Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/ML8ZRPoyxMj-4Ow7WLRIgCdj4C0.roa
File: ML8ZRPoyxMj-4Ow7WLRIgCdj4C0.roa (raw, json)
Hash identifier: iu+npeSgszOajZQ0OZAjulgp5HTkPd/3fQqn3XBezew=
Subject key identifier: 30:BF:19:44:FA:32:C4:C8:FE:E0:EC:3B:58:B4:48:80:27:63:E0:2D
Certificate issuer: /CN=4474cf3e2fa892b5fdd3f30dc8275ee1062e1d06
Certificate serial: 0293C082
Authority key identifier: 44:74:CF:3E:2F:A8:92:B5:FD:D3:F3:0D:C8:27:5E:E1:06:2E:1D:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RHTPPi-okrX90_MNyCde4QYuHQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/ML8ZRPoyxMj-4Ow7WLRIgCdj4C0.roa
Signing time: Sat 15 Jan 2022 16:42:43 +0000
ROA not before: Sat 15 Jan 2022 16:42:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200019
IP address blocks: 2.58.64.0/23 maxlen: 23
2.58.66.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43237506 (0x293c082)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4474cf3e2fa892b5fdd3f30dc8275ee1062e1d06
Validity
Not Before: Jan 15 16:42:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=30bf1944fa32c4c8fee0ec3b58b448802763e02d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:13:91:66:78:0b:5a:40:28:48:73:08:2f:fa:
6b:c1:5a:36:86:4e:d5:b6:73:b3:2b:32:14:e4:a5:
61:1b:de:8d:8a:3a:7f:c6:7f:15:6c:ae:bb:94:8d:
8d:0b:f3:04:c7:7b:20:fe:2f:e5:21:ad:17:97:21:
e0:8f:9d:40:3f:e9:ed:d9:18:47:b8:aa:e7:c3:91:
60:34:e9:aa:21:51:f4:de:d8:c0:bb:4c:44:af:01:
20:0c:67:0e:a7:35:28:a8:ca:0c:73:67:34:c6:6e:
35:d4:68:8a:75:7c:29:c6:84:a3:69:7a:d6:d5:5d:
08:d9:a1:b9:3c:7a:1b:d4:fa:15:13:01:68:a9:05:
0b:ae:7d:ab:32:2a:9a:57:c6:b5:b0:cc:a3:02:08:
d3:84:9d:e1:20:33:48:0f:f3:02:b6:06:c7:15:9d:
6c:29:17:38:1a:21:51:1b:63:74:53:97:fa:25:8b:
69:9f:82:95:b4:4a:65:4c:f9:ad:6c:3e:70:a0:c7:
85:1c:11:b4:14:2d:f8:f8:38:b9:de:7e:62:ef:cd:
ad:ad:1e:07:56:cd:c0:41:58:29:35:17:f9:2d:18:
3e:7d:88:e4:c3:fd:f6:1c:2b:71:8a:71:2c:6a:d9:
2e:fe:94:e5:f2:e5:63:a3:b3:64:7c:d3:5f:f0:18:
7f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:BF:19:44:FA:32:C4:C8:FE:E0:EC:3B:58:B4:48:80:27:63:E0:2D
X509v3 Authority Key Identifier:
keyid:44:74:CF:3E:2F:A8:92:B5:FD:D3:F3:0D:C8:27:5E:E1:06:2E:1D:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RHTPPi-okrX90_MNyCde4QYuHQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/ML8ZRPoyxMj-4Ow7WLRIgCdj4C0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/RHTPPi-okrX90_MNyCde4QYuHQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.64.0/22
Signature Algorithm: sha256WithRSAEncryption
ba:0d:d5:8c:0c:f8:31:03:c1:0b:73:f4:ca:74:0f:98:9d:52:
b9:a1:47:bc:ac:3d:b8:3f:8e:cc:9a:cb:bb:1b:ee:0b:40:59:
6e:bf:f2:55:df:1f:80:ce:89:8e:1e:45:b0:22:4b:2d:4b:b2:
e3:3b:09:80:bf:cd:47:ee:a8:90:2b:11:3f:30:04:6a:12:cd:
cb:e9:1f:bf:91:4a:57:56:0f:08:ec:52:0e:af:cb:dd:65:b4:
35:68:e1:08:b7:28:2f:3d:0a:28:7e:80:56:cb:a5:5d:d2:ec:
52:3b:6c:b7:57:99:e1:55:2b:22:54:98:c6:46:31:1b:7e:56:
52:89:53:6f:02:94:c6:34:01:99:aa:63:8f:cc:8c:eb:27:48:
13:c6:11:42:b7:eb:6e:0e:36:5f:f4:26:f2:89:26:5c:86:23:
6e:30:f5:99:f5:45:1e:f3:50:55:f1:38:47:bc:25:69:5c:16:
8a:29:64:93:94:15:f3:cb:49:af:f4:a7:f4:28:08:b8:95:7c:
14:6b:ff:f4:9f:7d:f5:0b:68:16:31:98:f5:45:b7:e9:b2:59:
38:7f:c3:ce:5d:3c:49:d4:13:10:47:54:e2:ff:00:b3:ec:d8:
65:46:5a:e1:a6:25:38:86:bb:30:01:a2:87:90:b7:3d:a5:f5:
83:d2:39:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 13:02:44 2025 by rpki-client