Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/5f0f06-56f4-41a5-889a-b15b3fbc04a6/1/MPfjjHiW5RCCQLGoqV4SDUyXeMs.roa
File: MPfjjHiW5RCCQLGoqV4SDUyXeMs.roa (raw, json)
Hash identifier: Y2fZJZKn10InnxGKnVnqAmc8EguVTfd+z1YpmsbQgEo=
Subject key identifier: 30:F7:E3:8C:78:96:E5:10:82:40:B1:A8:A9:5E:12:0D:4C:97:78:CB
Certificate issuer: /CN=6cf96a7c01d62e37acecf0786f64978905121647
Certificate serial: 019424458CA7FC8D8EEE9A98ABC10AC50B8B
Authority key identifier: 6C:F9:6A:7C:01:D6:2E:37:AC:EC:F0:78:6F:64:97:89:05:12:16:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bPlqfAHWLjes7PB4b2SXiQUSFkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/5f0f06-56f4-41a5-889a-b15b3fbc04a6/1/MPfjjHiW5RCCQLGoqV4SDUyXeMs.roa
Signing time: Wed 01 Jan 2025 23:48:45 +0000
ROA not before: Wed 01 Jan 2025 23:48:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208561
IP address blocks: 185.117.132.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:8c:a7:fc:8d:8e:ee:9a:98:ab:c1:0a:c5:0b:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cf96a7c01d62e37acecf0786f64978905121647
Validity
Not Before: Jan 1 23:48:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=30f7e38c7896e5108240b1a8a95e120d4c9778cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:e5:74:5a:17:ab:78:d2:c7:55:7a:7d:3b:6a:
06:9a:0a:a2:12:af:f7:67:e2:c9:ec:4e:02:4d:a7:
23:a9:d7:f8:42:21:b9:7a:aa:66:86:5e:ce:1f:26:
e9:eb:2e:6b:d4:e1:6e:a0:b4:6a:14:8a:e1:7a:04:
22:e7:6f:b0:e5:9d:7c:85:a8:66:f4:d7:5d:ea:de:
1c:fe:c1:3f:6c:b5:4c:f0:ef:3a:ca:0c:7f:c8:4f:
df:96:76:63:ad:7d:f7:f2:da:2b:10:8c:7c:79:22:
38:f0:3d:37:5e:38:18:37:93:63:f6:c6:6f:a3:d9:
2f:a8:eb:3f:76:6b:5c:51:f3:f0:7f:42:2b:07:8c:
32:61:ea:f3:e4:80:f9:8f:4b:45:b2:ea:09:6d:84:
64:e5:db:46:41:cb:14:7d:99:70:eb:eb:f6:41:fd:
be:af:41:c4:b8:7b:a7:97:61:32:6d:55:d4:13:51:
da:59:5f:d1:61:19:1d:58:6d:b5:ba:fa:6b:73:00:
07:67:81:f5:8a:6f:a1:5c:e5:00:aa:4d:68:c0:c2:
e6:57:10:8a:4f:45:12:6a:ce:d7:00:48:69:14:f6:
57:be:91:45:1b:34:b5:fc:b8:b2:01:1f:a6:a1:97:
3d:65:c7:b1:f7:16:b5:1f:0a:1b:3d:5c:d9:6b:08:
a0:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:F7:E3:8C:78:96:E5:10:82:40:B1:A8:A9:5E:12:0D:4C:97:78:CB
X509v3 Authority Key Identifier:
keyid:6C:F9:6A:7C:01:D6:2E:37:AC:EC:F0:78:6F:64:97:89:05:12:16:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bPlqfAHWLjes7PB4b2SXiQUSFkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/5f0f06-56f4-41a5-889a-b15b3fbc04a6/1/MPfjjHiW5RCCQLGoqV4SDUyXeMs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/5f0f06-56f4-41a5-889a-b15b3fbc04a6/1/bPlqfAHWLjes7PB4b2SXiQUSFkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.132.0/24
Signature Algorithm: sha256WithRSAEncryption
74:fb:5d:9e:e1:62:23:02:4f:4e:5d:64:2a:44:c2:36:bd:f1:
0e:d7:aa:56:00:90:e2:e6:d2:ae:39:0f:29:89:ec:f7:f8:b9:
7d:1a:86:44:ba:f4:f6:b9:64:f2:0c:f7:d6:e9:dc:f9:ec:13:
e7:97:3d:07:96:d9:86:ee:fd:2c:83:02:23:e0:e7:2f:68:c3:
99:45:75:fc:a6:ba:d7:30:36:ce:0a:28:4a:a0:ff:28:3e:b7:
36:d6:b0:20:f4:8d:fb:18:53:50:bf:2e:23:fa:bd:d0:08:13:
c1:2d:de:01:ec:ed:7d:19:5d:eb:d7:3d:12:8f:7d:86:d4:64:
1b:d2:f8:4b:cf:8f:ac:d5:58:cf:96:37:f2:97:67:cc:d1:1b:
fb:68:67:52:a5:2b:e7:20:89:fc:32:f0:33:b8:30:e8:93:1e:
41:ec:2a:ee:2e:1c:e3:d4:e6:52:ee:fa:64:d0:0f:b1:f6:a0:
6b:64:2b:76:4d:63:57:82:bc:e2:6f:fa:69:3f:ee:3a:41:4b:
32:07:d2:ab:d2:34:83:e9:48:20:f4:79:17:a3:5b:b0:4c:29:
83:dd:fe:a0:47:1b:c5:d4:c1:97:03:5f:14:6a:72:ac:ea:e3:
4b:18:a6:14:8a:d7:58:2e:4e:04:79:78:3d:66:9c:c7:45:7e:
c6:ad:78:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:50 2025 by rpki-client on console.sobornost.net