Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/0qQaWJ8iJTBMjv08wKFFk9nXzFg.roa
File: 0qQaWJ8iJTBMjv08wKFFk9nXzFg.roa (raw, json)
Hash identifier: JA2E4ShF02nP4t/Fo4lsJujVHjqIlaGjN1lLcqrr5bo=
Subject key identifier: D2:A4:1A:58:9F:22:25:30:4C:8E:FD:3C:C0:A1:45:93:D9:D7:CC:58
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 01882505CDFB6AA90E91DD2B067CDFD674A4
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/0qQaWJ8iJTBMjv08wKFFk9nXzFg.roa
Signing time: Tue 16 May 2023 14:45:17 +0000
ROA not before: Tue 16 May 2023 14:45:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48899
IP address blocks: 185.39.205.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:25:05:cd:fb:6a:a9:0e:91:dd:2b:06:7c:df:d6:74:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: May 16 14:45:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d2a41a589f2225304c8efd3cc0a14593d9d7cc58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:5f:55:c5:04:85:b1:e7:76:f3:ca:cf:73:fa:
3a:6c:d9:1e:f8:b2:0b:41:82:a4:cf:16:2e:6d:f8:
ec:c3:0b:26:7a:b6:ec:04:fa:17:50:b2:cb:d4:fb:
da:b9:74:e5:f6:3c:74:81:47:17:21:ee:55:21:cd:
e0:94:05:2f:1b:0e:ea:25:4b:e1:de:e5:21:ff:be:
5d:c9:84:b5:7b:f9:e9:e4:c0:51:8d:d6:a2:e0:c6:
ce:b1:ee:40:25:0d:43:ed:cd:b1:6b:8a:eb:e9:2c:
2b:78:b1:c4:e1:68:9e:8a:c2:03:cc:7a:31:37:e9:
57:72:f8:1f:bc:34:13:9a:25:f3:4b:4e:96:36:9c:
19:19:ee:fa:59:67:97:56:8e:42:b9:63:91:2d:06:
06:cb:af:be:80:51:b7:bb:d7:87:ef:77:19:47:19:
0a:30:e2:90:1a:07:08:e9:e2:17:b0:e6:7b:f5:b3:
f6:ed:7a:ee:08:fa:c3:40:2d:a1:4d:df:6b:03:0a:
33:06:c8:4d:e9:04:e0:08:f1:38:06:8a:f1:73:ac:
c8:c7:a1:3f:84:e6:bc:3e:13:3c:2f:0a:cc:e1:62:
83:7d:52:d3:7d:e2:03:61:6f:84:46:77:45:4e:3f:
15:4e:46:ab:8b:75:10:37:1d:38:e7:3d:e6:9d:17:
75:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:A4:1A:58:9F:22:25:30:4C:8E:FD:3C:C0:A1:45:93:D9:D7:CC:58
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/0qQaWJ8iJTBMjv08wKFFk9nXzFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.39.205.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:8f:2e:91:a9:54:c2:ec:15:76:5f:17:46:7f:a6:ac:ae:aa:
f4:16:dc:cc:bd:94:92:01:a0:36:a9:9f:86:9d:bf:af:9f:b1:
95:cf:e3:90:70:a2:b4:6d:6e:6c:50:72:b7:e5:18:11:fa:de:
f9:05:c3:bc:b8:56:0a:43:bd:b6:2c:50:93:91:6b:dc:3e:e0:
5c:d7:b5:47:36:43:c8:88:a3:1c:65:93:7e:88:19:33:2e:ed:
b4:74:69:f0:ce:b9:d1:9c:16:12:f7:5d:f2:11:de:b6:b0:03:
63:83:f8:a3:4e:d1:1c:6a:bd:7f:20:cd:aa:17:83:c8:9e:e6:
e5:98:55:35:9f:1f:a5:21:06:98:6e:28:59:7a:63:b2:0d:a1:
90:f5:43:de:26:95:94:b2:8f:ca:9a:53:8f:4b:4d:58:50:fc:
be:79:45:63:84:be:71:d2:da:a6:f1:37:62:00:42:45:54:63:
bc:96:57:bf:6d:54:bf:f1:4f:cb:ed:12:48:91:f5:b1:4c:6f:
7b:8a:e1:02:2d:15:9a:e4:07:b2:fd:ab:d5:f5:6e:ec:bf:c3:
6d:0f:10:96:39:61:62:fa:82:bc:c9:42:a4:a0:0c:5e:61:56:
59:9d:19:61:61:5e:01:9a:c8:ce:c5:96:42:42:e8:0f:43:5b:
0b:d6:28:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 23:54:20 2025 by rpki-client