Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/9bbf75-30d8-4bcc-bc51-1b21765172b6/1/QSTBaZP9I47SqBCCeTJQJI7zpnE.roa
File: QSTBaZP9I47SqBCCeTJQJI7zpnE.roa (raw, json)
Hash identifier: max+mGsMBU2jh0x6b5tG5lwSdy2c9S5olJO4Jsu8RNs=
Subject key identifier: 41:24:C1:69:93:FD:23:8E:D2:A8:10:82:79:32:50:24:8E:F3:A6:71
Certificate issuer: /CN=02e2b228b50cdc90ee498e51bfc915997ca6c590
Certificate serial: 0183C869BC8C1FBD3FC18801F159A5C91F9C
Authority key identifier: 02:E2:B2:28:B5:0C:DC:90:EE:49:8E:51:BF:C9:15:99:7C:A6:C5:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AuKyKLUM3JDuSY5Rv8kVmXymxZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/9bbf75-30d8-4bcc-bc51-1b21765172b6/1/QSTBaZP9I47SqBCCeTJQJI7zpnE.roa
Signing time: Tue 11 Oct 2022 18:58:36 +0000
ROA not before: Tue 11 Oct 2022 18:58:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 147287
IP address blocks: 188.64.142.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c8:69:bc:8c:1f:bd:3f:c1:88:01:f1:59:a5:c9:1f:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02e2b228b50cdc90ee498e51bfc915997ca6c590
Validity
Not Before: Oct 11 18:58:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4124c16993fd238ed2a81082793250248ef3a671
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:27:ad:cc:ca:b6:a2:fa:8f:4d:6c:27:b6:17:
15:98:3a:c6:a6:14:7f:d0:d5:b3:d6:a3:b5:c7:2c:
06:dd:97:dc:a0:3a:0f:0b:98:24:7b:6e:10:86:6e:
59:f5:47:e9:3d:f0:1c:43:36:d7:e7:75:d0:cd:c7:
22:7e:77:5a:e4:88:d2:d4:94:fa:ca:ba:08:c6:ce:
43:a4:22:8a:b1:7e:bd:63:2d:3d:1b:86:42:dd:11:
88:e9:27:9e:62:53:77:c9:8b:95:b1:f8:83:48:74:
6c:11:d1:7e:ff:90:8e:18:e9:5d:7e:2a:32:ac:dd:
f0:12:55:53:e1:23:e8:81:a5:38:07:54:0d:d0:86:
81:95:62:24:74:d3:69:f2:d3:11:9c:67:b4:2a:4a:
4d:d1:64:35:c8:58:8a:9c:db:9e:39:26:3f:18:f0:
1f:6a:ca:81:f0:58:17:2b:d7:73:ac:84:42:6c:34:
63:cd:aa:3b:e2:25:3d:1d:6d:44:65:d0:5e:6e:c3:
74:5d:93:58:b0:64:74:58:22:eb:1c:1d:2d:50:a9:
fb:db:0c:a0:50:cd:c3:9e:08:a1:79:ec:9e:fb:17:
b5:a6:40:c5:aa:59:10:9d:c4:f2:e4:0b:33:ea:52:
db:80:b7:24:4d:7f:48:2e:40:f4:a2:3c:57:87:f1:
38:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:24:C1:69:93:FD:23:8E:D2:A8:10:82:79:32:50:24:8E:F3:A6:71
X509v3 Authority Key Identifier:
keyid:02:E2:B2:28:B5:0C:DC:90:EE:49:8E:51:BF:C9:15:99:7C:A6:C5:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AuKyKLUM3JDuSY5Rv8kVmXymxZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9bbf75-30d8-4bcc-bc51-1b21765172b6/1/QSTBaZP9I47SqBCCeTJQJI7zpnE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9bbf75-30d8-4bcc-bc51-1b21765172b6/1/AuKyKLUM3JDuSY5Rv8kVmXymxZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.64.142.0/24
