Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01f08c-065e-4ac1-8e80-b15e3f09e01b/1/Mzslz6lcNXudXzAJXyK0btcMaBE.roa
File: Mzslz6lcNXudXzAJXyK0btcMaBE.roa (raw, json)
Hash identifier: 47uKzh4eIMWLhz8IWHr3Gv9awY3+jC1pNHTwDTPw8bE=
Subject key identifier: 33:3B:25:CF:A9:5C:35:7B:9D:5F:30:09:5F:22:B4:6E:D7:0C:68:11
Certificate issuer: /CN=0c7161e622f63c0db8568d8cb4c4d7c0d9808346
Certificate serial: 01942369E541F6FBD37A62780D3A2A6EEFEB
Authority key identifier: 0C:71:61:E6:22:F6:3C:0D:B8:56:8D:8C:B4:C4:D7:C0:D9:80:83:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DHFh5iL2PA24Vo2MtMTXwNmAg0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01f08c-065e-4ac1-8e80-b15e3f09e01b/1/Mzslz6lcNXudXzAJXyK0btcMaBE.roa
Signing time: Wed 01 Jan 2025 19:48:50 +0000
ROA not before: Wed 01 Jan 2025 19:48:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203735
IP address blocks: 195.7.8.0/24 maxlen: 24
195.7.10.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:e5:41:f6:fb:d3:7a:62:78:0d:3a:2a:6e:ef:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c7161e622f63c0db8568d8cb4c4d7c0d9808346
Validity
Not Before: Jan 1 19:48:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=333b25cfa95c357b9d5f30095f22b46ed70c6811
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:19:51:5a:ea:66:2b:ce:6f:21:c4:33:1b:bf:
52:8d:6c:d9:72:7c:35:4b:04:b0:f0:69:e8:b6:e1:
4e:4c:dc:4d:55:16:63:43:eb:ba:05:eb:b0:0a:19:
3a:70:9b:b0:8c:43:c4:2a:04:2e:41:d3:00:5d:2e:
e8:80:54:78:a5:36:16:05:ec:a7:d7:32:2c:fb:b1:
d9:02:ed:48:41:ff:1e:64:c0:1a:e9:7c:cf:aa:56:
14:e0:81:e8:be:f1:ab:e3:02:07:4f:72:14:67:2e:
f6:64:9b:ee:52:62:63:f3:d7:66:6a:b0:ff:8c:13:
09:fe:dc:1f:12:7f:19:d5:d3:1f:9f:a5:e1:25:53:
98:9e:27:a5:b7:56:57:fd:34:64:29:1e:f2:61:c7:
79:8f:48:22:99:a3:26:50:9c:d9:39:cf:53:75:03:
f3:99:8f:19:6f:42:69:89:ed:e1:4f:25:b8:a0:7b:
38:c5:b0:de:37:81:03:d7:1d:4c:89:63:50:c9:90:
c4:a2:6f:8a:dc:a5:c8:cd:81:f5:ff:ea:03:fe:d8:
59:8b:f0:20:85:7b:67:c6:07:bc:80:e4:1c:f5:b8:
cb:33:7c:67:a1:22:b8:ad:6d:d0:a1:7d:7e:c6:90:
33:1e:a4:13:1a:64:e7:8f:bf:a9:00:57:e5:e0:22:
ee:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:3B:25:CF:A9:5C:35:7B:9D:5F:30:09:5F:22:B4:6E:D7:0C:68:11
X509v3 Authority Key Identifier:
keyid:0C:71:61:E6:22:F6:3C:0D:B8:56:8D:8C:B4:C4:D7:C0:D9:80:83:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DHFh5iL2PA24Vo2MtMTXwNmAg0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01f08c-065e-4ac1-8e80-b15e3f09e01b/1/Mzslz6lcNXudXzAJXyK0btcMaBE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01f08c-065e-4ac1-8e80-b15e3f09e01b/1/DHFh5iL2PA24Vo2MtMTXwNmAg0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.7.8.0/24
195.7.10.0/24
Signature Algorithm: sha256WithRSAEncryption
06:c5:9e:36:c8:59:fc:b5:e7:51:df:48:ac:56:61:0d:f1:43:
91:23:da:bc:0a:de:35:32:db:dc:bd:31:e5:39:87:2a:49:0b:
8a:2f:a8:66:d6:36:4f:03:02:b2:15:4d:4b:58:0f:57:4d:58:
e0:c9:93:1a:d1:af:c3:cc:05:0d:2a:81:6b:d3:33:1d:2b:69:
53:a4:58:a8:8b:5d:fa:6b:61:85:82:17:03:a1:73:f4:b6:98:
08:c6:6a:c6:17:bd:36:fc:df:db:32:36:a2:be:b5:d2:0a:e3:
1b:36:6b:33:11:21:c2:a8:0f:a8:96:e9:6b:4b:bc:ae:53:41:
24:69:f7:d7:63:5a:9c:d2:95:40:bc:74:90:2f:cf:d6:bf:ee:
fa:ff:4e:55:10:68:97:f8:45:9c:51:0d:fb:ce:58:89:80:88:
ad:4c:2f:5e:05:00:51:9d:52:04:99:59:00:00:0f:47:50:1c:
03:0f:d9:2a:27:62:fa:d6:d1:38:83:98:39:82:7f:fd:08:f3:
d1:7e:3d:24:5b:22:df:cb:ae:a8:4f:8c:6b:f7:65:31:fe:b6:
b2:e3:45:95:1b:9c:d5:e4:f3:62:09:99:33:61:fc:e0:19:d0:
ac:3b:3f:bb:f3:7f:a3:30:5f:34:33:fa:b3:1b:09:a1:a5:41:
c3:74:be:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 19:16:48 2025 by rpki-client on console.sobornost.net