Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/mcxHeHhIMZCf0TyNU7z_yBt1UJ0.roa
File: mcxHeHhIMZCf0TyNU7z_yBt1UJ0.roa (raw, json)
Hash identifier: 65aIuxCFrIb4/R2AaigbhoClo0/Gz/8RmH5Sn1UJjUM=
Subject key identifier: 99:CC:47:78:78:48:31:90:9F:D1:3C:8D:53:BC:FF:C8:1B:75:50:9D
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 0189116DD5E8A9D9157FEABF0834B8D27FB6
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/mcxHeHhIMZCf0TyNU7z_yBt1UJ0.roa
Signing time: Sat 01 Jul 2023 12:29:18 +0000
ROA not before: Sat 01 Jul 2023 12:29:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208486
IP address blocks: 93.152.217.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:11:6d:d5:e8:a9:d9:15:7f:ea:bf:08:34:b8:d2:7f:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Jul 1 12:29:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=99cc4778784831909fd13c8d53bcffc81b75509d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c7:e6:4f:6b:9d:06:17:f2:c1:e4:db:d2:9c:
15:3a:ff:61:61:7e:6a:45:0a:79:33:f6:f0:99:4a:
da:ca:0e:32:c5:ca:46:33:e3:6d:83:e9:8e:b8:2c:
35:91:ba:95:f4:6c:93:51:a1:5f:4d:b8:d4:6e:10:
11:a0:86:0c:a3:03:11:cf:e6:bc:ea:ef:4f:db:43:
c7:1c:ba:fd:74:6a:78:0b:11:4e:f7:1b:c4:a6:c1:
17:cc:86:36:94:6a:26:f6:92:d8:f8:ef:05:f0:28:
d2:dd:41:23:08:73:09:a2:0f:40:93:24:05:18:97:
ed:f7:9d:f9:5e:dd:06:9f:5a:78:b7:72:d6:24:cb:
95:fd:b8:13:f1:2a:43:df:d9:f7:52:4f:cf:41:6a:
8a:6b:62:6e:b0:16:38:f0:a9:a9:89:92:72:54:b9:
4e:62:23:ab:6e:61:15:b3:0e:36:1d:58:99:60:22:
4a:37:64:15:af:38:74:fd:5c:af:8b:63:60:b8:5a:
57:04:07:06:7b:c3:1d:33:37:d9:15:5b:1c:8d:e6:
1d:1a:28:fd:10:74:35:0c:ce:91:ad:61:0a:f9:52:
7d:69:1a:7a:ae:1e:1e:d1:fe:65:2f:9f:36:32:66:
01:e4:f1:df:34:f1:fe:7b:b4:ab:55:4a:7b:16:db:
3a:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:CC:47:78:78:48:31:90:9F:D1:3C:8D:53:BC:FF:C8:1B:75:50:9D
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/mcxHeHhIMZCf0TyNU7z_yBt1UJ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.152.217.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:6c:60:67:42:b7:61:d1:8e:58:ab:13:60:c4:02:0b:be:be:
fd:02:e2:41:ed:af:b1:ec:43:0c:8a:fe:76:09:c8:3a:2d:ab:
77:cc:16:5c:6a:d8:3e:38:27:bc:48:a2:58:fd:e4:43:65:99:
d5:90:8a:e0:11:1d:56:3b:f6:e6:17:02:7c:f2:ed:be:fb:b9:
bb:bd:00:3a:b3:41:b2:09:dc:f3:25:4a:c8:aa:ad:81:20:1e:
ea:c0:39:22:1b:d4:ac:41:af:8d:9d:98:c1:f0:f3:e2:fb:37:
32:3d:44:db:81:fd:a8:de:2e:55:ff:e5:aa:6b:c7:35:75:7d:
ae:df:5b:41:90:21:b5:7d:a0:c8:ac:07:6b:4f:9d:9c:ef:f3:
4d:6f:8e:b8:33:f6:d9:79:c6:af:34:05:56:ce:a9:81:ca:b5:
23:38:cd:f8:3a:99:00:40:77:6d:cf:a9:e7:7b:b8:51:0b:d5:
aa:05:f7:0a:f8:b6:6f:22:51:e3:39:a8:f6:1e:1f:3a:c6:8d:
c7:1c:81:40:6f:90:f5:37:04:bd:71:0b:04:d1:f1:96:da:4a:
2e:c0:9b:d3:f3:f8:28:b9:03:36:ec:42:9f:c7:bb:e7:3b:2e:
73:4c:d0:f2:54:4e:54:ad:5c:6c:fb:46:a2:2f:f8:36:db:19:
b7:92:d3:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 23:46:24 2025 by rpki-client