Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/47c2da-9c68-4f6f-9798-282fa2c01153/1/jhae41lBxgum19Q0YmdVzc2ofw0.roa
File: jhae41lBxgum19Q0YmdVzc2ofw0.roa (raw, json)
Hash identifier: x1mZ5Yned7zFdt78wzWndyqBFeaTJjBaYlvrRS6j15I=
Subject key identifier: 8E:16:9E:E3:59:41:C6:0B:A6:D7:D4:34:62:67:55:CD:CD:A8:7F:0D
Certificate issuer: /CN=505046da726aef99beb88a30c8a6faefe7520753
Certificate serial: 019426D95B9897D756648EA3BC84EFB083A0
Authority key identifier: 50:50:46:DA:72:6A:EF:99:BE:B8:8A:30:C8:A6:FA:EF:E7:52:07:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFBG2nJq75m-uIowyKb67-dSB1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/47c2da-9c68-4f6f-9798-282fa2c01153/1/jhae41lBxgum19Q0YmdVzc2ofw0.roa
Signing time: Thu 02 Jan 2025 11:49:26 +0000
ROA not before: Thu 02 Jan 2025 11:49:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29684
IP address blocks: 195.43.137.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:5b:98:97:d7:56:64:8e:a3:bc:84:ef:b0:83:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=505046da726aef99beb88a30c8a6faefe7520753
Validity
Not Before: Jan 2 11:49:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8e169ee35941c60ba6d7d434626755cdcda87f0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:0e:20:a1:60:19:e7:b5:1a:34:fd:04:d2:59:
02:9e:cc:66:37:f8:51:fe:ab:e4:75:0b:8a:48:3a:
67:a6:a5:2f:3f:7a:e2:6c:d6:80:71:d1:d2:25:ab:
a7:24:c1:24:70:6f:2e:9b:43:b0:4b:35:ce:ed:27:
b8:dd:76:4f:9c:7f:b6:24:d6:7a:91:45:e3:8e:55:
26:ba:d8:26:78:cb:5b:84:49:b0:1a:d0:ec:60:eb:
c3:41:9a:48:11:ba:6e:5b:f1:2a:4d:25:59:41:a5:
58:03:45:ad:2c:4c:4b:cf:0a:21:d4:81:ec:ad:24:
2b:0b:e5:08:c3:db:2f:ad:d4:10:94:83:45:f6:3d:
54:a9:82:93:88:d6:fc:a3:96:ba:e6:01:4d:00:37:
e5:50:28:b4:ad:65:38:0c:9c:16:46:c7:63:94:91:
df:d4:ee:9b:54:8c:9a:b6:f3:37:c1:3d:1e:62:a0:
b9:2f:9a:6d:d4:36:d8:51:0e:bc:29:0c:91:92:b9:
25:f0:4e:61:89:40:03:6f:ad:41:ab:94:34:5a:36:
f0:8f:d9:7e:bc:4e:f6:79:6f:f2:6a:9c:f7:08:15:
7b:67:bf:30:19:25:81:9b:df:cf:13:b8:7e:39:6d:
c8:7b:8b:79:8f:77:25:fd:dc:2d:d9:54:0e:b7:49:
6d:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:16:9E:E3:59:41:C6:0B:A6:D7:D4:34:62:67:55:CD:CD:A8:7F:0D
X509v3 Authority Key Identifier:
keyid:50:50:46:DA:72:6A:EF:99:BE:B8:8A:30:C8:A6:FA:EF:E7:52:07:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFBG2nJq75m-uIowyKb67-dSB1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/47c2da-9c68-4f6f-9798-282fa2c01153/1/jhae41lBxgum19Q0YmdVzc2ofw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/47c2da-9c68-4f6f-9798-282fa2c01153/1/UFBG2nJq75m-uIowyKb67-dSB1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.43.137.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:3f:4d:33:9c:a8:c6:e6:63:7c:47:43:ea:87:b7:68:38:f8:
76:08:ba:98:e7:59:e2:a8:cb:8e:35:5b:87:ef:20:8e:d2:a8:
ad:66:28:d3:42:75:58:76:b6:88:cd:3d:6a:8a:66:b9:12:72:
c9:1e:05:f5:44:82:f2:f2:6b:40:4d:8b:c9:cd:ba:7a:48:0a:
1c:fb:7f:fe:24:50:a2:a4:93:ea:f3:dc:33:0c:7f:58:d5:e7:
3c:4d:eb:86:2c:6a:9b:53:f2:51:2c:bd:0e:1b:62:7b:08:66:
35:d2:40:39:a8:7a:ef:91:55:a9:99:d0:89:57:00:95:90:41:
d0:82:da:b6:d9:5a:da:80:b9:2d:25:92:91:b4:f7:02:b8:99:
31:34:5d:9f:69:b2:9d:4e:01:b0:1e:e0:09:cb:4e:df:5f:03:
81:66:69:5e:07:ee:c6:9e:8a:fa:d1:41:b9:40:c5:97:cf:b6:
b8:db:e4:78:cf:dd:bf:eb:15:cc:43:a9:21:90:59:1c:e1:56:
f9:b2:ad:a7:90:8b:47:69:b2:fe:a4:fd:77:5e:0b:e7:c9:f2:
9f:b7:6d:bb:2a:58:87:9b:b6:39:ce:db:a7:f3:23:b2:34:45:
ec:7c:35:ab:4a:7e:b2:3b:17:86:d9:e1:f1:2c:82:6d:98:d0:
8e:d1:37:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 05:33:24 2025 by rpki-client