Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/9d4203-2eee-41de-8d85-08bf22f64097/1/MkgmNw57sqsTbXVssEVVHrIwxnE.roa
File: MkgmNw57sqsTbXVssEVVHrIwxnE.roa (raw, json)
Hash identifier: Z5vjMyipD469Qc1QSOUIWfFBwT2/MlLQmdGSNOJrb+E=
Subject key identifier: 32:48:26:37:0E:7B:B2:AB:13:6D:75:6C:B0:45:55:1E:B2:30:C6:71
Certificate issuer: /CN=d9f9fa7b944f7e7c60d73ef10b776fc27995a4ed
Certificate serial: 019426D9CC647E34FF05276C0A2DBA338B8B
Authority key identifier: D9:F9:FA:7B:94:4F:7E:7C:60:D7:3E:F1:0B:77:6F:C2:79:95:A4:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fn6e5RPfnxg1z7xC3dvwnmVpO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/9d4203-2eee-41de-8d85-08bf22f64097/1/MkgmNw57sqsTbXVssEVVHrIwxnE.roa
Signing time: Thu 02 Jan 2025 11:49:55 +0000
ROA not before: Thu 02 Jan 2025 11:49:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59974
IP address blocks: 185.69.186.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:cc:64:7e:34:ff:05:27:6c:0a:2d:ba:33:8b:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9f9fa7b944f7e7c60d73ef10b776fc27995a4ed
Validity
Not Before: Jan 2 11:49:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=324826370e7bb2ab136d756cb045551eb230c671
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:01:fa:73:a1:c0:30:4c:a3:9e:a8:eb:37:29:
12:7c:90:6d:8c:65:25:6c:71:aa:92:a9:7e:c6:09:
8c:95:e2:61:c1:3c:78:2d:d7:b7:f2:e1:49:61:b3:
71:7b:c0:57:5b:47:d3:d0:21:b0:56:1c:b9:b0:98:
01:31:6c:22:44:92:3c:65:d2:a5:22:f3:43:a3:bf:
59:42:24:eb:f8:1f:23:30:32:d5:9e:95:cb:0a:48:
27:eb:58:64:af:19:15:30:8b:1a:a2:41:0c:0b:b8:
7c:2f:8f:37:0d:f0:9e:ef:6d:99:4d:aa:50:83:68:
38:12:e2:d9:e0:3d:42:57:6d:03:1d:7b:c2:0b:58:
c8:1f:41:7b:d4:10:99:a7:83:7d:e7:53:17:b2:bd:
db:e6:ed:d0:5d:9f:89:08:7a:5b:31:8b:c7:b2:08:
0f:3e:90:a8:19:38:0c:05:b7:43:2f:e5:50:37:39:
75:90:d5:6f:bb:bd:60:53:46:b5:36:0a:c5:80:88:
d4:15:84:73:1b:47:a7:4b:b0:a4:78:cf:ae:db:3e:
ac:ef:94:66:77:6f:4e:b3:80:2d:e4:38:cc:42:93:
48:65:9f:99:f8:9d:c7:59:c1:9a:6d:59:7f:05:be:
83:f9:1b:3c:1b:93:dc:b3:5d:d7:fd:a8:22:0b:48:
12:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:48:26:37:0E:7B:B2:AB:13:6D:75:6C:B0:45:55:1E:B2:30:C6:71
X509v3 Authority Key Identifier:
keyid:D9:F9:FA:7B:94:4F:7E:7C:60:D7:3E:F1:0B:77:6F:C2:79:95:A4:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fn6e5RPfnxg1z7xC3dvwnmVpO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9d4203-2eee-41de-8d85-08bf22f64097/1/MkgmNw57sqsTbXVssEVVHrIwxnE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9d4203-2eee-41de-8d85-08bf22f64097/1/2fn6e5RPfnxg1z7xC3dvwnmVpO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.69.186.0/24
Signature Algorithm: sha256WithRSAEncryption
d2:e8:fa:f7:65:11:fa:fc:df:2b:8f:5a:e1:08:7b:52:a6:bf:
98:79:0b:82:16:28:38:d1:eb:45:69:84:97:55:1c:23:41:0f:
03:78:45:8b:96:0f:ae:43:d1:e3:7e:0c:1f:a7:62:29:eb:93:
b8:21:45:ba:23:07:5c:4f:a1:52:d5:27:73:16:0d:12:91:5e:
f4:f5:a3:83:9b:f2:c5:bb:3e:e3:d7:ff:5b:6b:83:f2:4e:f7:
26:d9:3e:69:ad:b7:12:68:a7:3c:66:eb:f8:d9:87:21:a8:95:
08:4b:39:7b:2e:50:af:41:6c:70:34:e4:6c:5b:02:56:ff:6a:
27:39:4a:9f:b9:48:8a:38:b9:65:c5:90:56:69:72:16:79:b2:
b7:ed:f8:0c:b0:2e:ca:03:45:dc:b4:f0:99:73:9b:1b:6d:23:
1d:2f:18:2c:a4:08:f2:c0:6b:a8:e9:d8:75:e1:3f:67:fc:d5:
3b:43:c2:a5:da:43:9c:9f:eb:be:62:11:ab:d5:a4:6d:3e:83:
e5:2d:81:79:d5:f9:55:fe:c3:7a:a9:c4:a9:c4:91:5f:7e:7f:
a7:48:bc:29:e4:4b:d8:01:62:4e:a7:db:86:2b:af:70:0a:04:
42:a7:85:28:e4:46:b2:b7:22:3c:77:cb:3e:9f:f4:ad:55:b2:
16:a2:16:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:47 2025 by rpki-client on console.sobornost.net