Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/QTZASS7WNd6TYPew0TLQS0CJ9lA.roa
File: QTZASS7WNd6TYPew0TLQS0CJ9lA.roa (raw, json)
Hash identifier: 3aQ/SEroVhIgBkBzT4aMHkRTldnU+7Bt5y54kbVXIK0=
Subject key identifier: 41:36:40:49:2E:D6:35:DE:93:60:F7:B0:D1:32:D0:4B:40:89:F6:50
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 018F28E89758B4FFE68A092815C73BB1E10C
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/QTZASS7WNd6TYPew0TLQS0CJ9lA.roa
Signing time: Mon 29 Apr 2024 08:11:22 +0000
ROA not before: Mon 29 Apr 2024 08:11:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6830
IP address blocks: 80.81.39.0/24 maxlen: 24
80.81.40.0/24 maxlen: 24
80.81.41.0/24 maxlen: 24
80.81.47.0/24 maxlen: 24
80.81.48.0/24 maxlen: 24
80.81.49.0/24 maxlen: 24
80.81.50.0/24 maxlen: 24
80.81.52.0/24 maxlen: 24
80.81.53.0/24 maxlen: 24
80.81.56.0/24 maxlen: 24
80.81.58.0/24 maxlen: 24
83.223.128.0/24 maxlen: 24
83.223.129.0/24 maxlen: 24
83.223.130.0/24 maxlen: 24
83.223.131.0/24 maxlen: 24
83.223.134.0/24 maxlen: 24
83.223.135.0/24 maxlen: 24
83.223.137.0/24 maxlen: 24
83.223.138.0/24 maxlen: 24
83.223.140.0/24 maxlen: 24
83.223.142.0/24 maxlen: 24
83.223.144.0/24 maxlen: 24
83.223.148.0/24 maxlen: 24
83.223.152.0/24 maxlen: 24
83.223.153.0/24 maxlen: 24
83.223.154.0/24 maxlen: 24
83.223.156.0/24 maxlen: 24
83.223.157.0/24 maxlen: 24
83.223.158.0/24 maxlen: 24
85.254.41.0/24 maxlen: 24
85.254.45.0/24 maxlen: 24
85.254.46.0/24 maxlen: 24
85.254.52.0/24 maxlen: 24
85.254.53.0/24 maxlen: 24
85.254.54.0/24 maxlen: 24
85.254.55.0/24 maxlen: 24
85.254.66.0/24 maxlen: 24
85.254.67.0/24 maxlen: 24
85.254.70.0/24 maxlen: 24
85.254.72.0/24 maxlen: 24
85.254.133.0/24 maxlen: 24
85.254.135.0/24 maxlen: 24
85.254.165.0/24 maxlen: 24
85.254.166.0/24 maxlen: 24
85.254.167.0/24 maxlen: 24
85.254.171.0/24 maxlen: 24
85.254.188.0/24 maxlen: 24
85.254.189.0/24 maxlen: 24
85.254.190.0/24 maxlen: 24
85.254.191.0/24 maxlen: 24
91.190.37.0/24 maxlen: 24
91.190.38.0/24 maxlen: 24
91.190.39.0/24 maxlen: 24
91.190.40.0/24 maxlen: 24
91.190.41.0/24 maxlen: 24
91.190.43.0/24 maxlen: 24
91.190.44.0/24 maxlen: 24
91.190.46.0/24 maxlen: 24
91.190.47.0/24 maxlen: 24
91.190.61.0/24 maxlen: 24
91.190.62.0/24 maxlen: 24
94.101.226.0/24 maxlen: 24
94.101.237.0/24 maxlen: 24
159.148.143.0/24 maxlen: 24
159.148.148.0/24 maxlen: 24
159.148.149.0/24 maxlen: 24
159.148.181.0/24 maxlen: 24
159.148.240.0/24 maxlen: 24
159.148.242.0/24 maxlen: 24
159.148.243.0/24 maxlen: 24
185.176.116.0/24 maxlen: 24
185.176.119.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:28:e8:97:58:b4:ff:e6:8a:09:28:15:c7:3b:b1:e1:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Apr 29 08:11:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=413640492ed635de9360f7b0d132d04b4089f650
