Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/cc2083-f966-4e07-9207-79c410cb6458/1/QGlFdiPDGXNMBiOhoxS-PudvP1M.roa
File: QGlFdiPDGXNMBiOhoxS-PudvP1M.roa (raw, json)
Hash identifier: NXQ8suNImdGG455ghNwwd2b7FFa6tAnNLVCC/dOnzVU=
Subject key identifier: 40:69:45:76:23:C3:19:73:4C:06:23:A1:A3:14:BE:3E:E7:6F:3F:53
Certificate issuer: /CN=cbd085027dd3d2b9012533adffc9305e5ff0a548
Certificate serial: 1882ABE1
Authority key identifier: CB:D0:85:02:7D:D3:D2:B9:01:25:33:AD:FF:C9:30:5E:5F:F0:A5:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9CFAn3T0rkBJTOt_8kwXl_wpUg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/cc2083-f966-4e07-9207-79c410cb6458/1/QGlFdiPDGXNMBiOhoxS-PudvP1M.roa
Signing time: Sat 01 Jan 2022 10:53:28 +0000
ROA not before: Sat 01 Jan 2022 10:53:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197230
IP address blocks: 91.217.140.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 411216865 (0x1882abe1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbd085027dd3d2b9012533adffc9305e5ff0a548
Validity
Not Before: Jan 1 10:53:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4069457623c319734c0623a1a314be3ee76f3f53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:fb:54:96:2f:99:1f:a6:83:14:da:3d:70:b3:
bc:ec:3d:e4:c8:27:73:a7:41:8f:02:03:34:bc:c8:
05:c4:7b:39:71:e0:a4:60:2f:31:a9:89:12:2f:1c:
75:c7:e7:b9:d1:5a:e9:fc:d9:e9:24:b7:c2:22:62:
52:fd:fc:67:21:48:92:e8:d0:dc:13:d0:0d:7f:5b:
ab:08:3c:d1:28:b6:d0:60:52:0c:9e:df:09:91:86:
fc:e4:c1:97:12:aa:39:85:65:12:ac:6f:0b:34:26:
ac:11:51:43:23:10:58:1f:61:92:6b:56:55:50:cd:
93:a5:5d:82:ec:74:c3:e3:b6:07:11:f1:42:6a:20:
c4:b0:15:ef:81:77:b3:4a:0b:8b:15:99:54:54:42:
85:15:ea:5f:36:1d:83:ee:3f:3e:a5:a9:95:d8:c1:
af:16:ca:fa:fd:6e:37:ea:6e:b7:8b:73:55:8d:5b:
ac:26:3e:3d:c2:3f:be:76:d8:6a:46:8b:11:df:ad:
3a:68:6a:10:56:be:2e:a6:73:59:6f:bc:dd:81:b6:
8a:e8:31:75:03:5c:08:92:5c:e9:d5:a8:44:37:10:
fb:66:b1:cc:68:47:a8:4d:5a:8d:3f:d6:c3:dd:d5:
82:ae:6b:45:02:a8:7f:8d:d8:c5:f2:ec:88:ff:20:
35:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:69:45:76:23:C3:19:73:4C:06:23:A1:A3:14:BE:3E:E7:6F:3F:53
X509v3 Authority Key Identifier:
keyid:CB:D0:85:02:7D:D3:D2:B9:01:25:33:AD:FF:C9:30:5E:5F:F0:A5:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9CFAn3T0rkBJTOt_8kwXl_wpUg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/cc2083-f966-4e07-9207-79c410cb6458/1/QGlFdiPDGXNMBiOhoxS-PudvP1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/cc2083-f966-4e07-9207-79c410cb6458/1/y9CFAn3T0rkBJTOt_8kwXl_wpUg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.140.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:0b:74:1c:20:d2:cb:00:d0:9d:4b:22:bf:61:45:99:40:d8:
