Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b05667-e850-4c45-aee3-aded1c469eaf/1/CkNJTmPQJYQ_MfgWt_qPISpjHfg.roa
File: CkNJTmPQJYQ_MfgWt_qPISpjHfg.roa (raw, json)
Hash identifier: qG9Z2rLkFr1Vmea2q1Wmoyhhg6jqa9C65AeyXksg/3U=
Subject key identifier: 0A:43:49:4E:63:D0:25:84:3F:31:F8:16:B7:FA:8F:21:2A:63:1D:F8
Certificate issuer: /CN=e1ef9694aa48d81279e8ede430795f2768d2dd52
Certificate serial: 01953D810DBD9C8C49F3F042AE50396C0AE6
Authority key identifier: E1:EF:96:94:AA:48:D8:12:79:E8:ED:E4:30:79:5F:27:68:D2:DD:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4e-WlKpI2BJ56O3kMHlfJ2jS3VI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b05667-e850-4c45-aee3-aded1c469eaf/1/CkNJTmPQJYQ_MfgWt_qPISpjHfg.roa
Signing time: Tue 25 Feb 2025 14:27:02 +0000
ROA not before: Tue 25 Feb 2025 14:27:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215224
IP address blocks: 185.39.50.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:3d:81:0d:bd:9c:8c:49:f3:f0:42:ae:50:39:6c:0a:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1ef9694aa48d81279e8ede430795f2768d2dd52
Validity
Not Before: Feb 25 14:27:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0a43494e63d025843f31f816b7fa8f212a631df8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:9d:62:30:2e:1f:de:b1:f7:b3:1e:15:fb:c1:
45:4d:8e:74:b7:75:f0:a9:1b:dd:1b:13:c5:ff:32:
50:9a:df:50:82:14:bf:45:4f:38:65:3b:48:fc:11:
6d:8f:09:82:9d:85:a9:32:37:27:e4:f3:b0:30:45:
39:fd:fa:66:96:5e:a6:b1:d1:dc:f2:56:42:9e:9a:
86:e1:c4:df:62:6b:a6:13:ad:80:b4:4e:d8:d6:ff:
60:ec:27:fb:43:1e:9e:39:b9:e8:e8:6c:90:d8:17:
b8:bc:2f:97:dd:62:1e:3c:33:85:9d:06:f8:e3:19:
0a:67:a8:92:c3:97:e3:c9:a3:1b:55:52:62:aa:33:
f9:6a:38:a8:53:7b:e4:1f:e4:83:55:f6:4d:20:50:
c9:3f:64:e5:ae:34:8e:3c:8c:c3:51:31:0b:97:7f:
d8:02:ba:77:e8:63:3a:0c:17:61:42:b4:a4:9e:06:
36:bb:b5:5e:1d:9b:66:66:f2:f6:22:d1:66:bd:35:
26:3a:f2:1e:0b:01:0e:f2:38:9c:90:1c:ad:9e:20:
8b:e3:bc:16:79:37:a7:4d:0e:b9:67:54:89:de:b5:
30:dd:28:84:91:e0:ee:99:ce:40:6a:3e:90:ab:20:
4c:66:e8:56:66:ec:fc:33:3c:55:ea:3f:0d:73:e9:
01:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:43:49:4E:63:D0:25:84:3F:31:F8:16:B7:FA:8F:21:2A:63:1D:F8
X509v3 Authority Key Identifier:
keyid:E1:EF:96:94:AA:48:D8:12:79:E8:ED:E4:30:79:5F:27:68:D2:DD:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e-WlKpI2BJ56O3kMHlfJ2jS3VI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b05667-e850-4c45-aee3-aded1c469eaf/1/CkNJTmPQJYQ_MfgWt_qPISpjHfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b05667-e850-4c45-aee3-aded1c469eaf/1/4e-WlKpI2BJ56O3kMHlfJ2jS3VI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.39.50.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:d1:75:d2:b8:4f:42:69:50:76:9e:e5:00:db:d9:7a:1b:03:
d8:39:67:36:1e:28:e6:ad:f0:51:22:f8:10:6e:1f:14:c7:48:
ef:ec:76:d2:b5:8d:94:de:79:e0:03:2d:76:2a:a6:dd:24:81:
2b:38:ce:b1:f7:6a:cb:b5:25:7b:92:5d:65:63:9f:f2:de:72:
35:50:7b:74:5d:54:4b:aa:46:2c:89:1b:c5:3f:fe:7d:97:95:
9b:75:71:bc:1e:c7:76:3d:e9:ad:6f:8b:12:cd:87:8e:7c:dd:
3c:56:ee:1a:5d:e6:47:6e:8f:68:a9:c3:d2:b7:7d:ee:bc:2b:
48:42:d2:0e:6d:9b:f8:f1:c1:03:a8:dc:fe:32:59:88:c4:ac:
9b:6e:1a:05:c8:31:79:ad:a7:4e:aa:fb:1d:f6:30:6e:19:80:
60:e2:57:13:6c:39:6d:05:68:7f:7a:ee:18:d0:5a:33:0b:79:
c6:fe:cf:ca:f9:7c:30:0a:68:6a:33:ae:b3:ab:be:34:a4:c7:
83:ec:07:51:d0:3c:e4:45:ee:1a:32:3a:82:bb:9d:3e:e2:0b:
9b:18:9f:32:02:d4:95:ae:0e:f3:2a:9a:79:fe:de:d1:c4:e2:
3a:dd:18:5c:29:f9:af:8e:67:1c:cd:b6:57:54:4f:2a:d6:3a:
16:d1:f4:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:40:54 2025 by rpki-client