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:fb:48:fe:bd:ac:b8:e2:e4:87:0b:0f:09:8a:
5c:23:49:8a:6b:c4:97:59:89:dd:6c:83:a8:5d:16:
06:02:50:56:d6:09:e6:54:b6:d9:d7:37:59:9d:0c:
6c:2b:56:05:32:ee:ef:c7:1d:94:c9:1b:9f:2a:48:
cc:ee:f4:93:c1:4d:94:b0:9f:dd:54:aa:34:1c:bf:
6b:84:09:5c:4d:76:0d:d5:d8:bc:fd:22:fc:90:a6:
86:b6:aa:f7:ef:a7:af:b2:6b:39:c4:c6:da:d1:a0:
a5:33:3b:4a:2d:33:c0:8a:46:07:f3:89:45:9a:43:
2c:5c:35:08:98:6d:f0:2b:f8:07:76:47:6a:7b:60:
53:b9:c7:05:42:bc:b4:93:59:46:38:fb:c2:7f:95:
28:08:9a:ec:72:c8:8a:25:5e:39:c6:5b:83:7c:07:
40:99:c7:30:17:29:ec:c1:a4:56:92:b2:5b:01:4c:
b9:cd:f9:9e:be:d7:09:23:9b:8d:db:b5:cd:e2:52:
90:5e:ff:d7:2f:23:d7:2e:4e:1e:05:16:7c:48:db:
a9:27:56:8b:ec:7a:bb:68:0c:33:31:35:b5:6f:97:
05:72:cb:a7:67:3c:a5:4f:5d:88:2e:80:da:ea:f6:
c7:b8:3a:66:ec:a2:7e:9a:0f:03:d9:fc:38:20:9e:
fb:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:36:40:49:2E:D6:35:DE:93:60:F7:B0:D1:32:D0:4B:40:89:F6:50
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/QTZASS7WNd6TYPew0TLQS0CJ9lA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.81.39.0-80.81.41.255
80.81.47.0-80.81.50.255
80.81.52.0/23
80.81.56.0/24
80.81.58.0/24
83.223.128.0/22
83.223.134.0/23
83.223.137.0-83.223.138.255
83.223.140.0/24
83.223.142.0/24
83.223.144.0/24
83.223.148.0/24
83.223.152.0-83.223.154.255
83.223.156.0-83.223.158.255
85.254.41.0/24
85.254.45.0-85.254.46.255
85.254.52.0/22
85.254.66.0/23
85.254.70.0/24
85.254.72.0/24
85.254.133.0/24
85.254.135.0/24
85.254.165.0-85.254.167.255
85.254.171.0/24
85.254.188.0/22
91.190.37.0-91.190.41.255
91.190.43.0-91.190.44.255
91.190.46.0/23
91.190.61.0-91.190.62.255
94.101.226.0/24
94.101.237.0/24
159.148.143.0/24
159.148.148.0/23
159.148.181.0/24
159.148.240.0/24
159.148.242.0/23
185.176.116.0/24
185.176.119.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:2a:c4:7b:f9:3c:5f:dc:83:19:e0:e5:de:1f:5a:0f:fb:f2:
86:2e:59:9d:79:fb:66:04:ff:90:66:7b:5c:1d:71:d5:bf:92:
b5:fb:b8:ce:59:dc:c2:61:8b:42:21:b6:b0:66:22:10:7a:a3:
31:94:b5:a5:91:00:4a:57:aa:47:eb:c6:e7:12:40:66:ed:96:
61:5f:82:31:58:fb:84:a0:c1:5d:c0:84:ef:28:c4:d5:9c:b0:
bf:f5:58:f4:c6:60:37:e2:cb:97:73:6b:3e:69:59:79:50:e5:
e0:45:c2:8b:67:19:b9:27:37:53:1b:c3:96:50:cf:fb:a9:61:
72:ec:f4:97:e4:70:24:2c:33:a9:e8:7b:b3:f6:84:49:d3:a9:
17:8a:ff:78:22:dc:be:c4:b0:56:c5:01:32:01:cc:40:d0:d7:
0f:dc:ff:9b:52:5f:6d:c0:8c:63:79:c1:84:dc:07:ec:0e:1c:
ab:7c:39:37:81:87:3b:09:87:7b:8b:0b:24:95:6d:9f:90:6b:
52:8a:dc:07:e1:4b:eb:50:93:51:67:81:77:9f:ed:f8:cd:ae:
29:e2:b9:29:23:7c:4a:b6:ef:3c:e6:8d:15:ef:94:10:04:88:
67:25:ef:79:a6:ee:46:e4:aa:39:c8:aa:17:af:5d:92:86:c5:
83:a4:d4:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:24:35 2025 by rpki-client