Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/3c4b53-eca3-4599-9d94-d71fc90c7b16/1/MEWWY0epwShfEJbfHo9y4r51GYY.roa
File: MEWWY0epwShfEJbfHo9y4r51GYY.roa (raw, json)
Hash identifier: SGRcwmohz12gMReH4Cn9V8oKzsRQ7LvpKURqTZBMtCo=
Subject key identifier: 30:45:96:63:47:A9:C1:28:5F:10:96:DF:1E:8F:72:E2:BE:75:19:86
Certificate issuer: /CN=1fb5c1bbaed44c8b6ae3f2b566d01cc258dfc2ce
Certificate serial: 01942827DD2380BD25F1DEBCB4C90E5EDBE1
Authority key identifier: 1F:B5:C1:BB:AE:D4:4C:8B:6A:E3:F2:B5:66:D0:1C:C2:58:DF:C2:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H7XBu67UTItq4_K1ZtAcwljfws4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/3c4b53-eca3-4599-9d94-d71fc90c7b16/1/MEWWY0epwShfEJbfHo9y4r51GYY.roa
Signing time: Thu 02 Jan 2025 17:54:48 +0000
ROA not before: Thu 02 Jan 2025 17:54:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211638
IP address blocks: 2001:678:f0c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:27:dd:23:80:bd:25:f1:de:bc:b4:c9:0e:5e:db:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fb5c1bbaed44c8b6ae3f2b566d01cc258dfc2ce
Validity
Not Before: Jan 2 17:54:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3045966347a9c1285f1096df1e8f72e2be751986
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:60:68:39:5f:b5:c0:a5:da:e8:c1:f5:45:49:
d1:bf:b9:b6:ba:2b:e2:78:b5:68:77:e3:eb:5d:af:
76:15:fe:05:ee:6c:84:ef:54:4e:29:41:c8:3a:e1:
5c:79:74:f1:a0:df:3f:c2:5d:0e:78:18:ef:df:6c:
6a:a6:59:9b:c5:73:c9:05:fd:49:d1:e2:1e:4c:85:
eb:51:18:ac:a3:87:33:94:37:5b:cc:71:1b:69:df:
76:ff:7e:a6:be:a3:62:d9:46:9c:67:c0:09:83:2e:
be:37:4b:37:93:a5:3a:90:ec:21:3f:97:30:c7:73:
15:17:4f:c1:84:c7:0c:a8:92:94:58:ae:83:78:6e:
64:73:14:9d:75:46:08:e6:c8:7e:c6:8d:53:d3:74:
ab:35:c4:61:37:b6:4c:6b:5d:c3:ee:61:97:fc:0c:
9e:e1:9a:f4:b5:28:99:3f:d2:91:45:7d:5a:35:5a:
09:21:8b:be:65:73:58:c2:d0:37:e6:db:8c:3d:82:
5a:a6:ed:eb:cd:3c:32:dc:29:ed:6d:22:57:fb:a6:
25:b7:fa:db:68:ce:c9:86:95:ec:de:18:69:c9:60:
e0:18:57:fb:ce:d2:e8:93:9f:b7:a6:b4:71:1d:ff:
b8:20:4d:3a:d2:73:37:48:d0:44:04:eb:a7:bf:95:
4e:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:45:96:63:47:A9:C1:28:5F:10:96:DF:1E:8F:72:E2:BE:75:19:86
X509v3 Authority Key Identifier:
keyid:1F:B5:C1:BB:AE:D4:4C:8B:6A:E3:F2:B5:66:D0:1C:C2:58:DF:C2:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H7XBu67UTItq4_K1ZtAcwljfws4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/3c4b53-eca3-4599-9d94-d71fc90c7b16/1/MEWWY0epwShfEJbfHo9y4r51GYY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/3c4b53-eca3-4599-9d94-d71fc90c7b16/1/H7XBu67UTItq4_K1ZtAcwljfws4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:f0c::/48
