Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/f92e2a-e1e4-487d-9acc-ed1f30cc1c57/1/mcMvNLDOLrmNQ78kKv9_JRA7DZE.roa
File: mcMvNLDOLrmNQ78kKv9_JRA7DZE.roa (raw, json)
Hash identifier: VPPZszck1h4O1z0bSD4PbxyUsa9F/mGv1ZkFIvAMZag=
Subject key identifier: 99:C3:2F:34:B0:CE:2E:B9:8D:43:BF:24:2A:FF:7F:25:10:3B:0D:91
Certificate issuer: /CN=8777b5b36f66e13c4388c9934da507856515d073
Certificate serial: 019422FBA2DA706E5736166F1928F368BBD8
Authority key identifier: 87:77:B5:B3:6F:66:E1:3C:43:88:C9:93:4D:A5:07:85:65:15:D0:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3e1s29m4TxDiMmTTaUHhWUV0HM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/f92e2a-e1e4-487d-9acc-ed1f30cc1c57/1/mcMvNLDOLrmNQ78kKv9_JRA7DZE.roa
Signing time: Wed 01 Jan 2025 17:48:23 +0000
ROA not before: Wed 01 Jan 2025 17:48:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34144
IP address blocks: 85.88.39.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:a2:da:70:6e:57:36:16:6f:19:28:f3:68:bb:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8777b5b36f66e13c4388c9934da507856515d073
Validity
Not Before: Jan 1 17:48:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=99c32f34b0ce2eb98d43bf242aff7f25103b0d91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:15:a0:85:3d:05:a2:16:04:2a:69:4c:15:b5:
5a:18:16:b8:f8:1a:b3:eb:f4:bb:1a:1f:41:d2:bc:
8b:4a:6b:7f:d9:b7:20:2c:31:6f:1e:62:86:a7:e6:
78:4f:40:c1:56:0f:36:2f:4c:df:fd:c8:58:15:2a:
bd:7a:6e:27:97:cc:e6:23:3b:1e:99:0c:20:a7:56:
12:78:64:a2:a8:d9:3b:57:62:b6:a4:f4:43:d6:b0:
ea:c3:c9:42:4d:9d:44:9a:6f:7f:d1:df:f9:90:9e:
84:f2:45:11:2e:c4:02:26:9b:b4:5f:c4:40:88:45:
da:d8:c1:bb:81:83:7c:be:42:c8:51:43:c6:99:2a:
c4:58:f5:bc:4f:7a:30:4d:ec:a6:48:ff:33:6b:26:
b1:29:1d:ec:2c:5a:5c:c2:d5:d1:a9:58:5f:ab:f1:
44:fe:30:18:86:96:66:94:6c:7e:7c:fa:af:65:53:
48:23:53:04:43:f7:b0:5a:c2:98:53:b8:a2:2e:ff:
f6:2a:f4:64:40:d7:b3:e0:de:31:62:8b:7b:39:37:
7c:a3:0c:22:05:ef:be:ad:e7:27:46:0f:6a:24:98:
6e:93:79:d9:cc:c7:64:fa:a3:36:3d:57:92:04:f3:
4c:d4:ef:52:29:ec:b0:b3:e3:19:d0:df:59:24:c2:
4a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:C3:2F:34:B0:CE:2E:B9:8D:43:BF:24:2A:FF:7F:25:10:3B:0D:91
X509v3 Authority Key Identifier:
keyid:87:77:B5:B3:6F:66:E1:3C:43:88:C9:93:4D:A5:07:85:65:15:D0:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3e1s29m4TxDiMmTTaUHhWUV0HM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/f92e2a-e1e4-487d-9acc-ed1f30cc1c57/1/mcMvNLDOLrmNQ78kKv9_JRA7DZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/f92e2a-e1e4-487d-9acc-ed1f30cc1c57/1/h3e1s29m4TxDiMmTTaUHhWUV0HM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.88.39.0/24
Signature Algorithm: sha256WithRSAEncryption
23:b1:98:1b:20:d0:0b:7f:2d:e3:27:6b:f8:1b:fa:d9:f3:38:
c1:86:27:44:d8:ba:d2:32:63:3a:b0:df:be:e3:66:b6:e5:7d:
65:30:f1:26:9d:f8:23:c3:1d:07:2c:18:1a:f6:9e:b6:08:22:
d1:d1:29:7d:b5:eb:0c:cd:05:d1:cc:13:31:06:dc:7b:8c:3d:
60:5f:56:f2:4c:f8:99:07:be:13:66:82:42:ae:e9:0f:35:da:
15:8a:cf:81:fb:0e:4b:17:da:69:97:94:4c:53:57:bd:4c:e4:
45:8f:b6:61:0d:56:7b:39:67:5d:e6:61:92:c2:1e:13:27:38:
ea:94:a7:09:bd:00:45:b9:87:73:52:d0:4f:09:0b:5d:27:c6:
ed:c0:41:da:56:64:ff:f0:48:5d:22:a6:1a:f3:a6:cc:87:12:
7a:e3:87:5e:ee:cc:de:e5:0f:fc:c7:41:d4:c5:c5:c4:7e:d4:
c0:c2:7b:c8:62:a9:b1:ba:f1:2e:e5:e4:4b:68:bd:6e:02:00:
25:61:96:44:db:1f:cc:10:c4:a0:9a:4b:f2:6f:ad:d6:d7:c3:
9d:a8:8c:9b:be:11:59:49:71:0f:9a:6b:6e:de:57:13:48:fc:
0b:5c:d6:0c:7a:2c:cc:2f:91:b0:07:20:55:b1:80:a4:cd:3d:
c8:78:1c:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:34 2025 by rpki-client on console.sobornost.net