Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/49db6c-7d51-4a4d-bc29-8412bef56f23/1/MU4-IwV73UZiR9pynpc5fs1MiWw.roa
File: MU4-IwV73UZiR9pynpc5fs1MiWw.roa (raw, json)
Hash identifier: aTLdn7Uu7Y5KFj8K0M4Y/SChXR54Q+vx12Mxeiu2DrY=
Subject key identifier: 31:4E:3E:23:05:7B:DD:46:62:47:DA:72:9E:97:39:7E:CD:4C:89:6C
Certificate issuer: /CN=44046a683ab92b41819977245ce759e267a5036a
Certificate serial: 02C8AB95
Authority key identifier: 44:04:6A:68:3A:B9:2B:41:81:99:77:24:5C:E7:59:E2:67:A5:03:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RARqaDq5K0GBmXckXOdZ4melA2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/49db6c-7d51-4a4d-bc29-8412bef56f23/1/MU4-IwV73UZiR9pynpc5fs1MiWw.roa
Signing time: Sat 21 May 2022 10:57:29 +0000
ROA not before: Sat 21 May 2022 10:57:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62111
IP address blocks: 194.156.76.0/24 maxlen: 24
2a11:a607:2a11::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46705557 (0x2c8ab95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44046a683ab92b41819977245ce759e267a5036a
Validity
Not Before: May 21 10:57:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=314e3e23057bdd466247da729e97397ecd4c896c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:52:62:75:b4:85:2c:fa:2e:70:26:5b:fd:f3:
e3:c5:84:12:b4:81:c0:dc:6e:0b:ca:f6:97:83:93:
75:ac:d6:9f:99:6c:ab:36:34:9d:5c:7a:ef:bf:92:
d5:3f:84:c3:93:fd:b1:99:a2:fd:25:1b:6d:06:cc:
d2:33:58:e7:dc:d5:63:48:ca:49:ef:38:89:12:83:
74:ea:56:ac:13:ea:a7:07:40:0e:7f:ae:69:b0:48:
2d:22:ce:c7:77:4c:0f:2e:f7:67:b0:8f:45:a0:1e:
82:1f:5f:e4:6e:e1:1c:39:22:69:58:54:9e:51:44:
7a:28:05:86:99:fa:e0:e2:69:c3:3a:da:97:59:05:
ad:48:16:90:25:52:c9:58:3c:83:16:62:ad:9b:a6:
aa:20:96:dd:aa:0d:4d:03:53:58:0b:af:d0:be:d0:
fa:49:bc:89:4b:d8:63:04:53:7e:ca:d4:4d:c1:67:
f4:b1:58:0b:a2:7e:d2:51:7c:92:f6:6e:3d:8d:ac:
5f:29:8c:77:5e:ac:25:62:45:39:66:16:f2:80:be:
5d:d8:b4:3f:6c:26:18:7b:52:57:51:8e:7d:c2:15:
5f:2a:d9:a3:38:ac:61:87:40:f6:b7:31:76:35:de:
d5:de:c1:6e:b3:3a:54:0f:d4:10:9e:32:21:9d:30:
39:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:4E:3E:23:05:7B:DD:46:62:47:DA:72:9E:97:39:7E:CD:4C:89:6C
X509v3 Authority Key Identifier:
keyid:44:04:6A:68:3A:B9:2B:41:81:99:77:24:5C:E7:59:E2:67:A5:03:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RARqaDq5K0GBmXckXOdZ4melA2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/49db6c-7d51-4a4d-bc29-8412bef56f23/1/MU4-IwV73UZiR9pynpc5fs1MiWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/49db6c-7d51-4a4d-bc29-8412bef56f23/1/RARqaDq5K0GBmXckXOdZ4melA2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.156.76.0/24
IPv6:
2a11:a607:2a11::/48
Signature Algorithm: sha256WithRSAEncryption
26:94:56:0c:df:3a:e2:e9:99:74:eb:0d:03:fa:c0:f7:80:e2:
ef:46:6f:e4:3d:a7:d4:09:67:e5:ef:f8:8f:1c:1a:5a:2c:31:
78:c5:c2:77:f4:e8:52:b3:1a:f1:05:37:57:bb:f7:3b:96:69:
94:67:db:be:96:69:ab:17:d7:fe:7e:a2:9e:8e:ce:0e:85:f9:
09:6e:07:1c:3d:df:d6:81:05:a0:52:ae:d9:01:da:62:c6:f1:
3b:d9:82:40:f6:3c:7c:fd:a6:1e:f7:25:63:a7:72:3c:d2:0e:
fe:54:fe:d7:54:62:41:00:ed:74:3b:9b:4a:7e:ed:04:2d:b8:
0d:97:21:03:c3:82:0b:7f:f8:a6:a9:8e:ea:44:26:0a:e8:8a:
ea:50:67:5d:07:f9:10:88:be:a7:24:d0:3c:11:15:d3:30:46:
5b:80:71:ae:74:31:22:46:49:81:7d:9c:02:f7:4e:72:48:38:
0b:6e:7d:51:52:37:54:ad:e2:f6:31:6f:6c:45:01:aa:f8:d5:
f8:4f:2a:88:71:29:02:90:5e:f7:ec:48:42:0e:d2:8c:12:79:
f3:e9:81:e3:57:46:09:77:50:f4:f6:d0:2b:e3:44:76:ad:c7:
f9:73:91:ee:fe:cd:e5:f5:cd:42:c0:2e:7c:f1:52:e7:a6:e3:
ae:97:fb:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:26:33 2025 by rpki-client