Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/087513-d2d6-43c6-9b79-22f0aaa81327/1/McJBsphQoDhzeVnNZjQXJIWaZ6Y.roa
File: McJBsphQoDhzeVnNZjQXJIWaZ6Y.roa (raw, json)
Hash identifier: yKUH9/jSgEvNGo/3nepkm1/S5OFTD0l9/lzqCHYZgCY=
Subject key identifier: 31:C2:41:B2:98:50:A0:38:73:79:59:CD:66:34:17:24:85:9A:67:A6
Certificate issuer: /CN=6eef3973d6e07681419bae867bd514545e7df5da
Certificate serial: 0194221F846DFB47F6F2232C82E860CCEAF2
Authority key identifier: 6E:EF:39:73:D6:E0:76:81:41:9B:AE:86:7B:D5:14:54:5E:7D:F5:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bu85c9bgdoFBm66Ge9UUVF599do.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/087513-d2d6-43c6-9b79-22f0aaa81327/1/McJBsphQoDhzeVnNZjQXJIWaZ6Y.roa
Signing time: Wed 01 Jan 2025 13:47:58 +0000
ROA not before: Wed 01 Jan 2025 13:47:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212341
IP address blocks: 2.58.101.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:84:6d:fb:47:f6:f2:23:2c:82:e8:60:cc:ea:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6eef3973d6e07681419bae867bd514545e7df5da
Validity
Not Before: Jan 1 13:47:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=31c241b29850a038737959cd66341724859a67a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f8:a7:b7:ef:43:75:11:cc:90:32:e9:06:07:
b6:d3:26:cf:c7:3f:7d:d8:42:6b:1a:8d:ac:33:91:
73:53:2f:b9:da:f4:2b:39:f0:f8:8f:ee:e8:4d:4e:
a5:3d:85:5a:ac:14:19:d3:56:66:4c:22:77:bb:0f:
7c:05:dc:87:41:94:5f:13:df:55:16:82:32:6e:f5:
8e:ec:8a:af:40:d0:a6:a4:13:97:a5:ce:7c:98:7f:
49:b1:7f:1a:29:09:24:30:02:b3:ed:46:66:99:0f:
7f:00:96:09:48:9b:dc:3e:45:20:20:80:05:69:04:
71:b3:44:d3:a4:00:26:3f:da:ef:54:4c:31:5c:e6:
5a:2e:5d:f6:da:73:24:2b:78:5b:80:50:5b:23:96:
81:2b:87:f6:79:a9:5d:9f:c3:d1:a9:10:d2:5b:ee:
53:86:7e:fb:11:f1:9b:0d:4a:c4:62:06:45:4b:57:
b4:45:df:96:80:64:44:89:20:92:18:d6:fc:3a:3c:
f5:33:67:59:19:4f:65:3f:fa:5d:37:15:18:97:77:
c3:cf:84:8d:03:fb:a9:fb:e0:94:90:df:1f:e9:19:
74:d9:83:23:fa:56:b5:82:d8:45:12:e8:81:00:91:
f3:bb:99:1e:68:8c:1c:3a:26:d6:ab:ce:43:ae:31:
5e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:C2:41:B2:98:50:A0:38:73:79:59:CD:66:34:17:24:85:9A:67:A6
X509v3 Authority Key Identifier:
keyid:6E:EF:39:73:D6:E0:76:81:41:9B:AE:86:7B:D5:14:54:5E:7D:F5:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bu85c9bgdoFBm66Ge9UUVF599do.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/087513-d2d6-43c6-9b79-22f0aaa81327/1/McJBsphQoDhzeVnNZjQXJIWaZ6Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/087513-d2d6-43c6-9b79-22f0aaa81327/1/bu85c9bgdoFBm66Ge9UUVF599do.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.101.0/24
Signature Algorithm: sha256WithRSAEncryption
18:80:c3:71:91:4a:f6:a0:d2:5e:e4:36:a4:25:41:53:06:0e:
71:83:c4:81:9a:04:49:1a:48:a9:f0:3c:da:a4:da:7b:1c:98:
c3:09:c2:f9:f6:28:c1:b8:fc:cd:53:19:5f:6c:ef:29:2d:14:
33:f2:0f:5f:8f:64:f8:35:0d:c6:a0:27:bd:41:69:ea:84:35:
81:90:8d:d8:f5:67:07:6a:2f:10:80:8d:87:a6:40:0b:6a:41:
91:e9:ea:90:3a:97:f9:66:f3:38:04:fb:68:cf:47:21:a4:f5:
4c:6c:6c:ac:eb:15:1a:96:f9:ce:9f:ba:c5:a6:2d:db:98:28:
b3:b8:6a:e0:37:99:72:77:d5:6d:ae:4e:3d:89:28:3f:eb:cc:
13:41:e6:9a:95:0a:47:80:90:46:e0:4b:51:c6:5f:42:09:4b:
7b:72:ef:d6:ca:3f:b6:16:dc:c6:2f:f8:6b:6b:9c:6e:64:eb:
56:b5:62:35:a1:5c:da:45:e5:ed:16:0d:b3:79:e0:53:d2:54:
a1:45:06:ea:c4:9c:d8:5b:27:9f:20:c1:69:dd:45:1b:23:5a:
27:04:22:2b:49:9a:7a:9b:47:19:04:c8:c7:45:93:46:fa:f2:
fa:dc:94:c9:8c:c7:5a:ca:c2:4d:a5:fe:62:9f:c2:c4:e3:8c:
55:92:b6:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:40:41 2025 by rpki-client