Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/Qe-CvDBFhBHZ8fOjbKuz23oGKeE.roa
File: Qe-CvDBFhBHZ8fOjbKuz23oGKeE.roa (raw, json)
Hash identifier: EHYNUAhY0OD7mkD4gRmiZGisTP3nLjxgXhPcOI6y/fQ=
Subject key identifier: 41:EF:82:BC:30:45:84:11:D9:F1:F3:A3:6C:AB:B3:DB:7A:06:29:E1
Certificate issuer: /CN=71bddeaf0f30fbdaf9e75b92ac7d5bd13f285de7
Certificate serial: 019428269EAE14D226B90A246B6ECD835822
Authority key identifier: 71:BD:DE:AF:0F:30:FB:DA:F9:E7:5B:92:AC:7D:5B:D1:3F:28:5D:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cb3erw8w-9r551uSrH1b0T8oXec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/Qe-CvDBFhBHZ8fOjbKuz23oGKeE.roa
Signing time: Thu 02 Jan 2025 17:53:27 +0000
ROA not before: Thu 02 Jan 2025 17:53:27 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58612
IP address blocks: 45.142.1.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:26:9e:ae:14:d2:26:b9:0a:24:6b:6e:cd:83:58:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71bddeaf0f30fbdaf9e75b92ac7d5bd13f285de7
Validity
Not Before: Jan 2 17:53:27 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=41ef82bc30458411d9f1f3a36cabb3db7a0629e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:b1:b1:c5:46:d1:5d:a4:b4:6f:fb:d5:7a:db:
db:6c:85:a7:38:a8:a4:10:3c:9c:dd:94:0b:20:f2:
5c:6e:c0:f5:95:e8:95:61:d5:1c:b3:d7:04:c3:1a:
1a:fa:34:ba:76:eb:dc:9b:d3:41:2c:46:55:d0:6f:
42:5f:bd:28:7b:87:1d:cb:4f:1e:ec:59:9d:f2:5a:
f1:6f:fb:25:74:72:be:19:91:df:7c:87:7a:d3:64:
bb:a5:75:11:ee:c2:75:30:8b:da:83:12:99:a0:43:
f7:cd:c3:69:aa:4c:59:ca:83:e0:93:77:98:00:75:
8e:91:a4:f7:2d:8b:56:da:fb:53:5a:2e:53:87:4b:
51:fe:8f:6d:fd:da:da:c2:12:f9:9f:78:7a:4e:4a:
16:0a:f8:f1:6e:17:73:29:0a:86:92:07:ee:eb:74:
3f:e5:03:bc:62:4e:f8:92:8a:4b:ba:e2:d8:43:c7:
89:77:e9:9f:48:7f:a0:5a:51:db:35:4d:05:a4:3d:
09:ae:1e:76:bf:63:37:43:55:70:b1:56:11:29:50:
e9:d8:e2:7b:df:99:cb:dd:f9:07:c6:0b:78:c0:24:
53:cc:4c:32:e5:f2:58:fb:b9:46:1f:60:8f:2a:3f:
d8:a9:0e:09:cb:18:b8:9e:79:57:33:20:a8:84:a5:
0f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:EF:82:BC:30:45:84:11:D9:F1:F3:A3:6C:AB:B3:DB:7A:06:29:E1
X509v3 Authority Key Identifier:
keyid:71:BD:DE:AF:0F:30:FB:DA:F9:E7:5B:92:AC:7D:5B:D1:3F:28:5D:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb3erw8w-9r551uSrH1b0T8oXec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/Qe-CvDBFhBHZ8fOjbKuz23oGKeE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/cb3erw8w-9r551uSrH1b0T8oXec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.1.0/24
Signature Algorithm: sha256WithRSAEncryption
30:0d:c3:d9:c2:18:d8:19:fb:1d:02:52:a7:83:ab:0c:a4:48:
4a:e2:f9:65:01:5b:43:fb:18:8c:40:df:01:e9:2a:0e:a2:78:
88:52:e9:23:1a:7b:8a:5d:a1:93:b7:73:84:f4:99:aa:01:cc:
29:6d:9e:eb:2c:14:ae:3b:59:84:05:ee:00:2f:e8:31:37:67:
e5:c0:36:f3:b2:20:82:0c:e1:4d:d7:01:f0:1a:e3:af:52:30:
37:b1:0d:dc:b0:c9:cc:46:ca:a9:ae:1a:93:ae:bf:a5:b5:77:
bd:30:dd:42:1d:e8:c8:20:88:46:cf:e8:bf:f1:1b:0f:c8:6d:
b7:c2:0c:3b:79:4a:79:30:08:3d:ec:f2:b8:8b:be:da:b5:12:
00:70:d9:cd:ca:da:58:09:82:9f:04:f2:33:ce:b8:02:e3:0e:
3c:4b:98:5b:e6:74:04:3b:1a:a6:f1:94:db:a0:29:cb:d6:82:
d7:a3:d8:66:0f:6a:f7:ac:c6:04:18:76:27:12:5f:02:3e:ea:
d2:83:c0:52:b8:aa:48:15:e2:89:e7:3b:7d:f6:fa:46:83:e9:
11:1f:87:29:24:1d:82:ad:b9:38:99:09:20:28:2f:ed:07:c4:
88:98:58:d9:1e:3a:cb:48:71:0c:eb:80:8c:af:92:38:3b:d0:
66:32:e8:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 18:28:06 2025 by rpki-client