Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/QGsUTlp6_BEFTYCsH7OHXModcUQ.roa
File: QGsUTlp6_BEFTYCsH7OHXModcUQ.roa (raw, json)
Hash identifier: VOTvEoonXB+enjAqNX+KysvO9X3bauhfk46eSsAk6MY=
Subject key identifier: 40:6B:14:4E:5A:7A:FC:11:05:4D:80:AC:1F:B3:87:5C:CA:1D:71:44
Certificate issuer: /CN=c228348e9054973d7a5f8193bd4e5c44f67399e1
Certificate serial: 01942747BF6A221705920D6E743CC1141B78
Authority key identifier: C2:28:34:8E:90:54:97:3D:7A:5F:81:93:BD:4E:5C:44:F6:73:99:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wig0jpBUlz16X4GTvU5cRPZzmeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/QGsUTlp6_BEFTYCsH7OHXModcUQ.roa
Signing time: Thu 02 Jan 2025 13:50:00 +0000
ROA not before: Thu 02 Jan 2025 13:50:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60234
IP address blocks: 2a05:b0c7:1800::/39 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:bf:6a:22:17:05:92:0d:6e:74:3c:c1:14:1b:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c228348e9054973d7a5f8193bd4e5c44f67399e1
Validity
Not Before: Jan 2 13:50:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=406b144e5a7afc11054d80ac1fb3875cca1d7144
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:9f:65:96:13:40:b4:5c:4e:ca:a0:8b:15:99:
74:f2:a0:f4:2e:58:97:83:98:37:46:7a:2a:d8:30:
78:84:2f:84:a6:82:60:32:c5:b0:0b:b8:58:d6:c2:
4e:59:65:33:7d:d5:b1:77:64:d4:8e:c9:63:1b:cb:
7b:d1:88:77:83:6e:38:0c:27:b2:af:e2:71:2c:e2:
76:ce:c1:ed:09:de:55:60:ab:cd:72:9a:1f:6b:d2:
6e:f4:4d:62:1a:c9:18:8b:4c:4e:6f:f6:ab:7d:e6:
f3:e6:a3:ca:c5:72:ec:96:b9:01:1a:4d:99:2a:e6:
51:46:91:81:a1:74:a9:12:18:87:68:ab:18:1c:e2:
55:c4:7b:6c:5a:20:dc:05:e4:84:3a:f4:de:89:c3:
26:31:3b:16:70:ea:eb:62:22:ae:03:4b:07:79:bb:
5e:d9:bf:2a:18:f0:a6:1d:92:fb:42:f8:6d:10:c7:
11:aa:c0:95:39:0f:ce:5d:f7:46:b9:14:ff:be:ce:
c7:90:5e:ca:8a:61:b4:aa:c4:f9:0b:c2:1a:66:1f:
f0:0b:5a:ba:b3:ab:77:71:ae:a9:4a:d6:79:0f:ee:
89:07:7b:91:07:e0:58:aa:26:09:f7:78:65:2f:88:
2f:15:95:a1:ef:39:b5:1b:41:9b:18:df:08:21:5f:
b4:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:6B:14:4E:5A:7A:FC:11:05:4D:80:AC:1F:B3:87:5C:CA:1D:71:44
X509v3 Authority Key Identifier:
keyid:C2:28:34:8E:90:54:97:3D:7A:5F:81:93:BD:4E:5C:44:F6:73:99:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wig0jpBUlz16X4GTvU5cRPZzmeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/QGsUTlp6_BEFTYCsH7OHXModcUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f16794-91ad-4984-9c6c-e88fff82d553/1/wig0jpBUlz16X4GTvU5cRPZzmeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:b0c7:1800::/39
Signature Algorithm: sha256WithRSAEncryption
92:b2:3a:dc:80:9c:21:1d:26:c3:19:07:9f:58:bc:63:4d:e6:
95:b4:a5:63:71:fa:b8:a4:3e:04:d2:0e:2a:1d:10:ff:b8:cf:
df:54:4e:ea:f3:bc:e7:13:83:f1:b3:d5:80:76:02:73:dd:c8:
16:e7:2d:a1:e9:1a:f4:48:0a:72:9b:00:42:59:6f:35:2b:9f:
00:a7:63:9f:cb:a4:67:04:46:ee:ba:a1:13:b7:7c:30:cb:3c:
09:6b:15:fe:ae:49:06:6d:ab:61:54:06:72:b2:8a:e9:18:25:
d4:2b:a7:6b:34:6c:ed:56:9f:6c:5b:10:66:50:fb:45:41:7f:
c3:9e:ae:e9:5c:a9:23:4c:23:83:1b:e2:aa:ed:be:b1:f6:40:
1c:55:a3:de:fa:ca:b7:ac:79:2c:09:38:91:aa:ae:a1:bb:4f:
d8:a1:cc:01:36:66:39:c6:44:e1:88:b8:d3:f4:a3:74:64:a3:
d4:e7:1c:e1:c2:4e:bb:eb:25:55:85:59:bf:ed:fd:52:40:e9:
9e:8e:7c:af:51:53:5d:49:b9:7f:ea:93:7f:f7:3d:9d:85:dc:
54:cd:64:bd:58:33:8d:30:cd:b9:dd:2e:e3:87:c1:91:44:50:
17:60:b5:3c:f6:40:22:02:0b:65:6d:77:66:f5:be:07:fd:e6:
7c:80:f8:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:52:36 2025 by rpki-client