Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/2c25fb-1c1f-450d-a1be-6bc619649349/1/MNCHPlr1K8Iv6JcRhrhpvf9Zqe4.roa
File: MNCHPlr1K8Iv6JcRhrhpvf9Zqe4.roa (raw, json)
Hash identifier: hC5iIzVRFD19KHUZsgVh7yd9LVtY27q6nJwHwisXWOc=
Subject key identifier: 30:D0:87:3E:5A:F5:2B:C2:2F:E8:97:11:86:B8:69:BD:FF:59:A9:EE
Certificate issuer: /CN=3b0508405e9bf3522e8f58ad775ec506b157d713
Certificate serial: 01841E66E92977210D0647A8E401E3383B33
Authority key identifier: 3B:05:08:40:5E:9B:F3:52:2E:8F:58:AD:77:5E:C5:06:B1:57:D7:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OwUIQF6b81Iuj1itd17FBrFX1xM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/2c25fb-1c1f-450d-a1be-6bc619649349/1/MNCHPlr1K8Iv6JcRhrhpvf9Zqe4.roa
Signing time: Fri 28 Oct 2022 11:42:51 +0000
ROA not before: Fri 28 Oct 2022 11:42:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209288
IP address blocks: 212.18.105.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:1e:66:e9:29:77:21:0d:06:47:a8:e4:01:e3:38:3b:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b0508405e9bf3522e8f58ad775ec506b157d713
Validity
Not Before: Oct 28 11:42:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=30d0873e5af52bc22fe8971186b869bdff59a9ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:57:11:45:b3:e0:05:51:8e:dc:0e:b3:80:17:
5e:e4:c9:2f:e0:fe:22:d9:e4:70:95:01:ce:21:09:
49:2d:57:12:88:8b:bf:dc:48:36:73:60:e5:95:7c:
12:d4:de:d7:a0:1a:f8:02:4e:b3:a8:0a:30:b6:12:
1c:df:d0:e9:e4:9d:f2:3b:c7:77:b6:e9:62:ac:99:
48:28:27:a6:06:63:a5:67:24:23:8b:f2:05:83:2a:
4b:21:7e:04:c8:0c:0f:43:28:c1:84:07:81:9a:06:
8f:80:43:2a:cb:be:47:85:76:0d:44:3d:81:d5:9c:
8c:91:e7:15:e4:5f:05:28:3f:33:14:7a:1c:e3:16:
57:ab:6e:66:01:d1:93:44:25:71:f4:27:56:41:f1:
0f:c3:0b:d2:c0:44:d9:e2:34:2f:4d:e4:b2:6a:ee:
d9:a2:6d:97:a1:ce:0c:6b:02:58:37:43:e9:a8:50:
88:31:92:d4:db:30:0c:f0:f8:af:cf:36:71:78:9f:
d1:a9:a7:43:f1:bc:48:05:d0:d2:83:c5:e1:ca:bb:
16:f0:28:3d:93:13:21:fd:5c:ea:7b:83:48:d5:45:
82:a2:6e:93:3d:b2:53:d9:2f:b4:da:ce:b3:58:88:
1d:f4:d6:13:06:39:fe:28:8e:70:75:88:9c:1e:fd:
d0:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:D0:87:3E:5A:F5:2B:C2:2F:E8:97:11:86:B8:69:BD:FF:59:A9:EE
X509v3 Authority Key Identifier:
keyid:3B:05:08:40:5E:9B:F3:52:2E:8F:58:AD:77:5E:C5:06:B1:57:D7:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OwUIQF6b81Iuj1itd17FBrFX1xM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/2c25fb-1c1f-450d-a1be-6bc619649349/1/MNCHPlr1K8Iv6JcRhrhpvf9Zqe4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/2c25fb-1c1f-450d-a1be-6bc619649349/1/OwUIQF6b81Iuj1itd17FBrFX1xM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.18.105.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:a8:18:79:63:e6:5f:f7:cd:95:3b:01:b1:fe:2d:5a:94:0c:
bb:06:ab:c6:b6:fb:19:40:e3:a3:07:5d:5a:b1:b0:b5:6d:9f:
a5:ec:1c:19:ef:9e:06:c4:f7:f1:fc:29:ff:0f:5a:26:b4:1e:
d1:25:83:74:e7:9b:99:d0:47:0d:b6:47:c9:7e:7a:b6:38:fc:
3f:07:ef:92:fc:36:0d:02:c4:ea:59:de:33:d5:cc:2f:9f:2f:
54:a1:94:4a:b6:d6:72:b2:5c:85:ce:29:66:fa:52:b7:4d:b3:
57:d7:cd:7c:e8:12:92:79:af:06:52:b8:d2:2d:15:3b:5f:6e:
71:20:88:f5:22:e8:9d:7f:7e:75:bc:a2:05:1b:f6:23:f9:48:
ab:b8:79:2a:54:6d:c2:f8:ed:9a:28:84:ed:7b:68:ca:fd:8c:
03:9a:6a:c6:c6:12:70:0b:8a:49:5e:11:08:1c:7d:2d:4c:cd:
37:12:88:b4:fb:23:1c:6f:96:f0:59:3a:21:17:32:b5:60:ce:
bf:9d:23:a8:fd:f2:0d:a7:c6:08:1b:3a:3b:e9:53:e8:2d:97:
47:fe:8c:2b:7b:71:20:28:e9:70:d4:8d:a1:58:02:55:bc:95:
30:56:6b:f7:83:2f:d6:23:ee:d6:15:b2:1c:66:3b:47:d3:a2:
01:e7:d5:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:39:20 2025 by rpki-client