Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/ad050f-a22d-4a77-958c-357a61361dcb/1/MMfXFIBTN4EF53B-qz6xr0lTa60.roa
File: MMfXFIBTN4EF53B-qz6xr0lTa60.roa (raw, json)
Hash identifier: PppBDUKwa5tmMVRDOOI/PKjma94X0CuRbdLOVWnm99g=
Subject key identifier: 30:C7:D7:14:80:53:37:81:05:E7:70:7E:AB:3E:B1:AF:49:53:6B:AD
Certificate issuer: /CN=33cfbfbf2eccd393aa30c221369965b847192da8
Certificate serial: 0194244563CE2E09F48E963E82904A3B1EA9
Authority key identifier: 33:CF:BF:BF:2E:CC:D3:93:AA:30:C2:21:36:99:65:B8:47:19:2D:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M8-_vy7M05OqMMIhNplluEcZLag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/ad050f-a22d-4a77-958c-357a61361dcb/1/MMfXFIBTN4EF53B-qz6xr0lTa60.roa
Signing time: Wed 01 Jan 2025 23:48:34 +0000
ROA not before: Wed 01 Jan 2025 23:48:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 21277
IP address blocks: 185.38.212.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:63:ce:2e:09:f4:8e:96:3e:82:90:4a:3b:1e:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33cfbfbf2eccd393aa30c221369965b847192da8
Validity
Not Before: Jan 1 23:48:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=30c7d7148053378105e7707eab3eb1af49536bad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8d:f9:f5:55:95:95:d2:95:2b:87:72:d0:f3:
1f:0d:0b:f3:ed:9f:d0:0e:77:56:64:b5:52:50:a0:
18:04:0f:d5:69:c4:c1:b7:9d:09:b1:e3:0f:6a:ee:
11:25:1d:88:c7:08:7e:31:ae:23:8c:35:45:5e:0b:
19:87:f6:2a:bc:d9:19:fe:b5:c4:59:c6:42:fe:3d:
cf:34:ab:a8:c8:4d:e1:93:47:e1:c7:7b:6c:f6:9e:
ec:c8:74:2d:4f:51:d2:35:52:29:01:3f:b8:15:fa:
cd:b6:5e:83:e7:06:d0:b2:b9:dc:3f:68:84:5c:bf:
8e:8b:0e:e5:79:57:9f:c6:8a:9c:b2:1d:0b:8d:49:
1a:cc:94:5c:f8:12:96:5d:f0:f8:53:17:09:5d:36:
37:be:56:87:52:2a:14:8f:aa:56:35:eb:c5:27:9d:
fc:59:88:98:07:31:88:4d:ca:ab:1f:5e:54:a6:f3:
02:0c:8f:eb:12:8b:9a:8b:cb:ee:02:e4:04:66:1b:
c4:66:59:e5:b0:0d:14:03:42:26:93:ea:c3:0e:97:
63:0d:fc:57:cd:ff:05:de:03:16:e1:e1:a5:b0:12:
b7:89:c5:4b:7d:2a:a4:1d:b6:a3:ce:0d:d0:f5:fb:
55:fd:95:a2:1b:c0:57:e8:93:44:4c:19:c6:cd:03:
12:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:C7:D7:14:80:53:37:81:05:E7:70:7E:AB:3E:B1:AF:49:53:6B:AD
X509v3 Authority Key Identifier:
keyid:33:CF:BF:BF:2E:CC:D3:93:AA:30:C2:21:36:99:65:B8:47:19:2D:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M8-_vy7M05OqMMIhNplluEcZLag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/ad050f-a22d-4a77-958c-357a61361dcb/1/MMfXFIBTN4EF53B-qz6xr0lTa60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/ad050f-a22d-4a77-958c-357a61361dcb/1/M8-_vy7M05OqMMIhNplluEcZLag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.38.212.0/22
Signature Algorithm: sha256WithRSAEncryption
a2:a1:30:95:58:67:e8:d3:10:ca:5d:85:e8:b0:34:c8:6c:6e:
dd:80:a4:be:74:b0:69:dd:fd:69:fc:31:bb:7e:bc:16:fb:e8:
11:3f:29:be:62:46:e3:b8:72:2d:e7:3c:01:58:34:33:a5:46:
e9:c8:16:79:df:b9:99:3b:ff:6a:37:e6:29:07:5b:45:57:4b:
ae:d1:f6:8e:a5:14:da:25:0b:dc:91:71:04:42:87:7e:f5:90:
7b:97:42:5a:ac:e4:b4:b7:75:d2:9f:e9:ce:e3:bf:79:83:8d:
ee:1b:d9:5a:bd:d0:78:bc:90:e1:be:bc:76:fa:20:23:74:49:
52:dd:72:ec:5d:f1:72:b1:26:ea:86:b1:2f:7d:63:8d:5f:9e:
1f:9e:d5:ad:76:b3:a1:d3:ec:6c:8d:15:b8:98:c9:58:73:ce:
31:ad:cb:a6:db:eb:a1:0a:4b:a9:36:1b:a7:2b:48:87:66:55:
94:d2:8b:09:cf:f1:00:da:b2:91:c2:29:01:f0:17:b0:47:37:
71:f0:72:ec:00:dd:33:80:c0:10:91:0c:2c:58:0c:32:f3:89:
3f:e2:8b:f0:69:da:10:37:fd:75:5b:8f:f0:3f:23:63:cf:48:
2e:0c:8b:d4:a4:77:66:4a:c8:78:54:13:a3:d9:95:17:5b:14:
72:80:3b:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:47 2025 by rpki-client on console.sobornost.net