Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/mtugu_aR8NZmwai1sWgFsDZ5sxk.roa
File: mtugu_aR8NZmwai1sWgFsDZ5sxk.roa (raw, json)
Hash identifier: BhcGif4yiTL0DywxbPWT1BULRMoJWu2eSBwVAORvJlA=
Subject key identifier: 9A:DB:A0:BB:F6:91:F0:D6:66:C1:A8:B5:B1:68:05:B0:36:79:B3:19
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01910BB396D4AE5FEB47AD7F68464966028F
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/mtugu_aR8NZmwai1sWgFsDZ5sxk.roa
Signing time: Thu 01 Aug 2024 02:10:04 +0000
ROA not before: Thu 01 Aug 2024 02:10:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:0b:b3:96:d4:ae:5f:eb:47:ad:7f:68:46:49:66:02:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 1 02:10:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9adba0bbf691f0d666c1a8b5b16805b03679b319
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:7b:9f:bd:40:62:22:36:f6:3d:94:f0:72:2e:
c6:77:6c:ae:cc:eb:a9:fe:34:d1:e3:98:a5:e7:2d:
43:1b:c7:ca:d0:3d:90:9b:06:4e:b3:15:48:dc:d5:
9d:fe:7e:b7:25:17:42:17:b8:7e:aa:f1:61:f4:04:
f8:0e:97:5f:9a:65:e6:b1:40:4c:ad:80:39:88:5b:
97:d8:3b:58:bb:0c:f8:df:20:fb:29:79:4c:df:84:
9e:4c:2e:29:e0:5d:2f:e0:a1:ac:87:10:45:71:a6:
63:c5:93:52:c9:4c:90:69:88:2e:60:9e:4e:a4:e3:
a1:9f:03:d5:e2:42:83:c4:46:17:bd:37:61:f1:ce:
ae:46:d3:0f:d3:a6:45:4b:33:26:fd:3b:c5:d2:6a:
90:93:75:83:15:54:24:62:4f:36:d1:2a:69:ae:36:
46:b4:e7:6a:cf:ae:00:7d:85:52:0c:28:92:a2:fd:
33:14:45:65:bf:ee:86:66:f9:5f:c1:60:f2:7e:18:
7b:66:bd:24:c6:c2:8c:35:0a:dd:6e:ad:e0:35:8f:
04:37:49:5e:ae:5e:54:ba:eb:1e:41:f8:7d:78:35:
52:4b:97:99:35:43:51:86:a6:fa:6a:c2:a4:c0:ef:
1f:a0:2c:8d:d0:bd:d2:e4:8a:f7:cb:d4:f6:12:82:
a4:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:DB:A0:BB:F6:91:F0:D6:66:C1:A8:B5:B1:68:05:B0:36:79:B3:19
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/mtugu_aR8NZmwai1sWgFsDZ5sxk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
1a:38:f0:28:81:23:35:b1:20:85:e3:0f:f7:e1:4c:1a:57:e5:
0c:9a:57:6f:7c:02:70:9b:6f:c7:19:37:04:a0:ae:d7:63:a9:
ed:3e:ec:42:e1:62:ed:59:06:17:f0:a9:ca:e5:fe:0e:25:a2:
9b:22:28:c0:dd:77:ed:5a:15:01:04:86:35:b5:e6:bc:34:16:
26:b8:68:b9:f5:32:e6:45:7a:5a:6f:8b:71:59:98:21:75:2b:
09:9a:7f:c5:fd:69:a4:78:8f:28:d2:b5:a9:99:fd:06:e2:30:
f1:78:4f:b2:a0:76:9b:75:7e:59:b1:db:b7:34:ac:a4:72:c7:
e2:1a:27:6e:34:25:ae:a2:5c:96:c6:c4:35:d7:64:03:8a:99:
11:08:a7:e3:50:c7:bd:4e:e1:6b:55:84:1c:b7:9e:ec:60:a7:
a7:24:f1:6b:e1:10:5b:f1:ee:57:56:ef:e5:12:65:b3:af:c0:
38:c5:f3:9a:aa:a5:0c:77:98:f9:5f:87:c8:aa:9b:3e:84:ec:
1b:2a:7b:1a:1d:41:46:76:1d:ad:fc:fd:d9:b7:a4:90:43:83:
d3:47:82:ae:57:5c:a3:f6:e1:ba:52:b1:71:a8:f5:8c:0c:51:
a7:82:58:80:a4:40:ba:65:7f:5d:98:2b:b3:3c:ef:c7:90:4c:
df:20:b7:4f
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Apr 20 14:59:01 2025 by rpki-client