Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ce58d5-126a-44aa-aa08-0f3c1658d0b7/1/mqm7Jg5-zPabxGFXHWcZsQaK2dY.roa
File: mqm7Jg5-zPabxGFXHWcZsQaK2dY.roa (raw, json)
Hash identifier: /oBnHrhig1strh5pSaVLSZyr3E+b/5bhNvAnJC6HiAM=
Subject key identifier: 9A:A9:BB:26:0E:7E:CC:F6:9B:C4:61:57:1D:67:19:B1:06:8A:D9:D6
Certificate issuer: /CN=50963f0e67f4d893cf3d701a23610e6f38959260
Certificate serial: 019427485F9CF938A45621B5479B6A624A23
Authority key identifier: 50:96:3F:0E:67:F4:D8:93:CF:3D:70:1A:23:61:0E:6F:38:95:92:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UJY_Dmf02JPPPXAaI2EObziVkmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ce58d5-126a-44aa-aa08-0f3c1658d0b7/1/mqm7Jg5-zPabxGFXHWcZsQaK2dY.roa
Signing time: Thu 02 Jan 2025 13:50:41 +0000
ROA not before: Thu 02 Jan 2025 13:50:41 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39405
IP address blocks: 185.118.119.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:5f:9c:f9:38:a4:56:21:b5:47:9b:6a:62:4a:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50963f0e67f4d893cf3d701a23610e6f38959260
Validity
Not Before: Jan 2 13:50:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9aa9bb260e7eccf69bc461571d6719b1068ad9d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:4e:75:83:8a:7c:09:5f:ac:d3:91:f8:16:4f:
5f:4f:39:ea:bf:6b:15:eb:bf:5f:63:5e:ed:dc:a8:
88:c6:7b:3e:14:4c:c6:6b:bb:db:b6:f2:f5:e4:9f:
d0:af:57:ea:87:14:ac:e7:0e:da:29:00:a0:be:57:
a9:ee:49:a1:43:a5:10:41:82:f8:04:09:80:26:c7:
c3:31:a4:93:ae:e1:e6:bd:98:ca:d7:d1:55:e4:69:
5a:4c:97:a9:22:ae:53:ce:b6:2a:bc:46:20:e1:31:
ef:61:bd:a9:e1:42:e0:b5:17:7c:5c:34:31:6c:10:
0c:a7:6c:7c:20:e6:b1:40:8c:48:17:4b:56:3d:ca:
cb:6e:e4:3e:cb:c7:31:f0:1b:8a:cc:a2:3f:3e:70:
76:c3:20:16:54:8f:0d:1f:8e:72:ba:3c:a1:d2:41:
4f:43:49:ba:19:3c:d9:9d:e1:5c:45:db:19:3c:cb:
96:84:6d:26:51:7f:e2:65:d9:df:15:ee:8a:e1:9d:
9a:7d:6f:ec:48:94:7f:8c:dd:14:92:ff:ef:38:65:
69:04:31:bf:fe:68:3e:3a:49:df:cd:1e:18:ad:8d:
b4:e0:dd:a4:b5:96:68:4e:45:d0:c5:79:bf:a7:f8:
84:71:82:09:2c:e7:8e:81:f5:5f:ad:bd:2c:d1:31:
d6:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:A9:BB:26:0E:7E:CC:F6:9B:C4:61:57:1D:67:19:B1:06:8A:D9:D6
X509v3 Authority Key Identifier:
keyid:50:96:3F:0E:67:F4:D8:93:CF:3D:70:1A:23:61:0E:6F:38:95:92:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UJY_Dmf02JPPPXAaI2EObziVkmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ce58d5-126a-44aa-aa08-0f3c1658d0b7/1/mqm7Jg5-zPabxGFXHWcZsQaK2dY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ce58d5-126a-44aa-aa08-0f3c1658d0b7/1/UJY_Dmf02JPPPXAaI2EObziVkmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.118.119.0/24
Signature Algorithm: sha256WithRSAEncryption
39:bc:ff:2b:9a:76:1b:ad:4e:f1:97:80:fb:94:7d:6e:20:df:
8e:0f:79:a0:16:9d:89:57:f3:d1:86:33:8b:c4:b4:1b:46:29:
51:9a:65:c2:fa:8d:5f:3c:21:e4:1d:f2:a8:5b:b4:57:fe:3c:
51:99:51:60:37:ce:87:32:ea:8d:41:83:96:ed:da:45:07:e1:
8b:6e:51:69:e9:e8:4c:ca:5c:ce:49:4d:62:2b:cf:40:d9:ca:
f1:da:28:b0:4a:a1:f8:80:aa:7f:13:89:7a:1c:dd:21:1d:71:
c1:00:24:91:ff:1b:33:df:c1:29:0e:d1:cb:ce:b6:bb:9c:15:
c0:81:98:03:81:90:23:36:40:08:6c:37:3e:d6:81:28:de:6f:
cb:37:f2:3a:22:80:f2:ad:e8:f6:9c:af:29:80:75:d1:4a:a4:
a7:e2:d9:27:f2:b6:fc:ad:7c:5f:dc:e2:d9:6e:64:70:8b:46:
84:70:5b:fd:3d:4c:2e:1b:dd:0e:02:f6:25:2a:f6:0a:0a:92:
9c:40:d0:37:4b:4d:7f:54:ac:c0:41:ec:df:40:83:2f:5e:78:
af:c5:3e:d9:2b:20:7b:17:4a:60:63:5b:ef:9d:0a:ea:ad:5e:
88:59:81:da:e3:99:7f:b4:70:52:18:90:4e:57:39:9f:35:eb:
b0:36:4e:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 11:29:57 2025 by rpki-client