Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/ea8eb7-f6a5-4927-b266-d28e70e75587/1/Qk0BE5Y924bTpBuKKzHAbFw3E8g.roa
File: Qk0BE5Y924bTpBuKKzHAbFw3E8g.roa (raw, json)
Hash identifier: B0+B19vuDAYGsruQVf7Y/Fxe5Syg12myfQD0sOD3jVQ=
Subject key identifier: 42:4D:01:13:96:3D:DB:86:D3:A4:1B:8A:2B:31:C0:6C:5C:37:13:C8
Certificate issuer: /CN=977d549a86531540fff031f5865fcc0db9f841c2
Certificate serial: 2A95E98F
Authority key identifier: 97:7D:54:9A:86:53:15:40:FF:F0:31:F5:86:5F:CC:0D:B9:F8:41:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l31UmoZTFUD_8DH1hl_MDbn4QcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/ea8eb7-f6a5-4927-b266-d28e70e75587/1/Qk0BE5Y924bTpBuKKzHAbFw3E8g.roa
Signing time: Tue 05 Apr 2022 15:36:22 +0000
ROA not before: Tue 05 Apr 2022 15:36:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61044
IP address blocks: 185.40.92.0/22 maxlen: 22
37.148.192.0/21 maxlen: 24
2a03:10c0::/30 maxlen: 30
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 714467727 (0x2a95e98f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=977d549a86531540fff031f5865fcc0db9f841c2
Validity
Not Before: Apr 5 15:36:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=424d0113963ddb86d3a41b8a2b31c06c5c3713c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:75:42:84:08:ac:28:1b:56:8e:3e:c0:81:81:
95:c4:dc:19:c8:6f:ba:5e:c2:04:4e:c2:54:77:f2:
c1:1d:83:38:43:65:95:e5:44:0c:c5:9a:76:56:90:
0d:87:66:2f:e4:51:a7:67:82:09:35:15:de:42:e9:
6c:d5:52:72:81:1b:e6:61:33:10:63:56:ac:9b:6a:
e7:e8:e7:d9:ce:81:aa:81:4c:e9:5e:f9:6c:f8:40:
86:69:c3:e4:44:fa:db:e7:ff:b4:1b:93:ba:b2:61:
74:06:f1:2b:63:c3:64:7d:7a:10:9e:a8:51:30:34:
6d:f2:fa:19:4a:93:6c:05:1f:ab:ed:1b:ac:0b:6c:
3e:63:ce:58:29:6c:54:f7:80:09:f3:93:8b:6d:ec:
43:8c:6a:aa:48:6f:d9:e4:e5:9a:e2:f6:ea:c9:6c:
b9:22:f2:46:34:8b:4c:37:96:9b:6f:70:53:44:38:
75:87:66:9c:80:b6:19:54:85:fc:ad:7c:46:2e:2d:
71:4f:42:18:a7:6c:4f:53:8d:93:4b:f2:26:df:41:
27:04:dd:ae:59:41:77:1f:9d:c9:fe:6f:e1:98:f1:
45:b1:cc:bb:cc:08:79:0b:e8:23:c7:22:d6:64:af:
8d:35:2d:44:8c:68:45:b7:36:32:52:ab:3c:5f:ac:
0f:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:4D:01:13:96:3D:DB:86:D3:A4:1B:8A:2B:31:C0:6C:5C:37:13:C8
X509v3 Authority Key Identifier:
keyid:97:7D:54:9A:86:53:15:40:FF:F0:31:F5:86:5F:CC:0D:B9:F8:41:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l31UmoZTFUD_8DH1hl_MDbn4QcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/ea8eb7-f6a5-4927-b266-d28e70e75587/1/Qk0BE5Y924bTpBuKKzHAbFw3E8g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/ea8eb7-f6a5-4927-b266-d28e70e75587/1/l31UmoZTFUD_8DH1hl_MDbn4QcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.148.192.0/21
185.40.92.0/22
IPv6:
2a03:10c0::/30
Signature Algorithm: sha256WithRSAEncryption
3b:69:1d:f0:44:1e:33:4b:5a:56:b0:f0:be:56:de:ba:ff:fa:
c5:64:25:3f:09:29:3c:83:a9:ec:88:ec:c9:1f:ed:42:bd:34:
f4:64:9e:a0:55:61:5b:52:23:2b:b5:34:cb:de:5c:42:5b:aa:
83:ba:57:b7:29:92:35:1f:9c:13:e4:3c:cb:24:a5:50:e5:b1:
e5:f4:9f:8c:ec:3a:21:fe:ad:e3:a5:e6:21:e3:2a:57:b4:83:
eb:15:27:aa:db:fd:e3:16:7d:84:0d:f4:4d:72:30:98:46:4a:
04:95:dd:2a:13:f8:ae:15:56:70:52:6f:19:81:79:22:4b:4d:
2a:dd:10:25:9c:a1:e8:dd:56:fd:20:73:3c:30:36:10:7b:b0:
3f:69:2b:2f:36:4f:e5:ff:e4:71:8b:23:a2:1a:84:50:f3:f7:
de:a3:b1:b6:52:92:c6:13:75:7a:30:93:72:4d:54:6e:87:e3:
8b:48:83:a3:a1:bb:68:c6:0c:78:95:8a:a7:87:3c:16:3b:d4:
a0:f6:23:5d:45:c6:fb:98:d4:cf:65:97:50:ca:86:4e:ac:da:
0b:e5:39:56:21:15:04:0c:30:54:d6:ce:d8:e5:77:32:f9:88:
35:6f:2e:c7:0b:e6:cf:1a:01:b2:86:9b:e3:66:72:7b:e9:a8:
87:c5:92:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:32:52 2025 by rpki-client