Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/2efce0-82ee-43ce-8f28-6bfc33501479/1/Qv3hVGEIw5Ck_5QiJYApdipPmqI.roa
File: Qv3hVGEIw5Ck_5QiJYApdipPmqI.roa (raw, json)
Hash identifier: C4rOq98XQlQBOJoaFTi64wzA4+qXQilqH0FLuH6cokY=
Subject key identifier: 42:FD:E1:54:61:08:C3:90:A4:FF:94:22:25:80:29:76:2A:4F:9A:A2
Certificate issuer: /CN=7731b62b0e159ba6ccd87f73275a868ebcc41ab8
Certificate serial: 01941FFA6009EB18296C49701FDBEDC2EF2F
Authority key identifier: 77:31:B6:2B:0E:15:9B:A6:CC:D8:7F:73:27:5A:86:8E:BC:C4:1A:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/2efce0-82ee-43ce-8f28-6bfc33501479/1/Qv3hVGEIw5Ck_5QiJYApdipPmqI.roa
Signing time: Wed 01 Jan 2025 03:48:09 +0000
ROA not before: Wed 01 Jan 2025 03:48:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204739
IP address blocks: 185.242.40.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:60:09:eb:18:29:6c:49:70:1f:db:ed:c2:ef:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7731b62b0e159ba6ccd87f73275a868ebcc41ab8
Validity
Not Before: Jan 1 03:48:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=42fde1546108c390a4ff9422258029762a4f9aa2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:15:59:80:b6:3e:28:d1:9d:db:5b:7a:63:6e:
c4:8e:cd:2a:84:63:a8:82:2d:91:4a:bd:a1:5f:0e:
58:29:3a:b7:bc:6f:12:1d:0e:e3:44:77:25:6a:23:
44:48:d8:82:e2:1b:61:ed:2a:b4:52:68:98:80:24:
4d:85:51:04:29:dc:94:2d:68:1a:3c:53:a5:e2:1b:
36:fb:f6:04:50:19:14:09:ff:22:28:39:64:2a:be:
89:e5:76:de:fb:35:34:5f:a7:be:7c:b2:1a:41:08:
8d:4e:8c:78:9c:bd:df:66:b5:e5:e9:14:a2:23:b3:
86:a8:96:f7:d4:ef:9d:a9:56:b8:f6:1c:ea:aa:a7:
ae:27:b8:02:fd:4f:db:19:b8:c2:67:80:db:c3:2d:
3e:3f:79:64:e8:e4:19:9c:a4:bc:f0:ab:92:7d:b7:
9c:48:c3:e8:95:ef:a2:6b:81:b1:56:50:b9:8a:e7:
ae:0c:94:4e:68:3e:f5:1d:19:ef:eb:5d:43:db:39:
c7:75:db:35:12:82:e7:4d:e6:3f:e4:93:f9:bd:3c:
cb:1d:8a:c7:20:58:7c:46:70:43:a8:c2:cf:55:4a:
19:96:fb:db:20:5a:a6:88:04:db:d0:83:43:91:2b:
90:20:07:c0:e6:28:79:23:f8:7f:a4:b7:90:02:f9:
87:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:FD:E1:54:61:08:C3:90:A4:FF:94:22:25:80:29:76:2A:4F:9A:A2
X509v3 Authority Key Identifier:
keyid:77:31:B6:2B:0E:15:9B:A6:CC:D8:7F:73:27:5A:86:8E:BC:C4:1A:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2efce0-82ee-43ce-8f28-6bfc33501479/1/Qv3hVGEIw5Ck_5QiJYApdipPmqI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2efce0-82ee-43ce-8f28-6bfc33501479/1/dzG2Kw4Vm6bM2H9zJ1qGjrzEGrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.40.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:c3:cc:1b:d1:8a:c0:4b:36:dc:a1:ff:f0:b4:3b:1d:f3:12:
ae:c2:e7:59:90:d9:2a:33:d1:5b:dc:d3:b3:34:a5:8b:02:25:
74:a1:ec:bd:a6:0d:7b:fa:36:0e:a5:3d:e7:0b:56:02:58:2b:
21:61:9d:7e:cb:2e:af:28:74:93:b1:8c:48:4b:b5:e5:a9:75:
e7:40:5b:ea:8d:64:bf:9c:ce:8f:36:11:eb:55:61:71:f3:86:
fa:60:28:ce:d5:3f:4b:5c:03:fd:7a:d3:5c:29:21:ee:a4:b7:
53:22:45:7a:c0:77:25:5b:ff:7d:0d:cc:d8:c6:1d:e5:39:dc:
9f:c5:e5:55:46:d0:97:34:bf:c7:42:4b:6c:19:53:62:8e:e6:
e5:8f:ae:b2:9b:c3:0f:ed:28:1e:2b:cf:fc:06:54:ec:79:23:
b1:de:18:4b:de:63:5a:be:d8:8c:76:08:af:7d:6c:d5:51:9a:
dd:be:cc:56:c8:a7:2a:9b:e1:25:a3:27:32:38:11:24:d0:2b:
46:f2:f3:ec:71:79:2a:fb:ea:ef:90:a4:2d:a2:3e:82:f4:6d:
c3:3e:f7:2d:7a:26:c7:a1:ad:bc:de:ee:f6:bd:0e:8b:52:fa:
af:08:f5:56:cd:48:04:90:12:19:1d:b3:31:8f:25:06:b6:7f:
61:8a:c0:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 12:39:23 2025 by rpki-client