Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/Mk7YYF4o9LB74wKwKgBbcKzvyH8.roa
File: Mk7YYF4o9LB74wKwKgBbcKzvyH8.roa (raw, json)
Hash identifier: OCqXIpcMD6jOp7DHnSx2liWfa4cjdFDkG92oQWOUUNo=
Subject key identifier: 32:4E:D8:60:5E:28:F4:B0:7B:E3:02:B0:2A:00:5B:70:AC:EF:C8:7F
Certificate issuer: /CN=3601c3cce6a71cab21a4bbadf0ab84dde3f2bab2
Certificate serial: 01942748046DA1564C9F09187658998BC35A
Authority key identifier: 36:01:C3:CC:E6:A7:1C:AB:21:A4:BB:AD:F0:AB:84:DD:E3:F2:BA:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NgHDzOanHKshpLut8KuE3ePyurI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/Mk7YYF4o9LB74wKwKgBbcKzvyH8.roa
Signing time: Thu 02 Jan 2025 13:50:18 +0000
ROA not before: Thu 02 Jan 2025 13:50:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 52143
IP address blocks: 188.94.0.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:04:6d:a1:56:4c:9f:09:18:76:58:99:8b:c3:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3601c3cce6a71cab21a4bbadf0ab84dde3f2bab2
Validity
Not Before: Jan 2 13:50:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=324ed8605e28f4b07be302b02a005b70acefc87f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:87:db:9e:de:a0:ea:35:f5:55:3f:70:46:7c:
a5:fc:b2:69:a4:b3:ba:3b:e1:ad:3d:b7:75:24:78:
a0:1e:e7:59:24:53:77:54:48:d8:df:61:1b:69:da:
c2:8b:08:5e:ac:a9:8a:bd:7b:80:8b:0e:e1:3b:92:
1a:f1:5d:33:46:6d:c0:12:d1:c0:c8:4e:f4:de:31:
f4:6e:16:5c:de:2f:4f:37:66:df:be:40:a5:43:cd:
f3:6b:91:77:7a:c9:b3:c3:28:eb:73:7c:56:f1:e8:
73:6a:22:55:86:f2:6a:93:2c:e7:01:57:02:61:f1:
a8:72:20:03:46:61:a2:2b:63:d4:f6:5a:05:66:d8:
3e:4e:6b:e3:b4:47:86:52:60:d0:01:7c:e2:56:5d:
1c:1e:20:ba:94:cb:f0:91:a6:47:e6:e4:a3:01:00:
69:8b:d3:b4:98:eb:4c:d6:f0:12:da:2e:43:db:e1:
93:8e:de:83:bf:04:90:5a:40:b2:69:a6:47:9a:62:
a9:24:ae:a2:c3:39:e3:1c:3b:2f:05:95:71:81:a9:
88:b0:fc:2f:29:2b:84:67:2f:56:4c:24:ce:08:3d:
ad:ba:a2:2a:79:f2:62:37:3e:8f:ef:71:d3:cf:0c:
fb:28:28:32:b7:fa:92:73:2e:8d:e0:ae:60:4f:10:
48:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:4E:D8:60:5E:28:F4:B0:7B:E3:02:B0:2A:00:5B:70:AC:EF:C8:7F
X509v3 Authority Key Identifier:
keyid:36:01:C3:CC:E6:A7:1C:AB:21:A4:BB:AD:F0:AB:84:DD:E3:F2:BA:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NgHDzOanHKshpLut8KuE3ePyurI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/Mk7YYF4o9LB74wKwKgBbcKzvyH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.94.0.0/22
Signature Algorithm: sha256WithRSAEncryption
59:06:73:4f:6f:1d:15:3b:0b:45:ca:73:ad:12:6d:68:65:a9:
93:f9:1b:af:04:57:2d:77:8e:af:dd:92:c5:9e:9b:6c:2c:48:
28:86:36:94:1a:84:ff:a3:d9:06:35:6b:a9:78:1b:b4:52:1b:
5f:08:3f:15:17:67:de:3e:f4:e0:97:39:74:3b:9e:8b:e4:10:
e9:f4:fc:ca:a9:6e:85:31:8b:40:24:fd:61:2e:ab:dc:9d:a3:
9d:79:06:88:82:94:11:30:83:67:37:82:20:6b:f9:18:ce:b3:
d4:48:b3:7b:03:82:b9:e3:6c:d6:73:aa:06:85:ee:97:6a:91:
c9:87:ba:af:cd:a7:75:a1:41:ca:f6:52:3f:67:95:7d:c6:be:
44:5d:cc:87:8b:d2:25:54:5a:62:31:51:4b:20:e4:2a:fc:88:
88:3a:d5:d7:85:fc:58:79:5e:e5:7a:a8:d2:77:7e:b7:0d:f6:
9a:f8:19:a1:3d:0e:0f:a1:e6:5b:a0:f0:9c:44:4c:18:5b:91:
3a:82:da:9e:0a:2e:64:ab:3d:ae:34:63:5c:2e:19:a0:92:37:
11:95:97:7b:62:09:03:03:09:5f:71:45:31:65:39:f9:e1:43:
52:42:04:24:c0:a6:7f:33:9b:0a:9a:20:7b:40:9c:93:6c:8a:
8a:75:70:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:45 2025 by rpki-client on console.sobornost.net