Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/MSKL781uGCZOtYKV2inWRfBBLtk.roa
File: MSKL781uGCZOtYKV2inWRfBBLtk.roa (raw, json)
Hash identifier: iVFca6nIET/nS9brswrypByi5SnLh9+Jmq0WMqkPaY4=
Subject key identifier: 31:22:8B:EF:CD:6E:18:26:4E:B5:82:95:DA:29:D6:45:F0:41:2E:D9
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 8A0CD53F
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/MSKL781uGCZOtYKV2inWRfBBLtk.roa
Signing time: Sun 05 Jun 2022 05:14:20 +0000
ROA not before: Sun 05 Jun 2022 05:14:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:181:22f:7a99/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2316096831 (0x8a0cd53f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jun 5 05:14:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31228befcd6e18264eb58295da29d645f0412ed9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:96:73:0f:97:18:ee:eb:41:74:08:d3:87:98:
72:69:f5:4e:d0:f8:09:d4:76:35:6f:59:38:a9:ae:
68:1a:a9:2a:a6:ba:a1:11:34:95:27:c4:bb:36:e4:
db:13:0b:e2:33:12:c5:c5:3f:40:a5:2b:57:41:0c:
f1:51:bd:86:c4:92:ec:85:f4:d1:e2:a6:f8:07:13:
4d:a5:4a:08:2b:85:a2:f7:95:41:0a:36:ab:be:20:
a4:0e:51:1e:01:59:55:50:bc:46:81:b4:36:b7:30:
54:09:4d:8a:3c:42:9b:82:fd:e5:3d:83:46:8a:ef:
fa:62:ae:4d:c8:f9:c8:ed:78:e5:4c:c1:5c:95:17:
81:e6:33:9f:7f:ed:65:8f:b6:71:0a:bc:a7:e4:af:
cf:2b:5d:c0:8f:1f:7a:59:71:23:f4:68:d8:fd:09:
24:12:71:dd:6a:4d:e5:bb:58:b8:b3:59:c1:ba:ca:
0e:77:30:6b:cf:c9:73:82:4d:42:b0:23:cf:e1:79:
c4:6c:4c:4d:f3:db:e3:40:0b:e7:5d:4b:e6:08:90:
9d:54:a4:c0:31:6a:0a:a3:40:ab:09:64:24:02:fe:
ca:45:09:7f:3f:ba:03:9d:c1:3f:11:64:3b:c4:cd:
0f:cd:6f:cc:d1:b1:29:15:c3:53:ce:c3:eb:c2:53:
85:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:22:8B:EF:CD:6E:18:26:4E:B5:82:95:DA:29:D6:45:F0:41:2E:D9
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/MSKL781uGCZOtYKV2inWRfBBLtk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
ad:b3:fd:2d:9f:a8:01:61:f2:bd:db:f6:0b:b0:bc:44:49:09:
ea:5b:25:6a:dd:66:47:e7:9b:2c:48:96:8d:5d:60:23:42:96:
6b:b5:9a:22:91:23:b0:34:3b:12:f2:a0:1d:68:73:7b:71:bb:
b2:d5:3f:04:7c:e4:3e:d9:a5:ca:a5:fc:ee:4d:b5:45:78:9c:
3b:84:e7:c2:d3:b4:c3:c5:46:b4:20:23:aa:d7:44:09:e4:f2:
7d:9d:f4:f0:4c:f2:10:c8:4f:40:ff:05:c6:ae:ac:8b:74:22:
06:a3:4e:ee:43:42:d7:ca:b1:b0:17:1a:13:0b:d3:d5:6a:27:
77:75:7d:65:32:21:fe:9b:07:2c:6c:01:86:ad:e5:44:76:31:
9a:b4:67:25:be:77:4f:ae:54:a0:e0:f2:e2:b8:e5:fb:92:70:
2b:42:9c:60:80:9b:38:1a:71:d2:3f:59:76:71:1d:e9:7c:24:
36:1f:ef:d0:97:3d:f7:3c:df:fd:0a:92:5d:41:ba:5c:4f:63:
25:e6:f3:96:ad:57:48:36:ad:d8:3d:45:92:a7:9f:7a:0a:0a:
48:d4:2b:b3:98:9a:bc:ab:33:6b:d0:8d:31:1e:0c:c4:37:c3:
d4:9d:1d:11:0a:02:1e:f7:46:2d:96:29:94:da:3f:d3:05:d8:
1c:08:01:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 21:28:35 2025 by rpki-client