Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/02701d-081c-4d07-b3ff-69fcaf488bfa/1/QMPpBhWO_6ssjyNUR97uujAqRb8.roa
File: QMPpBhWO_6ssjyNUR97uujAqRb8.roa (raw, json)
Hash identifier: kZXSv9Y0Os/FZRQRPsvFDYcU6S1OidDbIBSMbPlHQ3g=
Subject key identifier: 40:C3:E9:06:15:8E:FF:AB:2C:8F:23:54:47:DE:EE:BA:30:2A:45:BF
Certificate issuer: /CN=0b175873adeb83c8f16a2e0e3cbb251e58833a87
Certificate serial: 07870AC1
Authority key identifier: 0B:17:58:73:AD:EB:83:C8:F1:6A:2E:0E:3C:BB:25:1E:58:83:3A:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CxdYc63rg8jxai4OPLslHliDOoc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/02701d-081c-4d07-b3ff-69fcaf488bfa/1/QMPpBhWO_6ssjyNUR97uujAqRb8.roa
Signing time: Thu 07 Apr 2022 08:51:08 +0000
ROA not before: Thu 07 Apr 2022 08:51:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.88.184.0/24 maxlen: 24
185.88.185.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126290625 (0x7870ac1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b175873adeb83c8f16a2e0e3cbb251e58833a87
Validity
Not Before: Apr 7 08:51:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=40c3e906158effab2c8f235447deeeba302a45bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:7c:24:43:7b:f3:32:86:81:7e:0c:f5:2c:2f:
da:6e:7e:3c:a0:d7:be:64:5d:70:1c:65:56:fc:7c:
f6:4e:1d:ea:23:fc:78:58:eb:c9:2b:7b:47:b9:e8:
43:24:63:89:a5:5a:9c:e5:33:b2:29:30:64:d1:b4:
08:0a:0d:d6:c7:4c:d4:5e:a0:2b:bf:20:c2:33:96:
d6:03:a2:20:cb:d3:e9:f6:64:68:df:17:54:27:76:
c1:b0:5c:a1:f8:c7:9c:17:a5:03:4b:fc:c3:13:04:
3f:b7:2d:d5:37:07:e9:e8:ef:74:e6:5c:12:ea:eb:
ff:53:5e:c9:a6:58:b3:3e:72:a7:c2:86:49:ee:ac:
82:95:66:80:2d:de:a2:78:da:67:cf:2d:f8:bb:ba:
dd:63:64:cd:d8:9a:44:94:e1:90:f6:09:25:2f:3a:
99:88:63:cc:4b:cb:2c:d9:e8:47:e2:98:56:6a:b3:
bf:3e:7b:3a:fd:f9:96:d8:35:8d:cb:ee:e5:e4:a3:
53:88:46:93:d7:f0:e6:d6:76:5b:15:09:48:05:0e:
42:11:08:43:77:47:d8:4c:52:77:a5:62:3e:3f:47:
5f:e0:29:5d:dd:70:7b:66:bb:9f:17:f0:bc:42:86:
c4:5f:44:33:69:e6:5e:b7:c6:86:f2:47:74:8c:ff:
2f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:C3:E9:06:15:8E:FF:AB:2C:8F:23:54:47:DE:EE:BA:30:2A:45:BF
X509v3 Authority Key Identifier:
keyid:0B:17:58:73:AD:EB:83:C8:F1:6A:2E:0E:3C:BB:25:1E:58:83:3A:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CxdYc63rg8jxai4OPLslHliDOoc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/02701d-081c-4d07-b3ff-69fcaf488bfa/1/QMPpBhWO_6ssjyNUR97uujAqRb8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/02701d-081c-4d07-b3ff-69fcaf488bfa/1/CxdYc63rg8jxai4OPLslHliDOoc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.88.184.0/23
Signature Algorithm: sha256WithRSAEncryption
1a:eb:1d:fe:33:af:4d:3f:7c:41:f7:03:58:c4:e5:eb:72:89:
73:91:0e:df:10:30:b3:89:20:25:dd:e0:92:a1:5a:ea:fb:b1:
5e:08:65:84:5f:9c:1d:90:cf:1b:13:39:40:42:7d:f9:95:d8:
9d:ec:ad:ea:b0:91:83:a0:93:d4:7c:50:0b:b0:41:ed:19:c0:
3c:e7:19:54:63:c9:4a:cd:e4:f8:c9:20:ab:23:f5:cf:20:ef:
94:0f:e3:18:1f:a0:24:f8:79:45:c0:fb:00:75:dc:13:f9:bb:
67:f8:65:8d:f2:ee:26:36:29:dc:b5:fc:9f:f1:4e:23:3d:47:
80:d2:2a:62:a5:e5:04:43:21:fa:1e:8c:d8:94:2a:cb:97:61:
d4:b5:ac:82:65:01:32:3f:78:b7:9c:a6:0e:35:26:6e:41:6e:
2e:b4:35:73:50:cc:fa:07:dc:25:5f:49:db:bd:0a:77:29:dc:
c2:91:be:11:80:1d:71:9f:13:1c:47:af:56:8b:21:4c:ce:ac:
ec:70:8f:8a:15:f6:33:0d:02:ea:70:83:52:22:b9:c9:f1:ff:
72:b4:16:84:da:c4:cd:d9:e8:49:12:0e:a0:e8:37:f8:65:85:
9f:c6:e5:d4:c0:d5:c0:76:98:ef:92:92:ef:3d:60:5d:1e:ed:
ba:a8:02:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:07:25 2025 by rpki-client