Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/mmsyAnMHt_dbYyNaAmRzOf1ER00.roa
File: mmsyAnMHt_dbYyNaAmRzOf1ER00.roa (raw, json)
Hash identifier: Z0B0gLnq6WYbQAuekKr8EymO3fzsvhfiIyL1pWQiz74=
Subject key identifier: 9A:6B:32:02:73:07:B7:F7:5B:63:23:5A:02:64:73:39:FD:44:47:4D
Certificate issuer: /CN=3e276ac51a132401db4cd741d866a54622a0d15c
Certificate serial: 0194221F9CE3B2C3E8596B1289A39059FC3B
Authority key identifier: 3E:27:6A:C5:1A:13:24:01:DB:4C:D7:41:D8:66:A5:46:22:A0:D1:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/mmsyAnMHt_dbYyNaAmRzOf1ER00.roa
Signing time: Wed 01 Jan 2025 13:48:04 +0000
ROA not before: Wed 01 Jan 2025 13:48:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206330
IP address blocks: 185.135.189.0/24 maxlen: 24
2a10:1646::/32 maxlen: 48
2a10:1647::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:9c:e3:b2:c3:e8:59:6b:12:89:a3:90:59:fc:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e276ac51a132401db4cd741d866a54622a0d15c
Validity
Not Before: Jan 1 13:48:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9a6b32027307b7f75b63235a02647339fd44474d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2b:0f:53:a7:59:c0:2a:6f:48:56:79:ca:31:
42:18:1e:51:1d:9e:5c:f1:55:2f:6a:59:e8:27:37:
24:14:97:4f:cb:5d:20:6e:3f:91:e2:91:28:3b:e0:
fd:fe:bf:f8:c0:05:51:cf:5a:27:1b:12:a1:5d:d5:
6f:a9:73:64:e8:d6:50:26:05:28:6c:5c:9c:8d:37:
9d:96:6f:f3:4c:c9:a6:da:7f:7d:c5:4a:b6:bf:87:
9c:a5:a4:8f:1a:78:73:34:6c:68:08:05:6d:8b:fc:
03:dc:76:2d:d1:15:19:e8:d3:d6:1d:02:65:fb:4f:
c5:d6:25:ce:2d:72:21:82:81:0a:92:0a:ee:75:db:
62:1c:97:2c:31:ac:99:cc:4a:b6:7e:f0:bf:e6:5b:
eb:41:57:73:7e:d4:9e:aa:8b:77:c2:cb:25:f0:6f:
8c:4f:ad:38:4b:3e:7e:cb:3a:37:51:87:6a:1a:86:
43:ce:0e:42:ab:2e:dd:23:eb:f8:8b:fe:99:e2:08:
ae:ad:c1:d2:75:b8:e0:70:29:1d:b4:3b:cc:00:91:
f6:9b:ba:96:6f:ae:a8:31:06:e5:6a:be:c6:de:23:
26:04:02:07:27:1f:a5:19:3a:76:d9:2f:69:ad:85:
df:6f:09:4a:22:75:e2:e0:c1:3d:28:26:22:b5:b0:
41:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:6B:32:02:73:07:B7:F7:5B:63:23:5A:02:64:73:39:FD:44:47:4D
X509v3 Authority Key Identifier:
keyid:3E:27:6A:C5:1A:13:24:01:DB:4C:D7:41:D8:66:A5:46:22:A0:D1:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/mmsyAnMHt_dbYyNaAmRzOf1ER00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.135.189.0/24
IPv6:
2a10:1646::/31
Signature Algorithm: sha256WithRSAEncryption
ad:21:b4:55:36:25:3d:5b:4f:10:3c:72:ce:eb:7b:d0:94:ff:
c4:b1:00:6c:7b:2f:e4:40:c3:87:a1:c9:63:b8:75:07:21:b8:
ab:af:1b:b8:ed:0d:ce:98:53:0c:60:63:61:24:67:f5:a9:14:
58:ed:e5:4f:cd:b7:8c:c5:f3:fe:2b:c6:6d:25:2d:81:c6:51:
5e:29:0e:7a:85:67:a7:94:1b:d7:dd:7a:2c:05:06:f5:9e:b9:
fd:cb:38:9a:d1:f3:11:c2:30:ab:a3:c0:15:5e:59:2d:d5:28:
36:ee:74:13:88:38:ba:0f:74:33:5a:e1:9b:66:f0:1f:0f:fc:
e0:be:95:b8:8a:cc:4c:de:63:91:b5:b5:e4:7a:5d:f4:09:9c:
ae:13:2e:5e:a4:a5:28:2a:49:c0:eb:53:cc:a5:07:b5:f6:57:
2e:e8:f6:d4:dd:43:d5:6e:46:b0:b9:14:f0:6a:6a:24:ad:6a:
a4:d5:78:7d:61:9e:8d:3f:e4:45:a0:bd:8f:12:44:37:8d:de:
d2:70:c5:4c:b3:69:04:95:65:5a:a9:c0:b8:71:f4:66:f3:5f:
30:bc:19:ec:47:78:d1:93:7b:a9:1a:00:30:de:96:d5:66:4b:
e0:90:a6:53:08:c1:e7:a3:ba:0f:ea:ba:86:1e:a9:81:a1:af:
d5:9d:08:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:34 2025 by rpki-client on console.sobornost.net