Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/MubgrlGNhygMMdD0hr2aQc2YjhQ.roa
File: MubgrlGNhygMMdD0hr2aQc2YjhQ.roa (raw, json)
Hash identifier: 0prwmhxA0/d0NAahOQkvBYrObmuDIuPQDiR3+swoszM=
Subject key identifier: 32:E6:E0:AE:51:8D:87:28:0C:31:D0:F4:86:BD:9A:41:CD:98:8E:14
Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003
Certificate serial: 01946C395E8EEDC3DCFB9977190E795CC9C0
Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/MubgrlGNhygMMdD0hr2aQc2YjhQ.roa
Signing time: Wed 15 Jan 2025 23:08:06 +0000
ROA not before: Wed 15 Jan 2025 23:08:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 11798
IP address blocks: 185.207.135.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:6c:39:5e:8e:ed:c3:dc:fb:99:77:19:0e:79:5c:c9:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003
Validity
Not Before: Jan 15 23:08:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=32e6e0ae518d87280c31d0f486bd9a41cd988e14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:4c:d4:fb:5c:74:29:77:b3:15:a1:5e:9e:57:
e5:45:aa:8e:55:50:89:62:3c:e9:ae:7b:5b:11:02:
e8:ff:6e:d1:7b:bb:c5:4b:07:59:32:05:ba:72:da:
1c:92:32:da:24:79:3b:b3:2e:57:c7:04:b3:63:b7:
30:3a:ae:c8:5c:cf:ae:c0:64:e4:39:9c:b9:4d:d1:
93:8e:e1:ef:cd:64:73:44:7b:cd:bc:16:88:7a:59:
b3:54:b3:fb:3e:86:55:59:2c:18:e4:2b:20:1e:d2:
0f:fb:f0:80:08:16:cd:2c:fe:2b:0d:6c:f2:d0:f3:
97:8d:4e:c8:c0:45:03:13:1b:1e:9d:53:40:0e:66:
73:a0:ae:a8:e4:40:80:49:15:a2:6b:67:83:07:57:
cf:36:4c:64:1c:14:dd:c3:05:ec:3c:d3:d2:d3:fc:
ab:8f:07:36:be:fe:0a:98:28:1b:2d:82:e9:8a:67:
23:ff:d5:bf:a0:b3:b3:a2:14:e2:47:d6:65:c7:43:
38:2f:8b:21:c7:79:55:1f:84:0c:c4:5e:14:8d:29:
c3:d8:9d:cb:42:c7:2d:0b:3c:7d:40:f6:e5:01:5a:
c3:f6:2d:3c:f0:9a:a3:1e:1a:cd:8f:e2:fa:ff:70:
02:23:62:24:54:32:fb:6a:77:a8:83:51:42:96:5a:
b1:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:E6:E0:AE:51:8D:87:28:0C:31:D0:F4:86:BD:9A:41:CD:98:8E:14
X509v3 Authority Key Identifier:
keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/MubgrlGNhygMMdD0hr2aQc2YjhQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.135.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:18:f5:d6:b6:2c:15:6f:44:1c:af:b7:31:95:a7:b9:24:d6:
a0:c3:50:52:1c:88:5e:e0:07:a0:29:7e:e9:9a:62:ce:44:f9:
31:7d:ae:cc:70:e1:91:d7:48:ec:d5:07:50:7a:87:a1:59:69:
56:56:18:e2:28:e8:6e:1d:d1:75:58:2a:ce:63:20:1f:d1:83:
fe:eb:15:c2:e6:5a:0b:7c:a7:dc:9c:51:ce:0c:07:6a:5a:80:
02:79:f5:f5:71:fe:5a:e6:17:ed:e2:29:8a:58:42:ce:90:76:
bd:a9:81:ac:7e:d2:0c:5e:15:e9:06:18:b2:1b:db:80:8b:3e:
23:ee:88:17:fc:b6:62:41:8b:1f:94:e5:6a:2c:b4:f2:0b:0b:
e1:9f:b5:e4:73:cd:b6:9f:ee:fa:9c:12:55:47:80:d3:6b:59:
1b:a4:93:9f:b0:fe:fc:c6:08:28:5a:1d:d2:ec:a8:77:b7:4a:
f7:72:9d:cd:f1:e9:b2:bb:0e:9e:c3:35:ca:17:7b:ae:e7:0d:
b4:8d:96:8d:c7:3c:e3:72:09:bd:2a:d1:c6:64:5b:f6:07:10:
d7:bc:f4:78:1d:0d:20:5b:b9:33:50:14:e9:9d:95:76:65:1b:
f4:9f:c5:84:35:5b:63:f8:df:25:1c:20:5e:19:51:eb:ba:f2:
46:ba:bc:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:25:04 2025 by rpki-client