Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MFeBsVEFv-VXfJA4s0kbwDLrsao.roa
File: MFeBsVEFv-VXfJA4s0kbwDLrsao.roa (raw, json)
Hash identifier: EMCcoY2pdOJ/xwyHG39NdP4RUjuyAAIrDAvEM6JIEKM=
Subject key identifier: 30:57:81:B1:51:05:BF:E5:57:7C:90:38:B3:49:1B:C0:32:EB:B1:AA
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 01942143BF667F0F00C05B2A203A7D442512
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MFeBsVEFv-VXfJA4s0kbwDLrsao.roa
Signing time: Wed 01 Jan 2025 09:47:55 +0000
ROA not before: Wed 01 Jan 2025 09:47:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204388
IP address blocks: 195.187.42.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:bf:66:7f:0f:00:c0:5b:2a:20:3a:7d:44:25:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Jan 1 09:47:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=305781b15105bfe5577c9038b3491bc032ebb1aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:fd:4f:39:47:33:0e:9f:bc:92:03:e8:00:5e:
fd:02:88:c6:95:05:56:4f:84:81:ac:b6:31:2c:78:
19:a3:ed:88:05:f9:d5:bb:2b:8c:13:f9:c0:35:81:
0b:e1:a3:3f:55:56:30:fa:c3:c0:a4:a7:78:ce:1d:
34:ee:ac:74:62:c1:b3:60:b7:c3:53:77:e3:2e:3e:
d4:d4:55:6f:77:6f:11:9e:5f:c2:a6:02:8d:16:a0:
fb:dc:5d:37:fc:02:94:9c:32:62:61:ef:b9:01:e0:
72:73:11:c1:7e:03:ee:e7:23:f5:1a:9d:1d:20:ca:
bb:5b:cd:a4:22:41:20:6d:0c:8a:64:5e:9b:61:d7:
1a:da:ac:07:1d:e2:45:8f:0e:18:e5:7e:67:5c:fa:
eb:98:59:e0:a6:12:69:d7:d4:9c:e0:17:ff:9e:82:
0a:e5:7a:ea:aa:68:41:6c:df:01:e7:d4:c5:c0:07:
24:13:f4:1b:02:bb:29:33:9d:3d:41:fe:a5:cb:8d:
d7:c2:6b:ac:a3:c0:9e:90:2e:e0:7d:16:97:79:a2:
9a:30:53:ae:f8:b4:d0:c2:90:ed:3c:cc:0a:31:d2:
d0:cc:0d:d9:09:26:e3:4a:fc:f0:1c:03:6a:c0:6e:
ca:27:6e:8d:2b:a0:ac:92:41:3e:01:9e:8d:43:8a:
f5:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:57:81:B1:51:05:BF:E5:57:7C:90:38:B3:49:1B:C0:32:EB:B1:AA
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MFeBsVEFv-VXfJA4s0kbwDLrsao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.187.42.0/24
Signature Algorithm: sha256WithRSAEncryption
28:bf:09:e8:e2:06:35:56:a1:58:59:66:2f:58:d6:78:cf:6b:
81:46:e4:8c:ae:52:30:9a:8d:e2:de:da:d6:4a:d7:e3:44:65:
06:32:1d:57:73:62:1c:03:d4:04:f8:e3:8f:49:16:25:0e:85:
d6:47:1c:b2:a9:1f:af:eb:d3:b0:1d:f0:e4:92:d7:05:e4:18:
a9:0e:2f:dd:80:20:7e:be:a9:4e:6b:19:c2:eb:bf:5d:e7:f0:
6d:e0:1b:19:bb:08:45:06:27:d5:7b:1c:cc:62:72:79:0b:19:
33:c6:46:0d:c7:73:6d:83:80:fd:d4:b5:d1:f9:69:9a:12:35:
38:ea:81:64:72:20:92:5c:b2:72:2c:c6:97:9f:4d:e5:c2:47:
32:6a:e6:b6:1f:e6:84:12:cc:d9:25:e6:ce:38:e2:66:ce:ea:
e7:e8:f2:ff:78:de:ff:ea:c0:ea:f4:21:8f:84:f3:c0:26:8c:
e7:d0:eb:f0:8c:ec:6b:7f:8e:2e:1e:fa:47:ab:d0:2a:b8:31:
f4:77:b3:77:f6:8c:ad:d5:05:69:50:8a:94:d2:f5:c5:cf:c7:
da:4a:81:ff:bc:7b:35:df:17:af:f5:5f:77:42:ad:30:2b:10:
6a:2a:7a:ef:79:89:4a:3a:3d:aa:eb:cf:f9:69:c1:2d:f6:89:
e0:a0:16:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 07:32:49 2025 by rpki-client