Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/fcb7af-56d0-4c55-a778-073e3b7ad850/1/MIsHJfMxCSM1WvbxV6mjQ2268Dg.roa
File: MIsHJfMxCSM1WvbxV6mjQ2268Dg.roa (raw, json)
Hash identifier: 7IHu7bEPJwg7z9jyxbfl0xePWRPgEqdEgg/sFRD/jOU=
Subject key identifier: 30:8B:07:25:F3:31:09:23:35:5A:F6:F1:57:A9:A3:43:6D:BA:F0:38
Certificate issuer: /CN=8445acd31bccbd345f964ad907ca7783d504026d
Certificate serial: 019423D6A1756B6DB0107B3DC94C6F9A73F4
Authority key identifier: 84:45:AC:D3:1B:CC:BD:34:5F:96:4A:D9:07:CA:77:83:D5:04:02:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hEWs0xvMvTRflkrZB8p3g9UEAm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/fcb7af-56d0-4c55-a778-073e3b7ad850/1/MIsHJfMxCSM1WvbxV6mjQ2268Dg.roa
Signing time: Wed 01 Jan 2025 21:47:36 +0000
ROA not before: Wed 01 Jan 2025 21:47:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8075
IP address blocks: 143.223.177.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:a1:75:6b:6d:b0:10:7b:3d:c9:4c:6f:9a:73:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8445acd31bccbd345f964ad907ca7783d504026d
Validity
Not Before: Jan 1 21:47:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=308b0725f3310923355af6f157a9a3436dbaf038
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:bd:06:a7:31:0d:d2:73:73:45:03:33:34:5a:
93:10:65:9e:1a:2a:30:a7:4a:92:e9:68:76:d5:20:
c2:34:d8:7d:15:84:cf:7f:1c:8e:8a:af:f6:19:b3:
52:94:19:86:e7:1a:b1:38:d6:6a:b6:00:e7:23:62:
fa:9f:50:98:6f:03:69:99:0a:ec:55:19:e1:cd:e1:
32:63:12:51:1e:f6:99:41:ad:a5:1d:0e:17:7b:56:
d1:65:26:f2:a7:a8:23:59:54:a1:22:b2:03:4e:ce:
45:9b:8c:48:c7:95:86:32:70:91:dd:5d:46:df:34:
19:34:03:15:ed:c7:c4:27:9a:16:7d:50:97:35:69:
71:60:61:e2:50:99:28:8d:dc:e6:6d:c7:47:a7:dd:
1d:3b:8a:0a:29:65:ca:60:1a:8e:d7:5f:9a:89:fc:
6d:7f:c7:7f:30:33:a4:4a:d5:e6:ba:81:01:26:3a:
d7:3f:32:64:18:52:e5:43:75:21:42:2e:14:15:99:
16:01:cd:33:30:26:45:01:c3:d0:49:d4:f1:17:83:
93:3f:3f:86:91:e9:8f:16:ac:70:fd:6f:85:17:3e:
42:47:b1:8a:4c:01:40:ce:f6:16:d4:47:4e:25:78:
76:0b:1d:5c:7d:c2:6b:2b:28:7a:50:c7:9c:55:d5:
81:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:8B:07:25:F3:31:09:23:35:5A:F6:F1:57:A9:A3:43:6D:BA:F0:38
X509v3 Authority Key Identifier:
keyid:84:45:AC:D3:1B:CC:BD:34:5F:96:4A:D9:07:CA:77:83:D5:04:02:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hEWs0xvMvTRflkrZB8p3g9UEAm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fcb7af-56d0-4c55-a778-073e3b7ad850/1/MIsHJfMxCSM1WvbxV6mjQ2268Dg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fcb7af-56d0-4c55-a778-073e3b7ad850/1/hEWs0xvMvTRflkrZB8p3g9UEAm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.223.177.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:ad:08:3c:d8:79:ae:91:24:2b:3c:5a:55:99:3f:63:62:d4:
db:0e:4d:82:8f:03:e5:60:c4:71:2c:92:fe:af:a7:7f:a7:f3:
7f:77:71:bd:e8:65:41:06:56:41:1f:bb:74:c2:b9:fe:4e:33:
e8:55:81:86:e1:42:14:32:f6:c5:33:2c:4b:ad:96:4f:04:15:
1c:ff:da:80:c2:6f:99:52:e9:df:c5:44:35:dd:ec:1d:ea:8f:
4b:75:5d:3b:3e:b9:fc:f4:62:a9:5b:1a:cf:2b:ac:bf:6e:37:
62:f2:1a:22:61:e4:7a:de:bc:b1:df:2b:08:fb:d3:e9:2a:13:
a8:8e:d3:b7:c7:f1:8f:11:30:61:dc:99:f9:56:8a:64:c5:a6:
54:56:e7:e2:a4:a6:3f:1a:20:43:ab:4a:f6:b6:a8:19:dc:7e:
41:19:a4:db:d9:a0:2d:99:9a:3a:f0:55:b3:14:4a:79:f5:0c:
1e:9b:3f:48:fb:83:e0:e6:1e:70:e8:80:6f:72:70:81:0c:ca:
55:c5:ea:29:be:e3:20:f5:ed:9b:48:8f:3e:d8:55:1d:2a:af:
32:00:49:08:15:d9:46:bb:94:9a:8b:b7:c3:c6:c9:ef:fe:26:
05:b5:66:91:a6:30:85:27:dd:4a:2c:e9:79:e1:7c:c1:58:b0:
95:b1:a4:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 06:08:14 2025 by rpki-client