Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/4fc7d4-2efa-4fc6-80ea-ee7673440e3f/1/QNOQ5R_oEVCrGcF2qeFRw-6Hfqo.roa
File: QNOQ5R_oEVCrGcF2qeFRw-6Hfqo.roa (raw, json)
Hash identifier: 2GwNx1N7JyaH/OeMGHzH3cN2O0upeqVXRbDYDintXXg=
Subject key identifier: 40:D3:90:E5:1F:E8:11:50:AB:19:C1:76:A9:E1:51:C3:EE:87:7E:AA
Certificate issuer: /CN=415f3fee2eb60bd001c3eb1e8f90854580f9e110
Certificate serial: 01835EF22211CC18E149A798E901C30D9D3A
Authority key identifier: 41:5F:3F:EE:2E:B6:0B:D0:01:C3:EB:1E:8F:90:85:45:80:F9:E1:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QV8_7i62C9ABw-sej5CFRYD54RA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/4fc7d4-2efa-4fc6-80ea-ee7673440e3f/1/QNOQ5R_oEVCrGcF2qeFRw-6Hfqo.roa
Signing time: Wed 21 Sep 2022 07:27:50 +0000
ROA not before: Wed 21 Sep 2022 07:27:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60675
IP address blocks: 185.252.8.0/22 maxlen: 22
185.252.9.0/24 maxlen: 24
185.252.10.0/24 maxlen: 24
185.252.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:5e:f2:22:11:cc:18:e1:49:a7:98:e9:01:c3:0d:9d:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=415f3fee2eb60bd001c3eb1e8f90854580f9e110
Validity
Not Before: Sep 21 07:27:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=40d390e51fe81150ab19c176a9e151c3ee877eaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:61:93:f4:48:27:a3:84:2a:54:24:8b:76:19:
16:38:91:17:b9:f7:29:26:ba:bc:d0:38:61:ae:c9:
ec:1c:f0:42:5c:9d:23:99:51:44:16:fa:16:bf:52:
ce:d4:34:e8:2f:4a:e8:09:3a:17:0f:9c:4d:10:e4:
38:2a:b7:44:0c:29:22:6c:57:51:47:6c:89:08:ea:
07:30:56:77:4d:55:a1:b5:e2:6a:e2:c5:91:7d:b4:
eb:ea:55:5d:89:2b:48:72:d7:b0:81:4a:2b:b0:d5:
1b:27:2c:64:25:fe:d8:88:0c:f1:93:34:a1:6c:86:
e0:0d:2f:a7:c4:41:89:83:62:94:01:aa:7a:ae:fb:
11:ae:25:0d:c6:3f:8c:92:64:de:bc:7a:af:5b:90:
a8:a2:5a:c5:08:f1:b1:c7:af:2d:fe:4a:eb:1b:4b:
bd:72:70:06:6c:6b:1a:aa:d7:4e:02:0b:e6:ac:ab:
81:d4:9f:4b:9e:d3:9a:47:33:12:26:ea:4b:4b:4e:
45:27:94:1d:8d:b9:8f:0b:b8:44:c2:86:b7:e9:db:
55:b4:9c:c5:a0:ab:df:71:72:7b:4f:f5:95:59:20:
4b:a9:4b:d6:85:72:22:55:6a:e0:98:a9:58:54:7a:
10:da:81:6b:f9:d2:34:6e:cc:34:e4:90:c0:e4:74:
90:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:D3:90:E5:1F:E8:11:50:AB:19:C1:76:A9:E1:51:C3:EE:87:7E:AA
X509v3 Authority Key Identifier:
keyid:41:5F:3F:EE:2E:B6:0B:D0:01:C3:EB:1E:8F:90:85:45:80:F9:E1:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QV8_7i62C9ABw-sej5CFRYD54RA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4fc7d4-2efa-4fc6-80ea-ee7673440e3f/1/QNOQ5R_oEVCrGcF2qeFRw-6Hfqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4fc7d4-2efa-4fc6-80ea-ee7673440e3f/1/QV8_7i62C9ABw-sej5CFRYD54RA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.252.8.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:cc:87:13:1d:1e:e1:83:56:5f:e5:98:c9:fb:77:8b:78:c4:
