0:c9:b1:b9:a4:ad:
2a:54:2c:61:48:fc:a5:5b:4c:f2:d9:08:36:0d:05:ce:52:51:
4e:28:19:39:d1:6b:4f:20:e9:26:c6:9a:12:d5:54:96:4e:68:
f0:9d:47:01:ff:7b:f7:8a:ca:91:bf:ae:ec:34:78:e2:b9:48:
d9:5f:46:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:23:05 2025 by rpki-client