Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/1a134f-030a-43e7-b041-6c7856ef7b31/1/mCPLdnOqbG0PEyDjXqAOULdCoKM.roa
File: mCPLdnOqbG0PEyDjXqAOULdCoKM.roa (raw, json)
Hash identifier: s4uMJghIj2Uwq+zFGrtG/F5vFhF5ShLMv0FKb4xcSk8=
Subject key identifier: 98:23:CB:76:73:AA:6C:6D:0F:13:20:E3:5E:A0:0E:50:B7:42:A0:A3
Certificate issuer: /CN=e9e4dc968ed52935a04dee3b229c21ca9bfdbd7e
Certificate serial: 018CC9BC4914C90CF94A3219FDF94D1302D5
Authority key identifier: E9:E4:DC:96:8E:D5:29:35:A0:4D:EE:3B:22:9C:21:CA:9B:FD:BD:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6eTclo7VKTWgTe47Ipwhypv9vX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/1a134f-030a-43e7-b041-6c7856ef7b31/1/mCPLdnOqbG0PEyDjXqAOULdCoKM.roa
Signing time: Tue 02 Jan 2024 10:33:29 +0000
ROA not before: Tue 02 Jan 2024 10:33:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211619
IP address blocks: 91.241.168.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:49:14:c9:0c:f9:4a:32:19:fd:f9:4d:13:02:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9e4dc968ed52935a04dee3b229c21ca9bfdbd7e
Validity
Not Before: Jan 2 10:33:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9823cb7673aa6c6d0f1320e35ea00e50b742a0a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:67:07:bf:e1:be:68:1b:1a:59:65:ed:7e:ed:
f5:3c:9f:a8:ab:ae:ef:ef:09:09:81:c7:0e:8a:17:
04:43:a3:0e:d4:5b:5b:b4:3b:df:43:d3:8f:fb:0d:
58:88:de:37:b8:b5:42:98:29:6e:76:1c:48:b6:08:
57:bf:ef:dd:ae:6d:81:81:09:47:a0:65:11:0f:af:
24:29:3a:45:6c:d3:09:42:4c:2c:7b:a5:2f:c6:58:
33:b8:c4:e4:1a:96:18:a4:fc:af:29:26:4f:34:23:
4f:f8:e3:45:ba:45:ac:b0:44:7d:96:46:44:b6:d7:
e2:35:b2:b0:13:dc:17:1f:63:96:dc:1a:4b:84:11:
2f:c8:44:f3:6a:19:d5:bc:29:45:d8:56:c9:f5:b0:
db:78:03:fa:8b:9f:b7:eb:26:c2:38:45:14:a2:28:
f4:c8:de:a4:5a:28:1b:57:aa:d4:25:63:65:99:b5:
2f:b6:2b:6f:d0:0a:82:e1:88:f3:e7:cd:24:7f:ac:
b6:fa:16:e8:53:85:5f:81:e5:f2:6b:4c:1c:21:88:
b7:40:48:17:73:1d:80:be:4b:be:51:89:c7:9d:30:
1a:56:6b:3b:69:92:fa:30:77:11:52:d5:40:fd:80:
c6:56:8b:71:42:a2:ba:e6:c9:4a:5d:f8:79:5d:9c:
e4:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:23:CB:76:73:AA:6C:6D:0F:13:20:E3:5E:A0:0E:50:B7:42:A0:A3
X509v3 Authority Key Identifier:
keyid:E9:E4:DC:96:8E:D5:29:35:A0:4D:EE:3B:22:9C:21:CA:9B:FD:BD:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6eTclo7VKTWgTe47Ipwhypv9vX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/1a134f-030a-43e7-b041-6c7856ef7b31/1/mCPLdnOqbG0PEyDjXqAOULdCoKM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/1a134f-030a-43e7-b041-6c7856ef7b31/1/6eTclo7VKTWgTe47Ipwhypv9vX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.241.168.0/24
Signature Algorithm: sha256WithRSAEncryption
42:3f:50:3f:77:b5:21:44:cf:1b:25:57:c7:a3:7f:ff:0d:c8:
58:a9:c1:f0:d9:ca:cc:87:49:1a:48:24:75:ae:94:15:25:25:
cb:4f:46:ef:5d:f0:13:5c:4b:b3:d7:8e:ed:98:46:d3:13:a6:
85:3b:ff:b0:f9:78:36:d3:c6:74:b7:39:50:b3:2b:10:2c:3c:
47:7a:70:84:0a:6c:5a:f7:1b:b5:19:f7:d0:92:4c:fb:cf:4e:
02:8f:c5:0a:cf:3d:da:f1:54:90:b1:5f:97:53:56:17:8c:e7:
b4:7a:af:95:0a:27:e4:69:7c:ba:a4:73:9e:71:31:6c:27:d1:
38:3d:88:98:63:6e:8f:e8:ef:49:6c:48:09:7c:e7:87:d1:7b:
ea:5d:55:4a:68:9a:a1:4a:9a:8d:6c:52:b6:ad:6d:25:cd:a0:
4e:77:7f:e7:0d:69:9b:92:41:b4:fa:7a:89:ae:2d:82:45:c1:
02:f2:b4:f7:11:e4:47:a4:d0:6e:51:ae:31:bf:9e:9a:e6:fe:
c5:5d:5b:3b:dd:4e:d9:aa:8e:fe:74:cf:2c:ad:23:3d:4d:f3:
fe:26:24:11:e9:65:a3:d5:1c:8e:15:ba:fa:56:81:4e:54:46:
0a:d4:90:9f:f7:a9:ad:63:1d:0e:bc:76:6d:f0:98:80:99:44:
62:ba:b7:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:42:36 2025 by rpki-client