Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/QnPmH-VLC1euvwPvwz6yivAPzAk.roa
File: QnPmH-VLC1euvwPvwz6yivAPzAk.roa (raw, json)
Hash identifier: LrRCg91YNx0XdNmzXaGJi0ZPWxwohe5lLuviINzsa70=
Subject key identifier: 42:73:E6:1F:E5:4B:0B:57:AE:BF:03:EF:C3:3E:B2:8A:F0:0F:CC:09
Certificate issuer: /CN=8e747481f2c98fbb70dca8d65c23de4fca37583d
Certificate serial: 0185A2B05A3B23E7ED4A11E1968D7A11E5A0
Authority key identifier: 8E:74:74:81:F2:C9:8F:BB:70:DC:A8:D6:5C:23:DE:4F:CA:37:58:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jnR0gfLJj7tw3KjWXCPeT8o3WD0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/QnPmH-VLC1euvwPvwz6yivAPzAk.roa
Signing time: Wed 11 Jan 2023 21:15:44 +0000
ROA not before: Wed 11 Jan 2023 21:15:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7106
IP address blocks: 93.177.109.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a2:b0:5a:3b:23:e7:ed:4a:11:e1:96:8d:7a:11:e5:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e747481f2c98fbb70dca8d65c23de4fca37583d
Validity
Not Before: Jan 11 21:15:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4273e61fe54b0b57aebf03efc33eb28af00fcc09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ac:13:34:6f:dc:4c:cb:5f:3c:c9:fe:36:d3:
ae:18:2e:74:6d:76:08:a4:29:a5:9f:61:f8:96:0a:
70:04:36:10:4a:1f:cc:59:2f:34:62:e8:4c:48:9e:
ba:29:75:da:43:e1:b4:90:42:56:9c:92:56:58:47:
08:82:02:b0:c4:05:32:f6:e8:20:d7:7e:76:c0:b1:
ad:5e:4f:e8:b1:11:2c:84:cd:92:17:0f:ff:0b:58:
db:70:0a:16:fe:91:20:f9:18:da:3e:3d:b4:01:d5:
64:67:a2:ed:17:79:da:66:16:e6:68:b6:31:83:5a:
72:13:8d:bd:11:44:98:09:38:79:df:63:a5:79:27:
ee:d5:03:5b:c9:94:b6:f3:7e:0b:96:eb:70:18:11:
d0:e6:b1:76:9d:1e:90:5c:fc:5b:bb:f1:d0:f9:98:
fc:b0:c6:72:79:06:5f:30:31:26:a4:cf:14:dd:95:
51:9d:fe:f3:6d:12:f6:3a:ad:d6:6e:29:1a:f3:1a:
16:c3:7c:98:55:6e:e5:68:8e:e3:05:f8:85:a4:9e:
04:3b:bb:47:5b:e4:5c:5b:e7:9f:78:8f:c3:59:8d:
0a:0e:81:58:20:a2:88:e7:ce:75:c3:9f:d9:54:32:
fe:e7:4b:16:2d:d0:36:de:77:0c:1c:9a:3c:86:cc:
b6:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:73:E6:1F:E5:4B:0B:57:AE:BF:03:EF:C3:3E:B2:8A:F0:0F:CC:09
X509v3 Authority Key Identifier:
keyid:8E:74:74:81:F2:C9:8F:BB:70:DC:A8:D6:5C:23:DE:4F:CA:37:58:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jnR0gfLJj7tw3KjWXCPeT8o3WD0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/QnPmH-VLC1euvwPvwz6yivAPzAk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/jnR0gfLJj7tw3KjWXCPeT8o3WD0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.177.109.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:52:e7:db:0e:91:c1:bb:2e:cb:6a:f5:6e:a1:54:fe:66:04:
5a:b9:40:08:fe:2f:02:9a:de:14:c3:76:6a:b2:ae:13:19:07:
c6:f8:a4:d9:47:c2:fb:6a:5c:f8:43:1b:ee:87:ee:99:da:1c:
e9:bd:56:72:b3:4c:c9:55:63:5d:eb:4d:54:4d:78:7f:98:ce:
b9:bc:b5:45:94:da:33:ea:f1:35:4b:f5:dc:8b:85:00:85:a8:
d3:fc:16:f5:4b:71:53:f4:be:fa:48:43:b8:44:1d:a7:f3:85:
82:1c:46:2f:3d:5f:09:bd:80:d9:e3:c6:14:d9:00:75:e0:59:
fb:9d:02:b3:bd:08:a2:bd:90:89:f8:e5:84:9a:bf:c1:33:d3:
50:04:5e:68:5d:6e:b6:85:ae:04:8b:fc:dd:1c:8c:a4:7f:e8:
a9:c1:08:77:ae:ee:cb:f1:17:9b:7c:de:ba:b6:52:7c:48:4c:
2b:69:6c:f2:a4:e5:ab:03:c6:bc:0b:02:6c:65:1a:b2:2a:58:
47:2a:25:89:9a:b5:6d:63:bf:d5:76:8c:51:3d:f5:1a:a4:af:
c0:f3:15:95:b6:7e:d2:e7:1d:08:6d:c3:d4:6c:28:06:17:d0:
f2:73:db:21:05:e1:c5:3a:fb:b9:21:16:20:03:73:17:1f:a6:
f8:e4:a4:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:41:33 2025 by rpki-client