Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/365d98-5d48-43b8-9794-b1ea087b9525/1/MnIaRmi-qtJjMOo5DcZACYHEh7Q.roa
File: MnIaRmi-qtJjMOo5DcZACYHEh7Q.roa (raw, json)
Hash identifier: DOu8g3e2V+bo5Ia9CdK+7hGNXc1/nocclAIwTEkGmxQ=
Subject key identifier: 32:72:1A:46:68:BE:AA:D2:63:30:EA:39:0D:C6:40:09:81:C4:87:B4
Certificate issuer: /CN=c1b607c58515367d37c9f3e699482e57a33c73f5
Certificate serial: 019427B5FF5340F789408B9A7DE59F7B8134
Authority key identifier: C1:B6:07:C5:85:15:36:7D:37:C9:F3:E6:99:48:2E:57:A3:3C:73:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wbYHxYUVNn03yfPmmUguV6M8c_U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/365d98-5d48-43b8-9794-b1ea087b9525/1/MnIaRmi-qtJjMOo5DcZACYHEh7Q.roa
Signing time: Thu 02 Jan 2025 15:50:26 +0000
ROA not before: Thu 02 Jan 2025 15:50:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42981
IP address blocks: 194.110.238.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:ff:53:40:f7:89:40:8b:9a:7d:e5:9f:7b:81:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1b607c58515367d37c9f3e699482e57a33c73f5
Validity
Not Before: Jan 2 15:50:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=32721a4668beaad26330ea390dc6400981c487b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:43:d6:bc:0a:18:76:19:56:3f:9b:6e:a2:d1:
44:e3:8c:f2:38:e6:cc:26:73:94:fb:e1:41:95:4b:
3e:e8:cb:74:78:f6:96:e5:f9:8e:dc:ab:5f:f8:5a:
e9:bf:8f:00:e0:91:4f:54:ce:1b:f0:30:e1:ac:36:
97:48:4c:55:18:4e:e6:67:38:f5:0e:18:f8:e8:80:
63:07:05:60:36:97:be:e7:32:5c:15:e8:7f:05:ee:
97:60:bf:67:85:67:82:16:38:95:65:89:78:cc:15:
dd:c0:90:4c:86:0c:61:e9:80:f8:16:ba:8f:b7:32:
41:60:60:be:a6:22:3f:7d:03:88:51:1b:8b:31:f2:
15:25:3d:2a:d6:07:0e:47:48:86:0a:76:d9:e3:8c:
ed:59:a7:5e:e8:8e:e2:73:32:d1:0a:54:46:99:83:
74:35:69:b6:89:56:61:be:02:b0:35:87:85:ab:fa:
0a:26:d4:13:f1:92:1d:8d:97:32:40:5d:e6:ba:be:
80:3d:6a:b5:81:ac:24:7d:81:31:78:ab:db:d4:d9:
43:22:18:67:8c:1d:5c:be:64:46:8c:6f:77:ce:4b:
6e:8c:e9:5d:35:b9:43:2b:a1:e9:39:68:39:01:ee:
a5:ed:64:c4:6f:ed:5b:5c:9a:b6:2d:52:ea:74:8e:
91:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:72:1A:46:68:BE:AA:D2:63:30:EA:39:0D:C6:40:09:81:C4:87:B4
X509v3 Authority Key Identifier:
keyid:C1:B6:07:C5:85:15:36:7D:37:C9:F3:E6:99:48:2E:57:A3:3C:73:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wbYHxYUVNn03yfPmmUguV6M8c_U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/365d98-5d48-43b8-9794-b1ea087b9525/1/MnIaRmi-qtJjMOo5DcZACYHEh7Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/365d98-5d48-43b8-9794-b1ea087b9525/1/wbYHxYUVNn03yfPmmUguV6M8c_U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.110.238.0/24
Signature Algorithm: sha256WithRSAEncryption
65:6c:c8:d6:34:74:69:73:2a:93:fc:61:d9:67:cb:b7:bd:a9:
70:7e:79:0b:38:83:0e:16:8b:ee:61:85:94:c0:d7:2a:ef:75:
bb:03:1a:25:2c:b3:c1:3d:72:e9:70:1d:c8:21:62:fe:3d:1f:
77:20:92:7b:b9:24:5c:bd:bb:72:05:f0:c5:35:91:e0:e6:99:
50:fa:17:4a:f4:e5:2d:0a:5e:60:5e:cc:a2:19:f8:6e:ec:08:
c6:85:34:86:21:d2:9d:ec:31:7b:ec:4d:4c:7b:46:75:27:84:
a3:84:7e:54:68:9d:fc:7a:a4:eb:94:30:ed:01:74:8f:8c:a4:
bb:2b:73:3a:b2:e1:a5:5c:a4:09:79:97:d1:fa:64:7e:4f:49:
f3:fa:59:22:31:e2:f7:74:0f:84:d1:39:6d:7e:d1:37:29:4e:
57:2a:4d:aa:7c:22:b8:72:5b:8c:3e:fd:ba:c3:bc:d1:86:0c:
be:db:4c:e7:2b:61:74:ae:cc:31:eb:6f:47:84:ad:28:0c:94:
26:ef:4b:ec:50:f3:af:68:bb:7b:bc:73:94:88:b7:f4:01:3a:
85:f4:c0:45:0d:a1:a3:2f:e1:7d:b5:71:27:51:1e:15:0d:9f:
a8:f5:0c:a0:11:c9:4c:80:cf:ca:bd:19:c0:84:b9:4d:31:99:
16:62:53:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:01 2025 by rpki-client on console.sobornost.net