Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/07f270-c6cc-49cd-ae46-5100a26d274b/1/MtLhAuf2NgYHgf0idQEjB2O5NSs.roa
File: MtLhAuf2NgYHgf0idQEjB2O5NSs.roa (raw, json)
Hash identifier: au7HQECLFDd4UQvAj9wy4z/oD6hBOrQVLU0RNpgJw7c=
Subject key identifier: 32:D2:E1:02:E7:F6:36:06:07:81:FD:22:75:01:23:07:63:B9:35:2B
Certificate issuer: /CN=4ea65c7edba469d099d76aacd7dc263f4dfec5eb
Certificate serial: 019424B26E34B6488F2DB1A5A50362E128E8
Authority key identifier: 4E:A6:5C:7E:DB:A4:69:D0:99:D7:6A:AC:D7:DC:26:3F:4D:FE:C5:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TqZcftukadCZ12qs19wmP03-xes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/07f270-c6cc-49cd-ae46-5100a26d274b/1/MtLhAuf2NgYHgf0idQEjB2O5NSs.roa
Signing time: Thu 02 Jan 2025 01:47:40 +0000
ROA not before: Thu 02 Jan 2025 01:47:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199949
IP address blocks: 178.60.197.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:6e:34:b6:48:8f:2d:b1:a5:a5:03:62:e1:28:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ea65c7edba469d099d76aacd7dc263f4dfec5eb
Validity
Not Before: Jan 2 01:47:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=32d2e102e7f636060781fd227501230763b9352b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:6c:c4:85:d7:27:9c:88:7f:19:99:97:6a:96:
d7:a7:33:6b:bf:6f:a4:81:0a:a8:e7:b9:ca:d2:d8:
4b:9c:5b:31:db:79:ff:a7:2e:90:4f:77:c3:35:ab:
ce:51:a9:92:c5:98:13:ef:07:e8:d3:32:c8:3b:e7:
fd:b3:03:93:37:cf:17:b8:ed:53:82:6d:43:93:54:
a6:b4:96:22:2b:a3:9d:43:8a:9e:e2:fb:dd:b7:40:
4f:9a:18:bb:e9:67:9e:f9:e9:0a:12:fc:51:b0:66:
e0:8c:fc:de:ae:57:f5:23:32:2b:c9:92:6d:8b:00:
f9:7c:68:84:a6:37:af:b7:e8:74:ab:d4:62:03:6d:
cd:2a:d5:90:41:02:16:61:37:ef:33:29:5e:9d:cf:
ae:a9:8f:ad:ca:ae:b3:ea:b0:d1:63:94:0b:64:46:
8a:c7:de:d9:b5:75:ec:2f:49:2e:d8:bb:4b:7e:12:
48:fe:59:f8:cc:23:11:02:65:74:08:72:65:6e:b8:
13:a5:e7:6f:88:a3:7c:d0:49:da:de:2d:a6:df:66:
66:91:aa:e6:40:34:8f:bc:4b:b1:b7:d5:6a:46:f9:
e8:54:c6:9a:6d:c1:16:b7:a7:d7:87:89:67:ce:51:
31:8f:f9:dd:5c:da:bf:bb:fc:1b:60:7d:7a:4c:1d:
33:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:D2:E1:02:E7:F6:36:06:07:81:FD:22:75:01:23:07:63:B9:35:2B
X509v3 Authority Key Identifier:
keyid:4E:A6:5C:7E:DB:A4:69:D0:99:D7:6A:AC:D7:DC:26:3F:4D:FE:C5:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TqZcftukadCZ12qs19wmP03-xes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/07f270-c6cc-49cd-ae46-5100a26d274b/1/MtLhAuf2NgYHgf0idQEjB2O5NSs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/07f270-c6cc-49cd-ae46-5100a26d274b/1/TqZcftukadCZ12qs19wmP03-xes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.60.197.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:3b:dd:81:d8:e8:70:7b:ed:95:5a:4c:9c:fb:1c:73:0a:68:
c3:7c:85:62:ee:3b:a8:8e:f8:1b:59:8c:44:a8:cd:6b:c0:8d:
f6:3b:62:80:ad:f1:65:d6:af:71:41:25:5a:f7:6b:ad:bd:ae:
ef:b6:4f:db:07:51:58:b3:a2:28:77:57:7e:cb:57:72:bc:65:
77:3c:1f:91:89:cb:58:09:d9:b6:46:a7:ff:38:82:af:00:1f:
fc:0f:c2:b4:21:a5:d5:51:ce:55:62:61:49:09:90:e6:6c:5b:
d9:aa:f6:11:f1:1b:00:25:d4:33:98:84:55:a0:76:59:36:a3:
73:f7:21:94:ab:3b:10:f8:5c:d0:19:89:45:b1:8d:cf:a6:7f:
45:b4:7b:07:80:85:03:a4:c8:9a:b8:a9:c6:e4:33:e7:41:f4:
3c:25:18:03:bc:74:87:b3:e7:a9:62:07:fb:fe:bb:ae:88:e4:
66:fe:29:1b:fd:3f:4b:d2:81:08:39:87:4b:27:f6:43:3d:7c:
a3:21:b6:87:3f:f6:47:ca:e0:ac:6c:5c:e3:03:a5:1d:4e:30:
3b:b2:6e:0c:bb:9a:45:f0:89:35:da:4f:3d:ff:ec:f3:62:13:
d3:d7:c0:79:99:fe:fa:88:35:a6:6b:2c:a7:cd:08:89:33:e9:
73:76:9e:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 11:40:56 2025 by rpki-client