Signature Algorithm: sha256WithRSAEncryption
0b:a7:89:40:19:87:3c:70:d8:9f:64:37:be:8d:03:be:25:13:
cb:e5:cb:15:77:36:1f:7d:1c:17:96:92:e6:b8:21:81:a2:d5:
7a:74:00:9c:bd:0c:86:97:0a:88:22:2f:57:a2:72:1f:4d:90:
61:dd:3d:00:9a:c3:69:d0:c0:e3:a6:55:f5:df:eb:12:c9:3e:
8e:9b:15:c0:d3:1a:d4:46:d1:0c:0d:a6:d7:6e:b2:29:3c:79:
b1:73:02:39:1e:e7:ec:a6:50:43:70:2a:f2:3b:dc:de:f2:0f:
7e:32:68:92:12:ed:f9:d1:98:d4:79:53:3f:ec:59:e8:53:f6:
4e:72:88:f0:bb:91:f4:23:dc:85:0e:81:0f:29:64:95:1c:7d:
67:bf:90:d7:ac:74:fe:2b:e8:07:81:fd:5f:5f:5d:cb:b5:83:
57:fd:63:e5:f1:2b:4b:93:c2:31:2c:9a:8c:4e:f4:f9:d2:75:
bd:be:15:9a:50:aa:09:c7:a4:5f:1e:64:74:13:9b:88:cb:50:
64:9f:aa:bf:d8:68:75:f4:b8:59:1a:99:05:f0:26:aa:b6:6d:
55:40:03:68:c4:5a:d5:e7:1c:30:3e:20:53:09:64:99:f3:12:
10:b8:f1:85:fb:e3:5a:aa:af:b0:00:ec:e6:54:08:43:16:ed:
4d:0c:da:63
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZQoJ90jgL0l8d68tMkOXtvhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmYjVjMWJiYWVkNDRjOGI2YWUzZjJiNTY2ZDAxY2MyNThk
ZmMyY2UwHhcNMjUwMTAyMTc1NDQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMDQ1OTY2MzQ3YTljMTI4NWYxMDk2ZGYxZThmNzJlMmJlNzUxOTg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkGBoOV+1wKXa6MH1RUnRv7m2uivi
eLVod+PrXa92Ff4F7myE71ROKUHIOuFceXTxoN8/wl0OeBjv32xqplmbxXPJBf1J
0eIeTIXrURiso4czlDdbzHEbad92/36mvqNi2UacZ8AJgy6+N0s3k6U6kOwhP5cw
x3MVF0/BhMcMqJKUWK6DeG5kcxSddUYI5sh+xo1T03SrNcRhN7ZMa13D7mGX/Aye
4Zr0tSiZP9KRRX1aNVoJIYu+ZXNYwtA35tuMPYJapu3rzTwy3CntbSJX+6Ylt/rb
aM7JhpXs3hhpyWDgGFf7ztLok5+3prRxHf+4IE060nM3SNBEBOunv5VOKwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFDBFlmNHqcEoXxCW3x6PcuK+dRmGMB8GA1UdIwQY
MBaAFB+1wbuu1EyLauPytWbQHMJY38LOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSDdYQnU2N1VUSXRxNF9LMVp0QWN3bGpmd3M0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS8zYzRiNTMtZWNhMy00NTk5LTlkOTQt
ZDcxZmM5MGM3YjE2LzEvTUVXV1kwZXB3U2hmRUpiZkhvOXk0cjUxR1lZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOS8zYzRiNTMtZWNhMy00NTk5LTlkOTQtZDcxZmM5MGM3YjE2
LzEvSDdYQnU2N1VUSXRxNF9LMVp0QWN3bGpmd3M0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeA8M
MA0GCSqGSIb3DQEBCwUAA4IBAQALp4lAGYc8cNifZDe+jQO+JRPL5csVdzYffRwX
lpLmuCGBotV6dACcvQyGlwqIIi9XonIfTZBh3T0AmsNp0MDjplX13+sSyT6OmxXA
0xrURtEMDabXbrIpPHmxcwI5HufsplBDcCryO9ze8g9+MmiSEu350ZjUeVM/7Fno
U/ZOcojwu5H0I9yFDoEPKWSVHH1nv5DXrHT+K+gHgf1fX13LtYNX/WPl8StLk8Ix
LJqMTvT50nW9vhWaUKoJx6RfHmR0E5uIy1Bkn6q/2Gh19LhZGpkF8Caqtm1VQANo
xFrV5xwwPiBTCWSZ8xIQuPGF++Naqq+wAOzmVAhDFu1NDNpj
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:49 2025 by rpki-client on console.sobornost.net