Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/914d39-3020-4b79-ad26-d87affb8bc61/1/MJIbLhSmNC8a874fA2nbq57HEtg.roa
File: MJIbLhSmNC8a874fA2nbq57HEtg.roa (raw, json)
Hash identifier: WaRYM9CvEVYhUP+ZoiflR5McAGOB5Og+0p9cf3/LEak=
Subject key identifier: 30:92:1B:2E:14:A6:34:2F:1A:F3:BE:1F:03:69:DB:AB:9E:C7:12:D8
Certificate issuer: /CN=4b405caab34bbfde6b8ee66c600860c6ce96f32b
Certificate serial: 0194221FF69A72CE50404825561DA94D3A77
Authority key identifier: 4B:40:5C:AA:B3:4B:BF:DE:6B:8E:E6:6C:60:08:60:C6:CE:96:F3:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S0BcqrNLv95rjuZsYAhgxs6W8ys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/914d39-3020-4b79-ad26-d87affb8bc61/1/MJIbLhSmNC8a874fA2nbq57HEtg.roa
Signing time: Wed 01 Jan 2025 13:48:27 +0000
ROA not before: Wed 01 Jan 2025 13:48:27 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 31129
IP address blocks: 212.106.143.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:f6:9a:72:ce:50:40:48:25:56:1d:a9:4d:3a:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b405caab34bbfde6b8ee66c600860c6ce96f32b
Validity
Not Before: Jan 1 13:48:27 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=30921b2e14a6342f1af3be1f0369dbab9ec712d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c8:07:0a:8e:1c:51:e0:28:af:61:5d:bb:60:
82:23:12:9c:b8:e9:66:39:fb:c7:22:7a:c8:9b:9c:
c9:67:f3:d8:3c:19:50:a5:ce:b5:9e:00:70:97:23:
ab:7b:ea:c2:b8:33:1b:16:a2:f6:6a:51:53:72:b7:
77:9c:a3:a5:4a:4e:ef:cb:07:6f:e0:61:22:98:11:
e2:a7:d3:bc:cc:e5:43:4a:26:2b:8a:0b:91:15:bd:
16:f2:37:2e:42:9f:e8:ec:c3:11:5d:fe:39:d7:36:
17:78:42:96:93:56:db:9e:88:fd:04:03:2d:73:ec:
c2:e6:2c:a7:fe:82:07:a4:01:0e:fe:d4:21:a0:94:
39:b0:72:c5:71:f0:43:88:69:f6:05:4b:85:c8:7e:
b1:9f:60:86:64:04:f2:dd:e1:a4:f0:60:63:7e:31:
c6:cc:81:aa:b8:4e:b9:08:dc:99:dd:c0:e5:83:ce:
cb:7e:fd:bb:ac:91:a4:88:b2:c8:76:8e:f7:bf:44:
f7:68:cd:6d:97:c5:59:a3:8a:f4:52:38:46:c4:81:
97:98:b9:7c:23:0b:b8:4c:a6:fc:6d:37:2f:55:82:
d8:a7:76:31:ea:3c:02:3a:e0:c3:d4:81:17:71:a6:
b5:26:40:b7:24:41:d1:33:6a:e2:d8:c4:53:62:d8:
9d:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:92:1B:2E:14:A6:34:2F:1A:F3:BE:1F:03:69:DB:AB:9E:C7:12:D8
X509v3 Authority Key Identifier:
keyid:4B:40:5C:AA:B3:4B:BF:DE:6B:8E:E6:6C:60:08:60:C6:CE:96:F3:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S0BcqrNLv95rjuZsYAhgxs6W8ys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/914d39-3020-4b79-ad26-d87affb8bc61/1/MJIbLhSmNC8a874fA2nbq57HEtg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/914d39-3020-4b79-ad26-d87affb8bc61/1/S0BcqrNLv95rjuZsYAhgxs6W8ys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.106.143.0/24
Signature Algorithm: sha256WithRSAEncryption
67:6a:96:a5:19:53:8e:01:7b:df:1a:72:85:a1:97:14:29:ce:
75:58:2a:da:25:70:80:d1:30:e0:42:03:db:7c:8b:f6:1f:07:
55:3a:56:32:c6:72:ec:5f:77:60:bc:66:30:c3:7a:12:4d:94:
70:42:4e:ec:e3:3a:17:f8:01:ae:00:05:f7:90:14:03:0c:01:
e1:aa:38:2d:3d:5c:2d:51:48:57:a4:22:f6:4f:a6:04:00:98:
78:43:30:15:cb:91:d7:6a:de:d0:37:58:38:b2:63:ab:3e:2a:
a2:e0:e2:9b:00:ec:3a:53:d7:5d:98:cb:cc:b7:1f:c0:b9:ea:
da:81:01:02:9e:d3:f7:ef:cb:0c:47:29:7d:dc:6d:86:43:f7:
b2:61:43:17:45:99:7f:eb:a8:09:a4:16:8d:59:b7:7e:0c:43:
0c:78:b3:78:bd:a8:31:67:8c:cd:05:66:7c:7b:c2:78:a5:5a:
33:61:56:51:83:36:19:49:84:31:02:db:af:ed:c4:01:aa:0e:
ba:60:2a:32:ee:f6:7d:4c:09:b4:0d:fa:95:71:2b:b2:9b:2a:
f5:eb:d6:ab:bd:0f:18:47:7b:bd:54:6a:15:09:3d:3c:a9:30:
e5:28:04:d3:ba:d2:ee:f1:a9:3f:3c:5e:f3:2a:25:57:55:ea:
2e:76:3c:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:54 2025 by rpki-client on console.sobornost.net