Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/a47475-179b-477f-b554-29356341c5fd/1/Mk8AMLQRC0TMSZEM9wRPKQe_rUI.roa
File: Mk8AMLQRC0TMSZEM9wRPKQe_rUI.roa (raw, json)
Hash identifier: kj/bATPWc6gsPOSTnqsvTyx2Cven+aKMOotd9KFucsg=
Subject key identifier: 32:4F:00:30:B4:11:0B:44:CC:49:91:0C:F7:04:4F:29:07:BF:AD:42
Certificate issuer: /CN=2928db241541d6b6a6490004060aa71ad6ec189c
Certificate serial: 01941F8C47511898FDAB3004D68EB522E682
Authority key identifier: 29:28:DB:24:15:41:D6:B6:A6:49:00:04:06:0A:A7:1A:D6:EC:18:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KSjbJBVB1ramSQAEBgqnGtbsGJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/a47475-179b-477f-b554-29356341c5fd/1/Mk8AMLQRC0TMSZEM9wRPKQe_rUI.roa
Signing time: Wed 01 Jan 2025 01:47:54 +0000
ROA not before: Wed 01 Jan 2025 01:47:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60283
IP address blocks: 185.243.84.0/22 maxlen: 22
185.243.84.0/23 maxlen: 23
185.243.86.0/23 maxlen: 23
185.243.86.0/24 maxlen: 24
185.243.87.0/24 maxlen: 24
193.200.250.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:47:51:18:98:fd:ab:30:04:d6:8e:b5:22:e6:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2928db241541d6b6a6490004060aa71ad6ec189c
Validity
Not Before: Jan 1 01:47:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=324f0030b4110b44cc49910cf7044f2907bfad42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:5e:b4:72:ed:9f:df:08:96:ab:ef:de:b6:cb:
5d:e4:ab:5b:d9:f0:c8:68:5e:dd:99:8c:29:12:95:
12:ce:91:74:f7:b5:bd:36:ee:83:ba:cb:b7:9e:39:
fc:84:e7:02:82:c4:5a:6b:42:52:9e:f4:26:0b:b5:
6c:7b:1d:1f:f3:b5:81:25:91:ea:21:1f:df:b7:4a:
5c:7d:1a:31:83:db:10:a8:8c:50:94:a6:a1:7c:9e:
98:7f:e5:30:ce:9a:c9:96:9d:5d:ed:dc:c8:a2:6d:
a7:8a:71:a0:92:80:81:a7:85:be:cf:e5:c0:a3:b3:
dc:52:cb:fe:fb:ad:aa:d9:b8:ee:b4:58:52:24:ce:
f7:e8:30:58:a6:9f:fe:a9:4b:1b:96:89:c7:0f:70:
14:c5:23:9c:86:66:fc:9f:fb:5f:12:bd:1d:ed:61:
52:68:73:33:df:40:40:f8:11:26:aa:84:de:cb:94:
3b:9f:47:67:63:36:59:69:cf:92:fd:65:a6:fb:57:
14:a8:a9:71:56:5b:9a:19:38:25:53:78:58:4b:5e:
c8:fc:9e:d0:1e:16:09:97:9f:26:77:38:6c:2a:2f:
f7:6f:74:bf:88:40:2f:2a:4d:dc:df:51:66:37:e4:
04:06:74:c4:76:ec:fb:b7:57:31:a6:1c:53:17:9f:
e6:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:4F:00:30:B4:11:0B:44:CC:49:91:0C:F7:04:4F:29:07:BF:AD:42
X509v3 Authority Key Identifier:
keyid:29:28:DB:24:15:41:D6:B6:A6:49:00:04:06:0A:A7:1A:D6:EC:18:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KSjbJBVB1ramSQAEBgqnGtbsGJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/a47475-179b-477f-b554-29356341c5fd/1/Mk8AMLQRC0TMSZEM9wRPKQe_rUI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/a47475-179b-477f-b554-29356341c5fd/1/KSjbJBVB1ramSQAEBgqnGtbsGJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.84.0/22
193.200.250.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:63:86:8e:c4:b9:a4:6e:d0:2c:d3:9c:0e:7e:3e:83:61:ad:
f4:91:ed:d6:9d:ea:cc:b3:d0:b1:9a:7b:6e:ab:dd:90:41:0a:
41:fb:9e:5f:0c:d6:69:e5:e9:64:b2:00:d9:3a:60:e7:63:75:
f1:a0:b1:ae:6a:59:78:80:33:aa:e0:03:09:64:aa:db:df:19:
6a:3c:39:1d:50:5a:4c:08:d0:d4:6f:f7:65:39:6d:b1:07:93:
44:62:2f:dd:a0:78:70:7c:8a:fa:bf:d7:d5:09:4a:98:18:c0:
76:88:f7:f0:d5:fa:58:88:b2:be:d2:96:bc:7f:4a:16:aa:7c:
2c:15:f8:bb:94:5d:79:30:55:a6:cf:a4:8a:f8:2a:a1:4e:1e:
0f:cb:7a:65:75:c2:ec:70:27:80:77:4e:f4:e6:66:60:c3:a4:
cc:12:31:29:5e:4a:0e:d2:cd:6a:7b:55:41:a7:32:5d:62:65:
ef:43:d9:58:64:ef:b8:9e:17:f3:36:0c:2d:b9:93:1f:12:af:
cb:c3:4d:c1:65:dd:06:84:ea:a2:85:05:94:cc:05:0c:4f:a2:
b9:07:69:2c:3d:c5:80:50:b2:86:77:02:9a:af:3b:30:ad:28:
f7:07:5d:ae:45:62:57:71:bb:31:a5:39:46:08:80:32:a3:23:
68:de:43:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:18 2025 by rpki-client on console.sobornost.net