Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/dcc2b4-9ded-4678-8398-ab79a3789f8f/1/mmEVKc1EFKuheB4FKizBXFspVtg.roa
File: mmEVKc1EFKuheB4FKizBXFspVtg.roa (raw, json)
Hash identifier: /mO5uMHmI8PnkMInS/fvq5meo8U4FCe78Pgb4cEwmJA=
Subject key identifier: 9A:61:15:29:CD:44:14:AB:A1:78:1E:05:2A:2C:C1:5C:5B:29:56:D8
Certificate issuer: /CN=700a1231d1c27a754e46ef10e92a730ae15d0f55
Certificate serial: 0194274850A30F0D48C42CDA4AA1C5AFF43B
Authority key identifier: 70:0A:12:31:D1:C2:7A:75:4E:46:EF:10:E9:2A:73:0A:E1:5D:0F:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cAoSMdHCenVORu8Q6SpzCuFdD1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/dcc2b4-9ded-4678-8398-ab79a3789f8f/1/mmEVKc1EFKuheB4FKizBXFspVtg.roa
Signing time: Thu 02 Jan 2025 13:50:38 +0000
ROA not before: Thu 02 Jan 2025 13:50:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 56544
IP address blocks: 217.11.140.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:50:a3:0f:0d:48:c4:2c:da:4a:a1:c5:af:f4:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=700a1231d1c27a754e46ef10e92a730ae15d0f55
Validity
Not Before: Jan 2 13:50:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9a611529cd4414aba1781e052a2cc15c5b2956d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:fc:b1:9e:14:aa:e0:de:6d:cf:a1:38:0a:9d:
9a:db:42:d1:f9:02:95:60:2e:0b:32:49:88:12:89:
4a:b8:a0:3b:36:58:91:18:cf:4a:e8:8b:7b:9b:74:
ea:09:fe:34:75:bf:9a:42:9f:91:d9:2e:72:68:bb:
2d:65:a1:e0:30:69:1a:67:cd:f4:17:47:d7:f2:91:
7c:b6:bb:26:45:81:a0:59:da:19:a8:02:fc:b6:0f:
02:32:ea:e4:cb:8c:7c:2c:04:b6:7b:87:8d:c7:e1:
14:63:b4:7a:af:c4:9a:c1:e8:9b:05:fe:31:14:dc:
0e:89:11:40:eb:a0:1e:14:35:f3:f5:e4:62:85:77:
09:ea:5d:5f:da:c3:9d:20:89:c1:56:a6:40:1d:4d:
46:b3:d2:6e:dd:a7:ae:35:6b:38:67:e8:0b:d8:75:
d7:19:f8:e3:e2:72:f9:3b:e0:5b:a2:1d:38:9f:e8:
5d:db:32:de:52:3d:a4:3f:24:9e:80:f2:87:d0:36:
5d:1e:7d:5c:a3:af:db:91:f2:eb:a8:30:70:bd:ca:
d7:ac:bf:9c:f5:8c:5e:67:89:e8:60:8a:a6:84:f2:
25:73:79:5f:4c:2b:cf:5b:25:e1:9a:5d:b8:79:ab:
77:c4:05:1c:7c:7d:98:22:9b:31:67:15:19:5d:72:
7e:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:61:15:29:CD:44:14:AB:A1:78:1E:05:2A:2C:C1:5C:5B:29:56:D8
X509v3 Authority Key Identifier:
keyid:70:0A:12:31:D1:C2:7A:75:4E:46:EF:10:E9:2A:73:0A:E1:5D:0F:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cAoSMdHCenVORu8Q6SpzCuFdD1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/dcc2b4-9ded-4678-8398-ab79a3789f8f/1/mmEVKc1EFKuheB4FKizBXFspVtg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/dcc2b4-9ded-4678-8398-ab79a3789f8f/1/cAoSMdHCenVORu8Q6SpzCuFdD1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.11.140.0/23
Signature Algorithm: sha256WithRSAEncryption
7c:60:27:d7:05:2b:80:d3:f7:55:78:dc:78:9f:ee:d6:60:e9:
45:64:eb:a2:fc:84:00:c4:6d:83:f8:8c:84:6f:46:b6:e5:96:
2d:bb:ce:66:0d:e4:e1:f4:87:b8:41:17:7d:a6:91:66:e1:38:
48:25:58:43:c3:46:c1:59:51:94:85:5d:a4:c7:be:85:dd:a5:
9a:e5:5c:96:1e:b2:8b:5d:55:cf:40:61:d5:4c:5a:b8:c6:8c:
8d:d9:0c:16:ca:d9:5b:f3:58:14:0b:04:d3:a1:2c:70:c1:b0:
03:72:63:38:cb:4d:16:c0:ea:fe:9b:82:e8:4a:c9:b5:f1:86:
df:28:4a:9b:3d:63:87:9a:21:f3:42:31:e6:4b:b9:b8:f8:14:
9c:6b:cd:58:03:b1:c2:ab:f5:e9:9d:34:15:ef:a2:23:5a:b4:
02:c1:f8:02:ee:5f:43:4f:6c:84:0a:3e:3a:f1:2b:61:f5:85:
3a:d2:7f:76:7b:eb:45:0f:75:e5:7f:c4:b8:31:0a:8c:4c:47:
1f:7f:91:54:7d:75:b3:02:f3:2f:e9:6e:2c:0b:36:4b:f9:85:
46:c4:94:15:fd:cf:be:b0:04:27:52:05:85:48:c8:08:b3:32:
7e:13:93:04:8c:4e:93:27:67:9a:ec:82:4d:61:35:97:00:77:
6f:d5:04:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:24 2025 by rpki-client on console.sobornost.net