84:24:e5:ef:a4:be:08:ea:8c:09:0b:3d:ae:eb:34:77:3d:74:
de:d0:6d:af:ad:38:0e:3b:aa:57:a3:29:9e:58:de:03:8f:55:
1e:e9:e5:51:f1:6a:19:c1:d9:2b:4c:03:79:bb:c1:44:98:45:
9e:d2:d0:4f:a8:d0:b0:e7:ed:0c:c1:e5:54:60:db:d7:7a:d2:
9a:69:59:65:7e:87:d6:a5:1f:fa:b0:49:dc:c7:51:06:41:39:
1b:5f:b1:cf:d1:db:7c:32:14:f3:f3:88:2d:7a:e8:91:b5:f7:
d2:fa:48:1b:af:30:c4:52:91:37:65:a2:52:83:e6:b1:c5:68:
a2:0f:a8:ea:f0:6a:b5:35:80:92:ce:b1:11:5c:41:16:da:96:
15:16:60:ed:1b:8f:41:47:ec:20:18:0e:80:39:73:63:8d:ea:
10:7c:e7:2c:2e:52:d2:fc:7e:48:77:01:10:12:f2:ba:a9:fd:
3b:1a:e3:73:ef:5c:3a:45:b1:25:b9:fb:b9:5d:4f:97:ae:97:
27:bf:a9:85:50:c7:33:a7:af:42:a7:f2:ea:21:cf:6c:65:38:
03:79:9e:8b:96:38:92:a5:e5:88:48:5d:bb:55:94:bc:ec:09:
55:db:27:cb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYNe8iIRzBjhSaeY6QHDDZ06MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxNWYzZmVlMmViNjBiZDAwMWMzZWIxZThmOTA4NTQ1ODBm
OWUxMTAwHhcNMjIwOTIxMDcyNzUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MGQzOTBlNTFmZTgxMTUwYWIxOWMxNzZhOWUxNTFjM2VlODc3ZWFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAumGT9Egno4QqVCSLdhkWOJEXufcp
Jrq80DhhrsnsHPBCXJ0jmVFEFvoWv1LO1DToL0roCToXD5xNEOQ4KrdEDCkibFdR
R2yJCOoHMFZ3TVWhteJq4sWRfbTr6lVdiStIctewgUorsNUbJyxkJf7YiAzxkzSh
bIbgDS+nxEGJg2KUAap6rvsRriUNxj+MkmTevHqvW5CoolrFCPGxx68t/krrG0u9
cnAGbGsaqtdOAgvmrKuB1J9LntOaRzMSJupLS05FJ5QdjbmPC7hEwoa36dtVtJzF
oKvfcXJ7T/WVWSBLqUvWhXIiVWrgmKlYVHoQ2oFr+dI0bsw05JDA5HSQDwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEDTkOUf6BFQqxnBdqnhUcPuh36qMB8GA1UdIwQY
MBaAFEFfP+4utgvQAcPrHo+QhUWA+eEQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUVY4XzdpNjJDOUFCdy1zZWo1Q0ZSWUQ1NFJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My80ZmM3ZDQtMmVmYS00ZmM2LTgwZWEt
ZWU3NjczNDQwZTNmLzEvUU5PUTVSX29FVkNyR2NGMnFlRlJ3LTZIZnFvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My80ZmM3ZDQtMmVmYS00ZmM2LTgwZWEtZWU3NjczNDQwZTNm
LzEvUVY4XzdpNjJDOUFCdy1zZWo1Q0ZSWUQ1NFJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCufwIMA0G
CSqGSIb3DQEBCwUAA4IBAQAczIcTHR7hg1Zf5ZjJ+3eLeMSEJOXvpL4I6owJCz2u
6zR3PXTe0G2vrTgOO6pXoymeWN4Dj1Ue6eVR8WoZwdkrTAN5u8FEmEWe0tBPqNCw
5+0MweVUYNvXetKaaVllfofWpR/6sEncx1EGQTkbX7HP0dt8MhTz84gteuiRtffS
+kgbrzDEUpE3ZaJSg+axxWiiD6jq8Gq1NYCSzrERXEEW2pYVFmDtG49BR+wgGA6A
OXNjjeoQfOcsLlLS/H5IdwEQEvK6qf07GuNz71w6RbElufu5XU+Xrpcnv6mFUMcz
p69Cp/LqIc9sZTgDeZ6LljiSpeWISF27VZS87AlV2yfL
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:12 2024 by rpki-client on console-fra.rpki-client.org