Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/0b1815-53d7-456d-9fb4-670308d1ec9d/1/mJRbgDWTWOF5d-waA4kjPdUwfKM.roa
File: mJRbgDWTWOF5d-waA4kjPdUwfKM.roa (raw, json)
Hash identifier: Cjg8Drs7NcYUITHcRSLo1PVz8MlOvWaOvbO+s0BbSe0=
Subject key identifier: 98:94:5B:80:35:93:58:E1:79:77:EC:1A:03:89:23:3D:D5:30:7C:A3
Certificate issuer: /CN=4364fe73419bc86d5f2e72b414b6b4d4379d5bf5
Certificate serial: 019427B5C601DE7B392DA05A83D1A0529AC8
Authority key identifier: 43:64:FE:73:41:9B:C8:6D:5F:2E:72:B4:14:B6:B4:D4:37:9D:5B:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q2T-c0GbyG1fLnK0FLa01DedW_U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/0b1815-53d7-456d-9fb4-670308d1ec9d/1/mJRbgDWTWOF5d-waA4kjPdUwfKM.roa
Signing time: Thu 02 Jan 2025 15:50:11 +0000
ROA not before: Thu 02 Jan 2025 15:50:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49981
IP address blocks: 185.172.108.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:c6:01:de:7b:39:2d:a0:5a:83:d1:a0:52:9a:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4364fe73419bc86d5f2e72b414b6b4d4379d5bf5
Validity
Not Before: Jan 2 15:50:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=98945b80359358e17977ec1a0389233dd5307ca3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6f:43:de:82:27:4c:78:a6:ee:de:0b:1b:7e:
cf:52:55:c2:c6:fe:82:69:a1:50:87:d0:1e:5c:79:
9c:11:f7:48:2e:44:dc:da:7c:26:23:0d:a5:bd:ff:
16:04:1f:a5:b2:42:93:bd:d7:b7:64:51:68:8e:db:
9c:dc:57:18:08:ee:03:f6:73:f6:d6:0c:7d:ea:80:
3f:60:9d:86:45:85:fc:54:c8:3a:44:5c:1b:b7:77:
59:00:df:39:c0:a4:34:0f:5a:32:ca:13:a7:37:5f:
8b:e1:cd:0e:42:bf:94:2f:3c:d4:a8:a4:4d:7f:08:
1a:70:8e:78:c6:2d:bb:05:77:1c:db:ac:bd:cf:26:
b7:27:8e:31:d3:9b:23:dd:31:5c:e4:da:d9:07:6f:
59:37:62:ba:12:af:50:28:6c:71:81:a5:87:b3:45:
cf:53:6e:87:19:35:20:67:83:36:7e:89:83:cd:87:
6a:9d:1e:00:69:e4:4f:0a:03:d0:70:87:3e:ae:c0:
0f:11:2f:56:29:3d:fa:33:54:f0:d8:ca:9a:6c:99:
6d:64:7b:ba:50:95:df:33:f2:ac:50:65:c2:35:95:
a4:0c:5b:1e:f0:f9:77:fc:f6:60:df:31:46:82:2e:
14:13:5c:67:75:9d:67:e9:b7:c6:55:3e:fb:ce:e3:
05:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:94:5B:80:35:93:58:E1:79:77:EC:1A:03:89:23:3D:D5:30:7C:A3
X509v3 Authority Key Identifier:
keyid:43:64:FE:73:41:9B:C8:6D:5F:2E:72:B4:14:B6:B4:D4:37:9D:5B:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q2T-c0GbyG1fLnK0FLa01DedW_U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/0b1815-53d7-456d-9fb4-670308d1ec9d/1/mJRbgDWTWOF5d-waA4kjPdUwfKM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/0b1815-53d7-456d-9fb4-670308d1ec9d/1/Q2T-c0GbyG1fLnK0FLa01DedW_U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.108.0/24
