Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/mclNf4bSFt9zruWTpd4m4MEyVzM.roa
File: mclNf4bSFt9zruWTpd4m4MEyVzM.roa (raw, json)
Hash identifier: XlAEFr1TWS3BT/lafylN5Pl3NVyaBtZCZ/ZvLEzRc/k=
Subject key identifier: 99:C9:4D:7F:86:D2:16:DF:73:AE:E5:93:A5:DE:26:E0:C1:32:57:33
Certificate issuer: /CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Certificate serial: 01942444F47F1B8850F5A2EF2166E5F872AB
Authority key identifier: BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/mclNf4bSFt9zruWTpd4m4MEyVzM.roa
Signing time: Wed 01 Jan 2025 23:48:06 +0000
ROA not before: Wed 01 Jan 2025 23:48:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197889
IP address blocks: 195.184.4.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:f4:7f:1b:88:50:f5:a2:ef:21:66:e5:f8:72:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Validity
Not Before: Jan 1 23:48:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=99c94d7f86d216df73aee593a5de26e0c1325733
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:28:64:2d:2f:1e:36:bf:a9:bc:44:64:62:4f:
55:34:3c:2c:4a:5d:49:1d:e4:7d:de:49:5b:e2:9d:
f0:e9:1e:d2:b2:79:07:a5:ff:b0:72:3f:ca:f4:39:
df:95:43:18:01:ac:ab:ad:f6:d3:bd:04:69:e9:9e:
72:d1:9d:55:69:e3:c3:b2:02:62:a9:20:cf:2a:66:
f0:b6:21:9e:07:1d:99:aa:64:a7:6d:d9:db:06:1e:
67:dc:ab:90:6d:34:0d:03:23:11:b5:89:87:9d:ac:
34:a6:b9:36:7a:4b:69:5c:2c:96:53:38:86:ee:8f:
e5:2b:a2:77:ed:ba:97:14:31:e4:03:b6:3f:2d:07:
95:43:88:96:8f:81:12:87:1d:ea:01:9c:c8:1c:50:
cf:42:3b:63:cf:e3:ed:7f:a7:98:9e:30:4b:a2:92:
9d:01:f1:a2:77:b0:fb:8d:fb:18:03:28:e6:a6:c3:
ec:c5:e7:51:9b:fe:7b:c0:5f:60:ef:76:2a:52:e2:
67:c4:88:91:0d:6c:d5:c2:44:76:4b:fd:d1:88:06:
e8:6a:cd:ef:82:be:ac:4e:7a:2b:56:94:25:ce:60:
fd:a0:7b:b3:ed:3a:a9:f2:d3:0c:3d:ad:14:8a:eb:
4c:e4:b5:43:62:c0:d7:86:e3:b2:d1:5f:11:a5:7b:
e1:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:C9:4D:7F:86:D2:16:DF:73:AE:E5:93:A5:DE:26:E0:C1:32:57:33
X509v3 Authority Key Identifier:
keyid:BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/mclNf4bSFt9zruWTpd4m4MEyVzM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.184.4.0/24
Signature Algorithm: sha256WithRSAEncryption
30:77:9d:4f:b9:27:e0:97:2a:e3:60:6b:cb:b3:88:4d:da:bb:
11:cb:d8:0e:c5:a1:18:74:67:ae:4f:53:90:bb:6b:0d:f5:3c:
d3:e7:55:41:57:d3:02:b1:81:be:7d:78:eb:8e:3d:40:1c:06:
ea:74:1b:a2:b4:da:89:9f:89:74:02:71:26:77:89:5d:c0:d4:
b3:41:97:18:55:ce:52:f6:54:51:11:cc:3b:c4:67:e0:63:ad:
03:af:48:e5:e0:50:e4:80:00:11:17:93:4b:1a:99:b5:7b:20:
c1:f4:60:6a:4a:08:8d:d9:77:f6:c6:71:a9:5b:4c:a1:ec:66:
03:b8:24:9a:1d:b0:e2:ad:1b:07:60:e9:90:72:20:88:cb:90:
b3:31:5e:54:11:7f:55:7e:f1:ca:b8:31:a7:40:76:12:0d:e4:
92:59:19:25:67:a7:89:9d:48:16:4a:46:2d:dd:7e:a1:d5:13:
74:2a:f8:f3:4f:4f:91:39:e4:13:bd:4f:ca:53:20:d5:a0:a7:
00:88:a4:38:90:65:84:de:78:53:8c:ec:b6:78:c4:aa:33:28:
ba:fb:c0:31:21:8b:95:66:49:f3:c2:fb:c7:ce:01:cd:9b:9a:
37:ac:c1:27:fd:d9:e9:ad:4d:e4:22:40:2b:54:52:e3:78:4e:
bc:e8:59:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:22 2025 by rpki-client on console.sobornost.net