Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/mWYkGMEMrO_nHDH4dqasaNk-p_c.roa
File: mWYkGMEMrO_nHDH4dqasaNk-p_c.roa (raw, json)
Hash identifier: OCHhjAiwakmpsRoIjxkgKbh8p1tQzGvkxI9kPgktEoo=
Subject key identifier: 99:66:24:18:C1:0C:AC:EF:E7:1C:31:F8:76:A6:AC:68:D9:3E:A7:F7
Certificate issuer: /CN=90fc2c12ea17021ba8ace0621897f0856dac2559
Certificate serial: 0194236A4E7949AAF01E778022B0188D95EC
Authority key identifier: 90:FC:2C:12:EA:17:02:1B:A8:AC:E0:62:18:97:F0:85:6D:AC:25:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kPwsEuoXAhuorOBiGJfwhW2sJVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/mWYkGMEMrO_nHDH4dqasaNk-p_c.roa
Signing time: Wed 01 Jan 2025 19:49:17 +0000
ROA not before: Wed 01 Jan 2025 19:49:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210329
IP address blocks: 2.59.118.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:4e:79:49:aa:f0:1e:77:80:22:b0:18:8d:95:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90fc2c12ea17021ba8ace0621897f0856dac2559
Validity
Not Before: Jan 1 19:49:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=99662418c10cacefe71c31f876a6ac68d93ea7f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:e5:75:92:9f:05:14:5a:c0:a5:09:a3:7f:90:
a0:f7:d9:fb:bc:a3:be:8d:1b:34:8b:cd:c9:2a:38:
de:a3:ea:8d:77:dc:8e:ee:d6:9f:99:da:47:0a:5a:
34:9f:22:b3:3c:df:ca:33:b6:70:1a:28:d0:f4:08:
4d:5e:f3:09:85:43:33:30:9e:86:7d:72:31:a5:a7:
29:8e:d7:ee:f0:04:16:74:3f:c6:06:67:fd:2d:3b:
17:87:a9:39:0b:9b:8a:20:bd:e2:bd:4a:83:b0:55:
47:19:4b:d5:53:0b:42:e3:8c:a8:7f:32:9f:8e:63:
d4:73:cc:da:7e:4e:09:ff:94:78:ad:02:8f:56:73:
83:11:a6:9e:63:f3:b9:9a:9e:43:fc:de:b8:ef:0f:
08:c1:63:bb:0f:f0:c7:42:5a:c0:26:cb:00:af:5a:
9b:12:db:28:e7:9c:03:d1:63:12:92:1f:52:d8:07:
5e:0c:fe:59:2e:81:e6:f0:00:8f:28:0b:2a:1e:46:
5e:aa:ec:53:04:14:40:81:ef:11:2d:2a:52:7d:29:
3f:7f:ff:d5:bd:03:28:23:b4:5c:02:e2:66:27:1b:
f6:75:c3:e4:ca:0c:fd:ea:1a:fe:83:2a:28:dc:1f:
94:45:71:a8:9a:1d:6d:12:73:1c:22:71:08:69:e8:
11:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:66:24:18:C1:0C:AC:EF:E7:1C:31:F8:76:A6:AC:68:D9:3E:A7:F7
X509v3 Authority Key Identifier:
keyid:90:FC:2C:12:EA:17:02:1B:A8:AC:E0:62:18:97:F0:85:6D:AC:25:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kPwsEuoXAhuorOBiGJfwhW2sJVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/mWYkGMEMrO_nHDH4dqasaNk-p_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.118.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:e6:27:b6:48:f1:29:a2:c6:6f:40:93:61:88:ba:03:32:2e:
6f:bf:36:07:c1:15:ef:5d:ea:b8:78:3d:65:2d:0d:50:56:a7:
7d:e9:9e:85:9b:71:3e:42:bd:b8:25:73:68:23:7d:02:f2:bc:
8b:e9:5b:67:7e:ab:fe:fa:f9:21:8b:93:e1:3b:36:94:82:27:
69:6d:fb:3c:3a:b0:5d:85:0b:52:ac:60:2d:74:cf:33:42:42:
05:53:2c:43:e2:11:59:c0:df:c8:cb:b8:5a:06:ff:aa:c3:cb:
f4:65:dd:ec:ee:bd:6e:84:a2:f8:81:34:9f:c0:d4:f8:68:c7:
ec:41:3c:03:1c:dc:3f:0a:7a:39:dd:4f:a2:5d:b8:4f:29:54:
2a:ab:6a:c6:86:bc:70:65:98:89:56:82:42:ed:34:97:7c:92:
db:79:d5:b7:e4:63:f0:dd:4c:f5:06:bb:c3:c5:e7:43:28:e5:
27:98:49:ac:53:f9:10:e7:95:42:98:8d:48:dd:09:a6:a5:3f:
84:5a:28:46:48:00:c0:9b:93:6b:70:9c:5d:52:38:f9:cd:fe:
44:9b:55:18:e8:e4:0d:fd:1e:99:a3:4f:f0:a8:7c:3a:18:d9:
f0:5a:2a:76:99:6a:e8:cf:a5:aa:b6:a5:b9:e2:38:8c:cf:42:
60:47:48:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:34 2025 by rpki-client on console.sobornost.net