Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/617778-9f31-475b-84fa-74c979a6536e/1/mrLaA1eR5ZA6ZP7iWY4b8XRMWTY.roa
File: mrLaA1eR5ZA6ZP7iWY4b8XRMWTY.roa (raw, json)
Hash identifier: jJecCTBKKFO9xnb082mcb8oh5M5FNk8lCFd2JS7Xlls=
Subject key identifier: 9A:B2:DA:03:57:91:E5:90:3A:64:FE:E2:59:8E:1B:F1:74:4C:59:36
Certificate issuer: /CN=68cc325c8ad9769a1b54da296305fe0c36573775
Certificate serial: 01941F8C9F1889C12AE940BA28395B2DE77E
Authority key identifier: 68:CC:32:5C:8A:D9:76:9A:1B:54:DA:29:63:05:FE:0C:36:57:37:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMwyXIrZdpobVNopYwX-DDZXN3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/617778-9f31-475b-84fa-74c979a6536e/1/mrLaA1eR5ZA6ZP7iWY4b8XRMWTY.roa
Signing time: Wed 01 Jan 2025 01:48:16 +0000
ROA not before: Wed 01 Jan 2025 01:48:16 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199883
IP address blocks: 217.61.112.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:9f:18:89:c1:2a:e9:40:ba:28:39:5b:2d:e7:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68cc325c8ad9769a1b54da296305fe0c36573775
Validity
Not Before: Jan 1 01:48:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9ab2da035791e5903a64fee2598e1bf1744c5936
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:d0:ce:e5:4c:f0:c9:30:52:69:72:40:64:a8:
38:4a:19:c9:ed:1c:0b:20:ed:05:8f:41:11:de:64:
28:2c:15:0d:56:df:3e:fd:4f:01:b7:09:bb:81:ea:
68:a1:5a:af:2e:a1:2e:ee:8b:b3:eb:d6:e7:d3:24:
57:f6:d9:52:64:b1:76:2e:ac:a1:7c:e6:a7:68:92:
b5:e6:1f:d6:63:5f:1a:3b:2e:01:81:a2:f2:58:be:
b7:8e:52:51:f5:97:4c:59:7c:36:58:d0:a5:c0:3a:
f7:89:60:2a:fe:50:99:f3:59:0b:3d:dc:8d:6a:33:
3e:5a:12:66:98:2d:5b:d6:0a:4b:d9:84:d0:19:1a:
82:10:19:08:61:04:36:ff:6b:d1:ac:ac:03:05:8f:
0b:ef:98:73:dc:56:0a:db:c7:f4:4f:a8:59:74:ae:
90:1b:9e:1f:15:fd:9a:f8:fc:43:72:fb:12:35:b0:
40:8d:cd:d0:33:da:eb:43:ec:1e:ed:d6:0c:ff:34:
3c:4d:ee:6a:4a:d1:e6:a8:7b:ed:77:e5:87:d5:66:
d3:ac:41:18:1b:a2:74:9b:95:99:80:5e:6e:ee:c0:
91:82:1f:45:f0:23:7c:25:cf:47:d7:be:0a:73:e0:
92:32:a9:3e:66:5b:79:ec:e0:41:ce:ea:21:36:51:
84:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:B2:DA:03:57:91:E5:90:3A:64:FE:E2:59:8E:1B:F1:74:4C:59:36
X509v3 Authority Key Identifier:
keyid:68:CC:32:5C:8A:D9:76:9A:1B:54:DA:29:63:05:FE:0C:36:57:37:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMwyXIrZdpobVNopYwX-DDZXN3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/617778-9f31-475b-84fa-74c979a6536e/1/mrLaA1eR5ZA6ZP7iWY4b8XRMWTY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/617778-9f31-475b-84fa-74c979a6536e/1/aMwyXIrZdpobVNopYwX-DDZXN3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.61.112.0/21
Signature Algorithm: sha256WithRSAEncryption
7a:5c:57:88:64:cf:0b:af:62:61:94:8e:2d:82:f5:27:71:56:
55:1c:c4:5e:49:b6:f9:17:e1:66:d2:0a:7e:3c:a6:f8:b1:6a:
9c:fc:91:3f:c3:5d:a9:67:29:a7:bc:9e:84:28:ce:7c:35:4c:
3b:75:68:bf:93:85:f0:d4:85:7e:7c:9e:13:7d:f9:25:d7:3a:
3b:91:65:b5:09:f3:e0:fc:78:a9:a9:a6:a2:b3:69:ff:f0:ec:
a1:22:13:b4:a1:e4:f7:8c:c0:0f:3f:7a:32:15:c4:62:e2:d7:
f6:78:ca:42:09:72:9c:91:e8:68:32:b8:04:d9:22:7a:93:40:
be:82:f5:19:7f:6c:aa:81:72:d5:ff:28:04:48:fd:67:05:bb:
5b:36:b1:51:20:e6:dd:ff:74:63:68:35:c2:61:19:ff:71:20:
e4:ea:9f:2a:4b:0b:5f:6c:df:f9:ef:8b:15:71:16:fd:9c:ea:
1b:f4:b1:e3:01:e3:7f:9a:3d:e4:e7:f7:32:ea:20:47:40:08:
c6:7c:10:b1:7b:70:56:3a:a1:c3:89:f9:6c:3b:29:6f:d9:7f:
e5:48:ea:bd:3a:1d:d3:58:75:71:d4:9e:13:47:1f:11:8d:64:
df:b4:a7:69:59:e4:5a:f5:57:2f:0d:1f:c6:4e:f0:74:92:c7:
14:42:29:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:52 2025 by rpki-client on console.sobornost.net