Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/869eae-2a07-4b67-a6ab-0f4910b553d9/1/MBqBOS9yAytXBOT9S1VC_0SWdXo.roa
File: MBqBOS9yAytXBOT9S1VC_0SWdXo.roa (raw, json)
Hash identifier: soDGTxCW8466SWyulewKU1PJe7VSa3YE33GbVYpEgdc=
Subject key identifier: 30:1A:81:39:2F:72:03:2B:57:04:E4:FD:4B:55:42:FF:44:96:75:7A
Certificate issuer: /CN=26472cfdcd392a184f1f051320bba806a204c6cd
Certificate serial: 01857B6AE86BBFB44C93F303579CD8871C79
Authority key identifier: 26:47:2C:FD:CD:39:2A:18:4F:1F:05:13:20:BB:A8:06:A2:04:C6:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Jkcs_c05KhhPHwUTILuoBqIExs0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/869eae-2a07-4b67-a6ab-0f4910b553d9/1/MBqBOS9yAytXBOT9S1VC_0SWdXo.roa
Signing time: Wed 04 Jan 2023 06:14:41 +0000
ROA not before: Wed 04 Jan 2023 06:14:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206425
IP address blocks: 185.124.64.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:7b:6a:e8:6b:bf:b4:4c:93:f3:03:57:9c:d8:87:1c:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26472cfdcd392a184f1f051320bba806a204c6cd
Validity
Not Before: Jan 4 06:14:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=301a81392f72032b5704e4fd4b5542ff4496757a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:64:5d:94:c9:68:49:fb:e0:6c:1c:6c:31:19:
23:cd:9e:a4:56:8e:de:6c:79:df:50:11:d3:cd:d2:
b5:72:8f:ad:2f:33:4d:0f:ea:00:f8:79:c8:87:89:
51:27:f5:ed:db:5b:69:22:9c:a4:5b:91:eb:54:b1:
11:26:f5:04:1c:d8:71:32:ac:5e:81:f2:93:29:8d:
d3:b6:ec:a3:2d:14:52:9e:47:fd:54:b8:27:83:47:
2d:a0:a8:50:2c:5d:02:36:be:94:d8:ef:b9:0d:75:
10:5b:fe:7c:ff:cb:bc:69:57:3c:0e:c6:41:c6:6b:
45:0a:2c:28:09:3b:66:fe:dc:da:8b:b1:19:27:d1:
8f:e0:04:6f:23:ee:68:de:01:4a:f1:b0:41:0d:76:
4f:a4:bf:f9:99:ea:f0:c5:69:6d:0c:cc:ce:0b:b8:
44:b5:eb:8d:ce:d8:77:bb:61:f1:2e:92:93:81:13:
2a:ec:3a:6e:da:b3:0d:26:77:f0:5a:6d:20:ca:10:
23:fd:67:9e:6d:4b:81:83:85:eb:70:2f:83:2b:99:
ca:ba:3e:87:86:94:da:f3:dd:52:78:0d:f6:16:39:
4c:25:f8:12:21:09:71:d9:22:56:d7:b1:7e:7d:4e:
c3:87:03:3f:1a:f8:41:73:bf:a0:c0:e6:07:10:e0:
9b:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:1A:81:39:2F:72:03:2B:57:04:E4:FD:4B:55:42:FF:44:96:75:7A
X509v3 Authority Key Identifier:
keyid:26:47:2C:FD:CD:39:2A:18:4F:1F:05:13:20:BB:A8:06:A2:04:C6:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Jkcs_c05KhhPHwUTILuoBqIExs0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/869eae-2a07-4b67-a6ab-0f4910b553d9/1/MBqBOS9yAytXBOT9S1VC_0SWdXo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/869eae-2a07-4b67-a6ab-0f4910b553d9/1/Jkcs_c05KhhPHwUTILuoBqIExs0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.124.64.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:b6:75:98:2f:05:77:7b:6e:e8:72:71:c8:ec:a1:c2:61:74:
09:c0:6e:20:7d:1c:a4:0d:03:50:d1:84:89:c1:f0:89:95:87:
21:a7:da:a3:60:bc:cd:c6:b8:8d:b3:20:78:70:c6:1f:dc:f6:
20:14:c7:03:c8:7a:a4:a9:03:88:e4:84:d3:3f:6c:b9:5b:02:
af:8f:21:45:9a:ce:df:ae:51:41:a9:3c:a7:32:6b:d1:93:fc:
c1:31:f6:2f:d0:25:93:14:7d:1b:97:fa:11:d1:f1:50:9a:63:
4e:26:51:aa:92:0f:d2:47:1a:cb:14:db:c0:64:6e:32:01:4b:
08:d3:50:b3:df:0b:a3:f7:83:93:96:7b:45:ef:75:3c:35:6e:
2a:aa:9c:34:60:22:c1:a3:6c:b1:d6:5c:03:99:ee:94:51:6e:
85:09:25:84:d3:3f:22:56:f1:8c:78:2f:10:2b:04:b0:c6:da:
84:3b:a2:f8:31:96:57:e2:f1:34:7e:14:c4:1d:50:65:a2:f2:
cd:20:32:02:37:61:74:c8:e1:86:fd:b3:00:b0:6c:5a:4f:72:
39:8f:f8:c0:b0:ad:51:47:02:0a:23:47:fd:20:db:c0:33:ad:
12:06:ab:bf:b0:6f:e9:5f:f3:e1:fc:c7:56:77:ad:ba:9c:79:
8c:e1:fc:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:25:09 2025 by rpki-client