Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/0a606c-4d74-43d6-9f52-fe6bdc0e4399/1/mwQp_djBPig0cMZ3KW6BYgsAUtw.roa
File: mwQp_djBPig0cMZ3KW6BYgsAUtw.roa (raw, json)
Hash identifier: UBK9vNUsdiIzrW9Ynb9615t3uVFoLZcxGrutMPDUB/o=
Subject key identifier: 9B:04:29:FD:D8:C1:3E:28:34:70:C6:77:29:6E:81:62:0B:00:52:DC
Certificate issuer: /CN=c637fa81303440430b775c2c22d300e3320918c8
Certificate serial: 01856C9CE21043AC73A2C61818F89FE2F56E
Authority key identifier: C6:37:FA:81:30:34:40:43:0B:77:5C:2C:22:D3:00:E3:32:09:18:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xjf6gTA0QEMLd1wsItMA4zIJGMg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/0a606c-4d74-43d6-9f52-fe6bdc0e4399/1/mwQp_djBPig0cMZ3KW6BYgsAUtw.roa
Signing time: Sun 01 Jan 2023 09:14:58 +0000
ROA not before: Sun 01 Jan 2023 09:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204958
IP address blocks: 194.150.77.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:9c:e2:10:43:ac:73:a2:c6:18:18:f8:9f:e2:f5:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c637fa81303440430b775c2c22d300e3320918c8
Validity
Not Before: Jan 1 09:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9b0429fdd8c13e283470c677296e81620b0052dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:3a:aa:2e:fd:d6:00:61:c1:32:5f:d2:0c:4e:
8f:d4:75:70:90:aa:a7:71:0c:cb:8c:0f:8b:cd:2c:
4b:23:35:5a:d1:cc:2a:5e:08:8d:a6:58:93:3a:09:
5c:52:24:1c:44:96:c0:25:ae:16:23:32:3c:84:69:
34:79:15:08:7b:be:20:92:3f:52:a4:b1:43:93:41:
ab:e8:d0:3f:9b:e0:94:eb:e1:a2:ee:ef:38:7b:b1:
35:88:a1:7f:00:11:35:0f:48:b1:7a:9d:3a:44:ec:
3c:2a:bc:32:63:91:fe:85:d0:a2:5f:e8:63:a1:c3:
b1:f4:b1:93:8a:ae:e1:0c:0d:5b:f5:12:eb:7f:73:
88:3c:d1:05:3f:0f:53:17:3f:7c:2c:75:5e:8d:0d:
70:e7:1f:b2:01:7a:12:a4:eb:be:5b:82:64:b7:fa:
6d:f1:c3:ad:99:6d:7e:a1:d8:a6:bb:57:74:ec:b2:
8d:96:c9:f0:d2:d3:70:1e:e9:2f:b5:b5:27:cc:f4:
f1:4d:19:3b:c8:07:31:51:a1:fe:58:07:92:8e:6e:
92:63:44:a0:81:e4:e0:2e:60:e3:bf:8c:50:9f:6e:
e8:58:e0:b3:b5:a1:0c:ec:17:cb:17:6e:3f:ff:46:
98:d5:6f:7b:af:3a:86:a1:74:e9:19:1c:61:46:b6:
af:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:04:29:FD:D8:C1:3E:28:34:70:C6:77:29:6E:81:62:0B:00:52:DC
X509v3 Authority Key Identifier:
keyid:C6:37:FA:81:30:34:40:43:0B:77:5C:2C:22:D3:00:E3:32:09:18:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xjf6gTA0QEMLd1wsItMA4zIJGMg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/0a606c-4d74-43d6-9f52-fe6bdc0e4399/1/mwQp_djBPig0cMZ3KW6BYgsAUtw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/0a606c-4d74-43d6-9f52-fe6bdc0e4399/1/xjf6gTA0QEMLd1wsItMA4zIJGMg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.150.77.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:24:91:63:d3:0d:af:22:65:35:e5:9c:8a:b8:9a:f0:95:bf:
9d:5d:fc:30:fc:98:d4:05:53:ce:7e:3b:30:d8:81:0f:b4:1a:
a0:d3:00:aa:69:ec:44:6d:41:6d:9d:7f:bd:2f:c4:82:8c:af:
71:38:b0:1a:3a:51:b5:c2:dd:b5:cf:77:22:97:d7:f5:90:95:
e7:8a:6e:fe:60:ab:d1:37:83:1d:f0:a1:35:12:6c:d5:9f:bc:
36:f6:9c:3f:c8:57:39:91:be:17:5d:84:c5:bf:68:9e:7e:51:
cf:ce:d4:7a:cc:30:2e:84:62:eb:eb:8a:b7:6b:a6:0f:84:a5:
40:e0:95:76:0a:36:0e:38:05:da:ae:71:69:74:cc:4b:22:1e:
6b:3e:6d:03:3f:45:45:e0:46:5d:c3:f5:74:5e:b7:2b:59:30:
bd:c4:f9:b3:8a:85:5d:26:58:a2:f3:1d:e3:b9:d8:c0:50:08:
d5:02:2b:ab:24:b2:25:9d:18:bf:30:df:c9:b7:b6:0f:9a:69:
19:52:c6:97:a7:2f:72:08:9d:24:db:cf:c8:42:8b:fc:b7:af:
ee:fc:3e:72:6c:7b:c2:35:8f:c7:e2:ca:9e:e2:d6:8e:5e:17:
ca:90:68:47:1c:e4:6f:0e:43:fe:43:80:a8:cf:3e:3f:10:72:
da:08:0e:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:26 2025 by rpki-client