Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/qx1D6MwlFJLvd2j3wGKzaKDH1gc.roa
File: qx1D6MwlFJLvd2j3wGKzaKDH1gc.roa (raw, json)
Hash identifier: /6Qrju93/zC5tTWH2Z6B9bYEnrkHOlHlFsFGFSYu75M=
Subject key identifier: AB:1D:43:E8:CC:25:14:92:EF:77:68:F7:C0:62:B3:68:A0:C7:D6:07
Certificate issuer: /CN=3ad734cf90c773428806b968209515b914831a9d
Certificate serial: 01955C15FE5A9CA177A7FA0098C848BBB2E6
Authority key identifier: 3A:D7:34:CF:90:C7:73:42:88:06:B9:68:20:95:15:B9:14:83:1A:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Otc0z5DHc0KIBrloIJUVuRSDGp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/qx1D6MwlFJLvd2j3wGKzaKDH1gc.roa
Signing time: Mon 03 Mar 2025 12:58:20 +0000
ROA not before: Mon 03 Mar 2025 12:58:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 10103
IP address blocks: 188.95.69.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:5c:15:fe:5a:9c:a1:77:a7:fa:00:98:c8:48:bb:b2:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad734cf90c773428806b968209515b914831a9d
Validity
Not Before: Mar 3 12:58:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ab1d43e8cc251492ef7768f7c062b368a0c7d607
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:e3:48:14:28:7a:6a:44:38:15:b4:62:cc:77:
e3:4f:31:d1:2a:0e:bd:28:53:bd:37:b5:91:d6:d6:
61:a2:64:06:54:7d:e5:13:b7:ad:3f:70:f9:98:a9:
8a:80:97:61:1b:d7:3d:b1:ec:65:fb:42:1c:a2:50:
2e:99:7b:34:19:34:59:a4:1c:08:f0:41:f6:48:42:
6d:c6:13:69:47:24:39:f6:e3:ad:02:72:4d:8b:a8:
6d:76:a0:03:b3:55:d1:c7:99:a2:c5:a8:bd:eb:eb:
dc:be:0b:8f:94:c7:0c:98:40:9e:4a:e2:a4:21:92:
bb:ab:ef:d1:29:f5:10:24:ea:3a:72:12:9e:7b:8b:
0f:e2:c7:bd:3d:6d:48:17:63:33:bc:01:73:58:95:
ae:73:ea:5b:c5:c3:c6:90:c6:29:bd:51:d3:bc:68:
74:ee:83:b0:c8:ef:7c:30:ef:ad:4d:4e:78:c3:4b:
77:6e:11:07:cf:ef:62:f6:1e:8c:f3:9c:cb:9c:76:
80:52:3f:da:d0:95:8f:10:0e:36:5f:e2:9a:62:cb:
f6:24:89:01:84:b2:e3:c7:b9:01:41:61:9b:2e:60:
73:2b:4b:65:4d:82:eb:98:e2:e7:e0:80:72:6d:be:
c2:4c:4f:8d:92:37:10:3a:83:8a:22:1a:06:41:83:
ee:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:1D:43:E8:CC:25:14:92:EF:77:68:F7:C0:62:B3:68:A0:C7:D6:07
X509v3 Authority Key Identifier:
keyid:3A:D7:34:CF:90:C7:73:42:88:06:B9:68:20:95:15:B9:14:83:1A:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Otc0z5DHc0KIBrloIJUVuRSDGp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/qx1D6MwlFJLvd2j3wGKzaKDH1gc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/Otc0z5DHc0KIBrloIJUVuRSDGp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.95.69.0/24
Signature Algorithm: sha256WithRSAEncryption
87:8c:b5:f0:93:de:88:d9:a4:ee:34:28:65:e5:ea:b9:b6:68:
75:e7:0b:cb:76:3e:8a:e0:16:e1:1b:34:78:29:37:91:09:bd:
9a:93:95:b0:89:83:c7:da:3d:38:21:32:90:fe:41:32:3e:f9:
14:6f:ed:69:ae:ca:b0:e7:bf:b5:2f:fc:ca:d6:19:31:a6:4c:
39:dd:16:07:b9:d2:79:3e:a7:1f:4c:13:67:c9:7c:59:dc:c2:
88:7e:28:16:af:76:77:c8:5b:06:87:80:e0:97:a8:aa:24:c8:
a4:b9:c6:5e:a8:04:a8:71:c4:50:a6:ea:11:05:2a:12:97:b1:
0b:cb:36:79:d7:e7:d0:37:ba:4a:f9:75:6e:08:31:40:a4:8b:
f6:0b:40:d1:8f:c1:10:17:5a:c5:d6:52:b3:fa:98:e2:85:69:
c2:ea:df:d5:8e:82:28:75:1e:57:88:2e:0c:d3:97:e9:1a:60:
4d:fc:6d:b8:5c:07:30:75:a6:be:61:e0:fb:50:87:94:72:3d:
32:41:91:b6:c3:db:5e:95:0c:ec:7e:9c:c8:f3:7a:5b:a8:45:
31:a5:19:00:ad:ec:9a:4f:f7:76:0f:95:26:fb:e5:73:48:b3:
f9:09:71:db:90:92:83:70:c6:78:68:8a:12:35:16:a4:b4:e0:
a8:80:0f:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:49:29 2025 by rpki-client