Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/3c3911-a72f-402a-ae6d-edff5da63101/1/MYBMkpm5gLbpJ6MXQRKqVBQ2yGw.roa
File: MYBMkpm5gLbpJ6MXQRKqVBQ2yGw.roa (raw, json)
Hash identifier: XCY25uueEd7j5aX/SaCCf0qGxSJDPPjnvsMdUG/9ed8=
Subject key identifier: 31:80:4C:92:99:B9:80:B6:E9:27:A3:17:41:12:AA:54:14:36:C8:6C
Certificate issuer: /CN=33b64dc10a9091901f620a346999d7105a686b6c
Certificate serial: 0992838D
Authority key identifier: 33:B6:4D:C1:0A:90:91:90:1F:62:0A:34:69:99:D7:10:5A:68:6B:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M7ZNwQqQkZAfYgo0aZnXEFpoa2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/3c3911-a72f-402a-ae6d-edff5da63101/1/MYBMkpm5gLbpJ6MXQRKqVBQ2yGw.roa
Signing time: Sat 01 Jan 2022 03:53:42 +0000
ROA not before: Sat 01 Jan 2022 03:53:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41638
IP address blocks: 195.138.222.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160596877 (0x992838d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33b64dc10a9091901f620a346999d7105a686b6c
Validity
Not Before: Jan 1 03:53:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31804c9299b980b6e927a3174112aa541436c86c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:53:46:cc:83:3f:e3:1a:eb:88:0c:4c:db:24:
3f:45:da:64:09:c2:1b:21:12:4f:34:18:d9:35:be:
2e:bd:86:e2:f6:2e:32:17:43:60:1a:df:4a:9f:b3:
07:64:f8:ae:18:ac:9f:4f:65:01:fe:5f:13:0e:0a:
04:34:21:11:b9:cf:7a:06:54:20:69:a8:8e:b0:b9:
97:72:45:28:3e:e6:6f:e9:4c:ff:31:95:e8:df:7d:
13:f5:cd:31:1b:ca:40:6c:be:4a:75:8b:79:a6:8d:
01:5a:a0:bf:73:3f:f2:0f:d9:e1:25:fa:31:df:8b:
1a:a2:9a:a6:5c:b3:98:69:72:ca:06:61:0e:2e:95:
69:2c:48:35:3b:fb:ca:bd:e2:f1:93:7d:53:f9:36:
dd:a9:8d:e5:db:85:f4:42:a2:29:3f:9d:dd:16:4b:
e3:64:48:91:24:b3:50:32:5c:a0:81:7e:b2:77:a5:
90:d4:5b:70:d5:93:1d:c3:e2:c1:8b:fc:da:d4:cb:
b2:c2:03:27:fb:56:ac:bd:0f:87:e7:dc:7e:34:23:
16:22:d2:03:8c:53:c1:68:81:53:b5:f5:70:0b:02:
8d:1e:7b:a8:af:68:dd:80:bd:1d:08:2d:32:75:9d:
da:25:f8:00:3e:70:e8:0f:cc:af:37:31:23:40:e0:
61:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:80:4C:92:99:B9:80:B6:E9:27:A3:17:41:12:AA:54:14:36:C8:6C
X509v3 Authority Key Identifier:
keyid:33:B6:4D:C1:0A:90:91:90:1F:62:0A:34:69:99:D7:10:5A:68:6B:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M7ZNwQqQkZAfYgo0aZnXEFpoa2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/3c3911-a72f-402a-ae6d-edff5da63101/1/MYBMkpm5gLbpJ6MXQRKqVBQ2yGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/3c3911-a72f-402a-ae6d-edff5da63101/1/M7ZNwQqQkZAfYgo0aZnXEFpoa2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.138.222.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:f0:1b:05:79:af:ac:4b:ed:71:b0:48:ff:6c:b1:92:1e:df:
ac:67:39:df:13:8d:02:1c:48:ff:06:ad:9c:f7:18:03:80:90:
bb:87:ed:a7:04:89:ec:b4:71:2d:51:ff:8b:cf:83:28:59:97:
76:1b:7e:02:e6:b0:c4:c2:25:75:c8:a0:9d:80:ab:1e:e4:47:
cb:e4:75:51:00:5a:60:89:78:60:c3:c6:58:6b:c7:fa:8f:90:
f4:0c:86:49:68:72:84:91:79:2e:4e:43:89:6a:3b:d1:0e:00:
e3:8e:2a:3c:bd:f6:cf:8c:18:96:89:b7:13:54:6d:9f:85:d4:
38:fb:9c:0a:ed:68:2e:98:08:ac:2c:70:9e:d9:80:06:15:e2:
09:01:39:e0:79:94:eb:b6:b1:22:39:ee:d9:50:20:b7:de:d1:
44:2e:76:b3:e8:d8:38:82:5c:63:08:12:4b:cb:ea:de:78:f3:
f7:97:1e:7e:4b:bc:ac:7d:00:2c:ef:9d:8b:5f:0f:78:33:30:
5b:f6:05:cf:7d:b7:e2:29:54:40:5d:3e:41:d3:e3:ac:c8:bb:
54:7f:a0:5d:c6:d8:19:42:b3:c2:4f:0a:7b:b1:96:50:64:16:
a8:38:d1:36:2e:dc:fd:6d:5c:25:d9:51:67:af:4a:16:17:73:
aa:14:fb:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:02 2024 by rpki-client on console-fra.rpki-client.org