Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/MxnFRwJmFw3H9pKkZeWdK5EluaA.roa
File: MxnFRwJmFw3H9pKkZeWdK5EluaA.roa (raw, json)
Hash identifier: /4BdfcwDrvCIqi4T11GSU+QWVrhInkiIc6kfChEW8jY=
Subject key identifier: 33:19:C5:47:02:66:17:0D:C7:F6:92:A4:65:E5:9D:2B:91:25:B9:A0
Certificate issuer: /CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Certificate serial: 01962A7347884419E36AA4150D3BF3C19E2C
Authority key identifier: 6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/MxnFRwJmFw3H9pKkZeWdK5EluaA.roa
Signing time: Sat 12 Apr 2025 14:41:59 +0000
ROA not before: Sat 12 Apr 2025 14:41:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 22427
IP address blocks: 185.65.62.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2a:73:47:88:44:19:e3:6a:a4:15:0d:3b:f3:c1:9e:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Validity
Not Before: Apr 12 14:41:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3319c5470266170dc7f692a465e59d2b9125b9a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:92:14:fe:5c:ec:97:44:54:8f:36:f0:89:f6:
11:53:0a:e9:47:7c:76:c8:ed:cf:38:0a:fc:f9:ce:
bf:2f:41:af:bb:d1:6b:6a:a2:12:49:8a:0c:73:71:
dd:d3:57:8a:d1:85:fd:64:c6:35:15:24:24:17:bd:
ff:00:9c:85:11:45:73:f8:da:37:87:41:8e:a7:b4:
57:e1:3f:b9:05:fb:03:39:3e:92:23:3a:af:10:fe:
8d:ab:8a:3d:3f:3f:57:eb:31:8b:58:0b:e6:03:05:
f4:f4:42:dd:8f:d2:d7:25:3a:13:95:de:2d:ed:1c:
8e:52:e5:03:8f:f5:ca:33:af:b2:4a:87:e8:43:be:
84:6b:21:d4:d3:dd:c3:a9:88:4f:0b:3c:8a:3c:a2:
d8:1f:f6:56:2a:c4:6c:32:24:c7:c0:d9:ff:64:4c:
ff:98:00:55:cc:be:85:d3:85:29:9a:83:71:34:50:
e7:1e:36:c6:64:63:e5:29:47:d7:9c:72:81:5e:85:
c6:61:c1:18:45:32:e2:07:2d:e7:0d:a6:ec:ab:ba:
da:86:35:21:f4:67:31:7d:15:d7:15:2a:c2:b9:97:
95:97:59:43:ea:f3:75:84:3f:db:c6:5b:f5:44:35:
80:32:92:b4:4f:83:95:e3:1a:f1:bd:01:5a:60:f8:
8c:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:19:C5:47:02:66:17:0D:C7:F6:92:A4:65:E5:9D:2B:91:25:B9:A0
X509v3 Authority Key Identifier:
keyid:6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/MxnFRwJmFw3H9pKkZeWdK5EluaA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/b3Xk6Utct0UXt7AVaAFdqebuzbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.62.0/24
Signature Algorithm: sha256WithRSAEncryption
63:15:5b:a7:c1:bc:27:4b:4b:4d:27:0d:81:44:70:57:7e:02:
f1:ac:05:30:5a:96:0f:2c:a4:70:31:bb:3b:cd:37:1c:b4:d9:
57:f5:d8:b4:1e:5e:1a:d7:ec:40:1b:d2:93:c3:10:0e:ad:fc:
76:68:75:e1:9d:de:53:e4:4e:70:54:09:23:03:5c:c2:e7:9a:
c4:33:47:7b:ed:55:5f:f4:a3:fd:5c:33:7a:74:f5:8e:c2:ec:
3e:40:39:23:67:29:27:2f:43:ed:68:01:28:e8:7e:5c:30:d9:
ef:86:61:a3:3f:49:d5:0a:9a:12:dc:c0:58:05:df:13:c5:4d:
9b:23:97:2b:fd:70:72:ef:db:75:1e:1a:b0:c8:f5:7c:74:e9:
06:d9:f1:c0:7c:d1:b9:98:27:51:a7:a5:1b:2f:0a:c2:87:f2:
10:c1:69:ab:6c:ec:89:d2:5b:5d:3e:1d:93:d1:09:71:84:d6:
f2:8a:60:1d:b6:77:7f:02:f2:c4:e2:b7:f9:e3:d6:cd:50:58:
b2:96:88:a8:39:c4:95:71:cb:07:c2:07:3a:f2:38:92:b2:9e:
63:c3:8c:85:0b:f9:48:c6:b4:1b:63:06:07:f1:9e:93:33:c9:
94:1a:ad:2e:9b:bc:02:ce:65:27:c5:15:2c:1f:d5:5d:49:d7:
88:2f:33:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:54 2025 by rpki-client on console.sobornost.net