Signature Algorithm: sha256WithRSAEncryption
02:1b:7a:ce:81:6e:15:70:e4:37:ba:db:75:a1:9a:7a:d4:08:
0e:cc:d3:d2:aa:bc:42:02:31:72:65:ba:25:5a:5e:a8:54:6a:
88:7f:68:76:a2:33:50:c9:cb:ae:3c:c0:65:d7:00:d2:11:49:
28:2b:cb:b4:98:7c:7b:59:0b:0a:a8:4e:a7:f1:1e:03:3d:0e:
66:fa:41:7a:53:54:7c:ce:c9:ed:f0:51:6e:2d:84:13:f7:35:
d5:be:fd:d9:78:d9:75:67:2d:55:79:4e:d0:95:76:01:a5:70:
51:10:90:aa:c9:b5:5f:bf:52:a9:89:59:43:24:26:47:74:57:
c0:51:4d:33:c7:73:b0:ad:a5:4d:45:ac:fd:09:c4:67:8e:d5:
30:cc:da:a8:bf:47:94:5d:b0:8f:59:37:54:d9:c5:d0:40:09:
40:b2:41:ea:d4:8a:6a:6e:fd:ac:d2:53:72:29:04:aa:a0:a3:
99:3d:c9:a5:c9:3e:99:1d:60:cb:b2:12:6d:79:05:ec:65:dc:
37:c7:b6:be:e9:c3:c9:69:10:4b:db:87:93:79:6e:09:69:64:
ff:7b:c9:0e:17:17:c3:61:52:76:ed:e5:f7:ba:df:43:91:3b:
a3:bb:b2:f6:31:e5:64:8d:51:14:e2:c9:b7:23:d3:f7:60:7c:
a9:62:67:48
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQntcYB3ns5LaBag9GgUprIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzNjRmZTczNDE5YmM4NmQ1ZjJlNzJiNDE0YjZiNGQ0Mzc5
ZDViZjUwHhcNMjUwMTAyMTU1MDExWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ODk0NWI4MDM1OTM1OGUxNzk3N2VjMWEwMzg5MjMzZGQ1MzA3Y2EzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs29D3oInTHim7t4LG37PUlXCxv6C
aaFQh9AeXHmcEfdILkTc2nwmIw2lvf8WBB+lskKTvde3ZFFojtuc3FcYCO4D9nP2
1gx96oA/YJ2GRYX8VMg6RFwbt3dZAN85wKQ0D1oyyhOnN1+L4c0OQr+ULzzUqKRN
fwgacI54xi27BXcc26y9zya3J44x05sj3TFc5NrZB29ZN2K6Eq9QKGxxgaWHs0XP
U26HGTUgZ4M2fomDzYdqnR4AaeRPCgPQcIc+rsAPES9WKT36M1Tw2MqabJltZHu6
UJXfM/KsUGXCNZWkDFse8Pl3/PZg3zFGgi4UE1xndZ1n6bfGVT77zuMF1QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJiUW4A1k1jheXfsGgOJIz3VMHyjMB8GA1UdIwQY
MBaAFENk/nNBm8htXy5ytBS2tNQ3nVv1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUTJULWMwR2J5RzFmTG5LMEZMYTAxRGVkV19VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy8wYjE4MTUtNTNkNy00NTZkLTlmYjQt
NjcwMzA4ZDFlYzlkLzEvbUpSYmdEV1RXT0Y1ZC13YUE0a2pQZFV3ZktNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy8wYjE4MTUtNTNkNy00NTZkLTlmYjQtNjcwMzA4ZDFlYzlk
LzEvUTJULWMwR2J5RzFmTG5LMEZMYTAxRGVkV19VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuaxsMA0G
CSqGSIb3DQEBCwUAA4IBAQACG3rOgW4VcOQ3utt1oZp61AgOzNPSqrxCAjFyZbol
Wl6oVGqIf2h2ojNQycuuPMBl1wDSEUkoK8u0mHx7WQsKqE6n8R4DPQ5m+kF6U1R8
zsnt8FFuLYQT9zXVvv3ZeNl1Zy1VeU7QlXYBpXBREJCqybVfv1KpiVlDJCZHdFfA
UU0zx3OwraVNRaz9CcRnjtUwzNqov0eUXbCPWTdU2cXQQAlAskHq1Ipqbv2s0lNy
KQSqoKOZPcmlyT6ZHWDLshJteQXsZdw3x7a+6cPJaRBL24eTeW4JaWT/e8kOFxfD
YVJ27eX3ut9DkTuju7L2MeVkjVEU4sm3I9P3YHypYmdI
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:41:18 2025 by rpki-client