8e:1f:3d:91:bb:c3:65:0f:8b:d2:9e:f3:c0:db:9e:a1:25:37:
e1:1c:88:93:64:62:c6:a3:40:cd:4a:14:6d:a2:d2:ea:15:31:
43:94:2a:1f:03:5a:21:bb:be:81:fc:0c:a2:50:a0:d2:b4:c2:
e1:14:b5:e6:0f:33:6a:c6:82:51:25:ca:f8:17:8e:33:c1:40:
04:f5:33:f7:8c:52:72:e8:26:a0:23:81:e8:0d:cb:6d:0a:93:
8e:44:3b:7a:f4:59:ab:fa:85:41:cc:1d:50:3a:da:91:94:fc:
65:51:5c:d3:29:c3:c4:ac:f1:7b:ad:2b:ed:df:01:26:4b:b6:
07:73:42:e3:25:ed:40:83:ef:fe:a0:b2:2e:b7:b8:d6:64:0b:
ff:16:cc:71:49:03:33:36:85:b7:be:6e:b6:3c:11:3d:4f:fa:
6a:8a:d2:77:ed:f8:c0:df:ee:3a:01:ed:15:84:db:04:da:56:
d7:8e:ea:f7:3c:14:61:2a:83:76:59:61:b9:bf:82:ca:8c:59:
42:5a:11:96:8c:ed:a9:4d:f1:c6:04:3d:d1:30:4a:ad:4a:57:
85:8b:58:82:52:ea:3f:19:62:39:08:e9:dc:06:89:48:39:ac:
76:e2:db:86
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGIKr4TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
YmQwODUwMjdkZDNkMmI5MDEyNTMzYWRmZmM5MzA1ZTVmZjBhNTQ4MB4XDTIyMDEw
MTEwNTMyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDA2OTQ1NzYyM2Mz
MTk3MzRjMDYyM2ExYTMxNGJlM2VlNzZmM2Y1MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALX7VJYvmR+mgxTaPXCzvOw95Mgnc6dBjwIDNLzIBcR7OXHg
pGAvMamJEi8cdcfnudFa6fzZ6SS3wiJiUv38ZyFIkujQ3BPQDX9bqwg80Si20GBS
DJ7fCZGG/OTBlxKqOYVlEqxvCzQmrBFRQyMQWB9hkmtWVVDNk6Vdgux0w+O2BxHx
QmogxLAV74F3s0oLixWZVFRChRXqXzYdg+4/PqWpldjBrxbK+v1uN+put4tzVY1b
rCY+PcI/vnbYakaLEd+tOmhqEFa+LqZzWW+83YG2iugxdQNcCJJc6dWoRDcQ+2ax
zGhHqE1ajT/Ww93Vgq5rRQKof43YxfLsiP8gNc0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRAaUV2I8MZc0wGI6GjFL4+528/UzAfBgNVHSMEGDAWgBTL0IUCfdPSuQEl
M63/yTBeX/ClSDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3k5Q0ZBbjNUMHJrQkpUT3RfOGt3WGxfd3BVZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTcvY2MyMDgzLWY5NjYtNGUwNy05MjA3LTc5YzQxMGNiNjQ1OC8x
L1FHbEZkaVBER1hOTUJpT2hveFMtUHVkdlAxTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTcv
Y2MyMDgzLWY5NjYtNGUwNy05MjA3LTc5YzQxMGNiNjQ1OC8xL3k5Q0ZBbjNUMHJr
QkpUT3RfOGt3WGxfd3BVZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvZjDANBgkqhkiG9w0BAQsFAAOC
AQEAOgt0HCDSywDQnUsiv2FFmUDYjh89kbvDZQ+L0p7zwNueoSU34RyIk2RixqNA
zUoUbaLS6hUxQ5QqHwNaIbu+gfwMolCg0rTC4RS15g8zasaCUSXK+BeOM8FABPUz
94xScugmoCOB6A3LbQqTjkQ7evRZq/qFQcwdUDrakZT8ZVFc0ynDxKzxe60r7d8B
Jku2B3NC4yXtQIPv/qCyLre41mQL/xbMcUkDMzaFt75utjwRPU/6aorSd+34wN/u
OgHtFYTbBNpW147q9zwUYSqDdllhub+CyoxZQloRloztqU3xxgQ90TBKrUpXhYtY
glLqPxliOQjp3AaJSDmsduLbhg==
-----END CERTIFICATE-----
Generated at Tue Apr 8 00:27:31 2025 by rpki-client