Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/842b5b-985c-44d7-9598-039dea50694e/1/Mvk_oqElVRdnhvvvd2d0ON2M6O0.roa
File: Mvk_oqElVRdnhvvvd2d0ON2M6O0.roa (raw, json)
Hash identifier: h/FNSiffcYfhZT3VlgEkLi4vidisAmOMBIjfYdnqCDs=
Subject key identifier: 32:F9:3F:A2:A1:25:55:17:67:86:FB:EF:77:67:74:38:DD:8C:E8:ED
Certificate issuer: /CN=dc82d2c7eb5fa543e32f1eee19cd35a5673cfae6
Certificate serial: 01941FFA06E6F4F47CEE8E98DCE27F1DA266
Authority key identifier: DC:82:D2:C7:EB:5F:A5:43:E3:2F:1E:EE:19:CD:35:A5:67:3C:FA:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ILSx-tfpUPjLx7uGc01pWc8-uY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/842b5b-985c-44d7-9598-039dea50694e/1/Mvk_oqElVRdnhvvvd2d0ON2M6O0.roa
Signing time: Wed 01 Jan 2025 03:47:46 +0000
ROA not before: Wed 01 Jan 2025 03:47:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199006
IP address blocks: 91.198.125.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:06:e6:f4:f4:7c:ee:8e:98:dc:e2:7f:1d:a2:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc82d2c7eb5fa543e32f1eee19cd35a5673cfae6
Validity
Not Before: Jan 1 03:47:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=32f93fa2a12555176786fbef77677438dd8ce8ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:63:b7:a4:9b:9d:2a:d0:8c:d1:b0:df:4f:4c:
46:28:49:73:35:9b:bb:13:ae:23:32:fb:0c:fb:6d:
a3:d7:cb:6b:02:1a:88:4f:aa:1a:8c:39:65:cd:dd:
ce:a2:fd:42:72:94:63:86:98:90:a1:b0:3f:43:a6:
b3:64:08:98:80:40:be:9e:f0:3e:ce:3b:f7:e5:c1:
81:c8:72:ff:90:27:b3:ef:3c:9b:11:27:11:d5:28:
b5:95:18:37:cf:b3:4a:81:6a:24:f6:e9:6f:0e:be:
41:15:1e:f9:50:54:a9:fa:84:40:00:77:a7:ac:79:
33:6e:46:62:f8:75:65:cd:dc:03:e5:da:00:d4:8e:
4a:c0:41:37:db:4d:25:43:56:ed:f1:ff:f1:8d:ff:
ad:92:0d:e9:64:34:02:ad:28:65:45:18:4a:db:95:
60:e2:6e:e0:68:75:2a:47:0f:e0:90:00:c8:16:96:
ef:96:6d:ab:0e:19:3e:fa:e4:d5:d6:01:c8:31:4a:
11:87:e2:ab:7a:30:25:dd:ad:58:55:fa:cd:6a:2e:
45:b4:e4:bd:49:a8:7a:51:7f:18:26:e0:68:c7:37:
dc:96:92:a6:08:a8:ec:98:4b:ad:b0:5e:25:53:91:
34:f8:e1:6a:cd:8e:23:e2:12:0b:15:a0:fb:da:b4:
e0:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:F9:3F:A2:A1:25:55:17:67:86:FB:EF:77:67:74:38:DD:8C:E8:ED
X509v3 Authority Key Identifier:
keyid:DC:82:D2:C7:EB:5F:A5:43:E3:2F:1E:EE:19:CD:35:A5:67:3C:FA:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ILSx-tfpUPjLx7uGc01pWc8-uY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/842b5b-985c-44d7-9598-039dea50694e/1/Mvk_oqElVRdnhvvvd2d0ON2M6O0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/842b5b-985c-44d7-9598-039dea50694e/1/3ILSx-tfpUPjLx7uGc01pWc8-uY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.125.0/24
Signature Algorithm: sha256WithRSAEncryption
55:60:6c:35:75:57:b4:af:11:f2:3a:71:b2:a6:2a:b1:70:a8:
1b:64:f4:53:f4:b8:f6:a5:8f:b7:1c:2e:2d:73:61:1d:e3:32:
82:03:4c:cc:7e:ff:b6:3c:cc:70:43:f2:4a:eb:85:2b:86:2a:
2a:5d:ad:5c:d3:2e:1c:f8:ef:6a:72:d0:fb:5a:d6:6c:95:d0:
99:37:04:ac:56:1a:e9:dc:f5:f6:ea:c0:e5:46:d8:7f:d0:aa:
48:b5:ef:43:a9:e8:dd:23:1f:ac:f2:b7:41:27:86:ef:83:a2:
e9:79:41:1b:0c:9d:ad:33:11:aa:4d:05:9b:d0:16:e4:41:80:
8b:58:ec:d4:8a:40:7d:3a:a3:e0:ba:c9:95:97:28:65:59:58:
d2:5f:fb:1c:eb:e3:9c:95:91:42:7d:3f:6f:47:e2:55:fd:1d:
83:5a:c0:48:67:2b:ed:73:eb:5b:79:e9:8d:0d:66:10:96:93:
f1:ad:e6:25:49:2d:35:21:7e:49:c3:ca:75:23:60:7c:69:8a:
5b:dd:6a:a4:69:37:fb:0b:ed:01:69:57:99:2d:36:2b:df:98:
f6:ae:ac:29:8d:86:0a:3e:3c:10:4a:38:ab:2c:d5:fe:59:ef:
d1:13:95:d3:10:21:07:87:36:08:a2:e9:18:47:44:57:84:5f:
b6:ea:65:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 05:24:31 2025 by rpki-client