Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/ccbc52-e094-4e15-b672-71a4c6f9c887/1/dVMffcB57ngMvxQKTJxqL2tr0lI.roa
File: dVMffcB57ngMvxQKTJxqL2tr0lI.roa (raw, json)
Hash identifier: RqJd5mtQut4ridy71ZYjZMxwRi77GHtLyX0wIE/tNII=
Subject key identifier: 75:53:1F:7D:C0:79:EE:78:0C:BF:14:0A:4C:9C:6A:2F:6B:6B:D2:52
Certificate issuer: /CN=3269cc291ba260fc71118684e7b302f50ce9628d
Certificate serial: 06DA701E
Authority key identifier: 32:69:CC:29:1B:A2:60:FC:71:11:86:84:E7:B3:02:F5:0C:E9:62:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MmnMKRuiYPxxEYaE57MC9QzpYo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/ccbc52-e094-4e15-b672-71a4c6f9c887/1/dVMffcB57ngMvxQKTJxqL2tr0lI.roa
Signing time: Sat 01 Jan 2022 10:57:44 +0000
ROA not before: Sat 01 Jan 2022 10:57:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42675
IP address blocks: 194.32.144.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114978846 (0x6da701e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3269cc291ba260fc71118684e7b302f50ce9628d
Validity
Not Before: Jan 1 10:57:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75531f7dc079ee780cbf140a4c9c6a2f6b6bd252
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:8c:93:22:eb:f5:f0:96:e3:de:ea:c0:52:21:
96:60:90:1b:eb:d3:4c:15:49:0e:e4:5d:50:2a:c4:
76:b5:3e:d5:42:85:88:8d:3d:a0:4a:75:68:53:ca:
08:c9:b0:39:c4:4a:b7:5a:41:ba:51:5a:2c:9b:30:
e2:1e:1c:26:7b:7a:64:c5:7a:49:76:9d:e8:69:60:
84:2a:03:8d:75:be:1a:b7:e3:a1:99:e9:0a:60:72:
11:99:b6:31:0b:3d:6b:a3:75:09:ed:eb:c5:1f:4f:
d8:b2:d6:8b:05:74:a6:43:f0:ec:05:37:68:6d:d5:
7f:a3:1b:f1:06:71:b4:13:1a:06:4a:b1:97:b4:61:
6a:75:d7:66:cb:ba:70:3d:91:c3:92:ca:22:17:b1:
09:e3:fb:4a:b3:46:93:0d:63:a9:e3:4c:d9:46:61:
ae:0a:4a:b7:3e:01:38:ff:48:bc:73:f2:b4:86:90:
76:24:15:af:67:52:32:4e:76:86:42:ee:cd:c7:d2:
f4:96:36:a2:0b:9f:76:0c:6d:aa:cd:dd:f2:4f:b7:
a9:a0:ea:3e:cf:68:5f:f5:71:ef:cf:09:38:35:8d:
0b:3e:ba:e4:94:fa:ef:11:34:9f:79:13:74:07:ba:
98:6f:e8:04:3b:2e:f7:4b:dc:3b:0e:a0:aa:13:4b:
9d:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:53:1F:7D:C0:79:EE:78:0C:BF:14:0A:4C:9C:6A:2F:6B:6B:D2:52
X509v3 Authority Key Identifier:
keyid:32:69:CC:29:1B:A2:60:FC:71:11:86:84:E7:B3:02:F5:0C:E9:62:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MmnMKRuiYPxxEYaE57MC9QzpYo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ccbc52-e094-4e15-b672-71a4c6f9c887/1/dVMffcB57ngMvxQKTJxqL2tr0lI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ccbc52-e094-4e15-b672-71a4c6f9c887/1/MmnMKRuiYPxxEYaE57MC9QzpYo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.32.144.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:29:95:76:76:2e:3a:14:a8:20:ee:84:72:dd:f1:cf:44:7a:
e3:18:cf:bd:3f:ad:38:7c:de:a6:32:56:82:ae:78:2b:56:43:
4d:a9:8e:27:7f:c3:f0:6f:47:fc:87:57:0a:53:fa:34:5c:87:
59:bb:1a:3e:75:a6:c2:30:87:1c:bb:86:96:26:7a:20:68:6c:
07:99:a2:7b:4e:93:ce:4b:85:82:a7:85:55:03:30:83:67:11:
78:0d:c6:ab:fe:73:b4:da:6b:d4:4c:b7:43:64:1f:b4:92:d6:
e0:fd:4c:f0:0b:28:51:d8:72:85:a7:d7:4d:90:28:4d:47:fb:
5e:11:26:0d:cd:79:87:14:a4:2c:fa:6a:87:33:3e:0e:c7:c8:
e6:82:8b:47:a9:64:fc:5a:06:70:7a:18:94:0e:bd:52:c1:dc:
a3:de:22:bb:db:a4:77:52:c5:86:b0:d6:94:22:6f:20:0c:8c:
13:7b:9f:1f:40:1a:c6:cc:12:e4:34:9e:2b:c2:82:8d:73:b4:
b9:cd:4a:df:8a:dc:09:ef:dd:bd:95:fd:52:98:37:31:cd:9c:
fa:9a:78:76:80:ee:1d:10:54:bc:2e:d4:7e:ce:45:9a:8a:56:
55:a0:ce:b9:6b:2e:5b:96:db:2e:60:6b:f7:28:d1:63:41:31:
9c:4b:b4:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 10:36:25 2025 by rpki-client