Signature Algorithm: sha256WithRSAEncryption
74:31:b1:2a:05:71:22:44:60:19:f3:47:e7:89:81:2f:8e:8c:
b8:3a:15:8b:a0:28:26:91:84:7d:e0:3c:f3:3b:92:95:5c:03:
21:29:0f:3d:c0:ff:2c:50:ba:ee:ce:2c:19:bf:9d:d9:cc:a5:
bb:05:9d:e6:91:4b:0c:09:ca:5d:a5:09:db:79:33:ef:6f:58:
25:85:ed:45:22:16:60:a0:6c:1c:48:13:a7:b9:55:12:26:8c:
95:df:cd:ac:f9:1f:48:38:fc:3e:8f:17:67:8f:55:76:d8:6d:
53:d4:19:4a:39:f7:89:bf:dd:d8:dd:c7:2a:8f:1c:e8:72:a1:
70:78:53:a5:33:db:c6:a0:0d:17:2e:20:00:84:64:27:55:2e:
d4:da:2c:8d:9a:b0:c5:4b:08:37:3a:84:e1:2a:a9:8c:54:8a:
b8:d3:dc:70:9b:fd:b6:e4:0b:1f:49:6e:0f:82:64:38:81:18:
6a:20:bb:99:ab:60:81:b5:fa:11:d3:c1:e0:1b:a0:88:8c:e0:
d0:12:d8:23:ed:74:26:2a:84:55:ea:4e:73:7f:d2:24:69:de:
ab:68:b5:58:d0:0e:ec:cd:6f:f8:b5:09:a1:19:15:78:bd:19:
bb:1e:fd:86:43:2d:bd:b1:75:05:19:88:91:de:8f:d0:ef:5f:
d8:0e:91:32
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYPIabyMH70/wYgB8VmlyR+cMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyZTJiMjI4YjUwY2RjOTBlZTQ5OGU1MWJmYzkxNTk5N2Nh
NmM1OTAwHhcNMjIxMDExMTg1ODM2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MTI0YzE2OTkzZmQyMzhlZDJhODEwODI3OTMyNTAyNDhlZjNhNjcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkSetzMq2ovqPTWwnthcVmDrGphR/
0NWz1qO1xywG3ZfcoDoPC5gke24Qhm5Z9UfpPfAcQzbX53XQzccifnda5IjS1JT6
yroIxs5DpCKKsX69Yy09G4ZC3RGI6SeeYlN3yYuVsfiDSHRsEdF+/5COGOldfioy
rN3wElVT4SPogaU4B1QN0IaBlWIkdNNp8tMRnGe0KkpN0WQ1yFiKnNueOSY/GPAf
asqB8FgXK9dzrIRCbDRjzao74iU9HW1EZdBebsN0XZNYsGR0WCLrHB0tUKn72wyg
UM3Dngiheeye+xe1pkDFqlkQncTy5Asz6lLbgLckTX9ILkD0ojxXh/E4/wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEEkwWmT/SOO0qgQgnkyUCSO86ZxMB8GA1UdIwQY
MBaAFALisii1DNyQ7kmOUb/JFZl8psWQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQXVLeUtMVU0zSkR1U1k1UnY4a1ZtWHlteFpBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi85YmJmNzUtMzBkOC00YmNjLWJjNTEt
MWIyMTc2NTE3MmI2LzEvUVNUQmFaUDlJNDdTcUJDQ2VUSlFKSTd6cG5FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi85YmJmNzUtMzBkOC00YmNjLWJjNTEtMWIyMTc2NTE3MmI2
LzEvQXVLeUtMVU0zSkR1U1k1UnY4a1ZtWHlteFpBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvECOMA0G
CSqGSIb3DQEBCwUAA4IBAQB0MbEqBXEiRGAZ80fniYEvjoy4OhWLoCgmkYR94Dzz
O5KVXAMhKQ89wP8sULruziwZv53ZzKW7BZ3mkUsMCcpdpQnbeTPvb1glhe1FIhZg
oGwcSBOnuVUSJoyV382s+R9IOPw+jxdnj1V22G1T1BlKOfeJv93Y3ccqjxzocqFw
eFOlM9vGoA0XLiAAhGQnVS7U2iyNmrDFSwg3OoThKqmMVIq409xwm/225AsfSW4P
gmQ4gRhqILuZq2CBtfoR08HgG6CIjODQEtgj7XQmKoRV6k5zf9Ikad6raLVY0A7s
zW/4tQmhGRV4vRm7Hv2GQy29sXUFGYiR3o/Q71/YDpEy
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:21:01 2025 by rpki-client