Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/a8007b-08ce-4af4-a383-c4a52dcee23d/1/qQzLxvnTNGLeWT12ScHCEo-pY2M.roa
File: qQzLxvnTNGLeWT12ScHCEo-pY2M.roa (raw, json)
Hash identifier: l7t1efbnQDi45TQDZBIUNs68q0/6NmcXjEQTvT9tu5g=
Subject key identifier: A9:0C:CB:C6:F9:D3:34:62:DE:59:3D:76:49:C1:C2:12:8F:A9:63:63
Certificate issuer: /CN=df798581e73704ee38c9be15e72370f176c60311
Certificate serial: 01D14D
Authority key identifier: DF:79:85:81:E7:37:04:EE:38:C9:BE:15:E7:23:70:F1:76:C6:03:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/33mFgec3BO44yb4V5yNw8XbGAxE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/a8007b-08ce-4af4-a383-c4a52dcee23d/1/qQzLxvnTNGLeWT12ScHCEo-pY2M.roa
Signing time: Mon 09 May 2022 12:18:01 +0000
ROA not before: Mon 09 May 2022 12:18:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207680
IP address blocks: 185.128.83.0/24 maxlen: 24
185.128.82.0/24 maxlen: 24
185.128.81.0/24 maxlen: 24
185.128.80.0/22 maxlen: 22
185.128.80.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119117 (0x1d14d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df798581e73704ee38c9be15e72370f176c60311
Validity
Not Before: May 9 12:18:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a90ccbc6f9d33462de593d7649c1c2128fa96363
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:1c:69:3f:5f:2c:f8:0b:31:13:11:c3:c2:15:
9a:0a:5a:42:d5:bb:86:05:33:6a:c7:7b:fa:ca:c2:
4a:4b:4e:c0:94:63:2d:b1:ba:1e:f3:b1:12:ae:59:
ae:76:ce:fd:0b:f0:3a:3a:1e:8a:09:45:03:17:31:
96:c4:86:fc:63:f5:44:22:98:20:5c:12:f7:30:0b:
d9:2f:4f:66:8c:73:f8:65:d9:2a:5b:e7:fd:6d:be:
ba:b1:a2:f0:a2:20:aa:88:53:d3:58:90:d1:10:89:
9b:ad:26:d1:bc:d3:3e:be:2c:2f:95:16:d2:50:de:
d3:fb:42:f9:3e:8a:df:87:90:d6:af:63:de:f4:a5:
c4:71:4c:26:e2:6a:67:21:b0:ff:db:4a:e3:85:70:
5f:49:c5:10:ef:72:6f:3b:ec:7c:39:ca:65:2a:c5:
ae:6a:e8:d4:e0:f1:3c:41:66:0a:46:c8:1e:23:bc:
bd:5c:b3:df:b6:a1:ec:52:ea:93:6c:26:7a:93:8e:
4b:0c:b9:8a:32:9b:54:e0:4c:43:d6:da:3a:32:00:
71:7f:2c:e7:0a:f4:87:b2:90:a1:d4:01:d0:3f:5d:
93:5d:c0:8b:cf:e4:67:cb:65:3d:38:82:23:43:02:
2c:b4:d5:b7:a6:5f:a2:44:05:34:e1:d1:d6:6f:13:
59:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:0C:CB:C6:F9:D3:34:62:DE:59:3D:76:49:C1:C2:12:8F:A9:63:63
X509v3 Authority Key Identifier:
keyid:DF:79:85:81:E7:37:04:EE:38:C9:BE:15:E7:23:70:F1:76:C6:03:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/33mFgec3BO44yb4V5yNw8XbGAxE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/a8007b-08ce-4af4-a383-c4a52dcee23d/1/qQzLxvnTNGLeWT12ScHCEo-pY2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/a8007b-08ce-4af4-a383-c4a52dcee23d/1/33mFgec3BO44yb4V5yNw8XbGAxE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.80.0/22
Signature Algorithm: sha256WithRSAEncryption
2b:94:21:25:2a:b9:75:be:89:9b:71:a2:fe:fa:2c:cf:27:3b:
c5:1e:d1:09:7c:5c:dd:ec:56:81:cb:4c:69:02:e1:b6:83:10:
ec:4c:d0:0f:68:9e:3b:7d:88:62:59:98:1a:69:fd:ed:59:4c:
a5:85:a9:21:9e:f2:47:50:96:d9:7d:e4:f2:bf:63:b1:46:7d:
ee:83:e6:5a:e2:c9:a6:1e:fb:94:e3:c4:25:48:d9:98:7a:36:
18:40:36:8c:28:27:c6:91:b6:49:8d:d1:60:d2:01:70:ea:30:
04:21:84:b2:b0:a5:a3:63:2a:8e:26:af:81:8d:93:58:a8:e5:
ca:61:c3:8c:d7:c9:6e:79:2a:f7:82:ba:f2:d5:dc:e6:4b:54:
50:c9:49:89:2e:00:35:6f:ef:6e:bd:e5:ea:b6:73:81:dc:9a:
b0:26:8a:b2:68:19:b8:db:03:bc:95:c2:b0:d2:cc:b6:7f:2e:
1e:99:8f:12:67:a5:27:8e:cd:33:e2:d6:d8:53:b4:51:f7:cd:
fb:12:31:20:32:af:7c:16:17:11:61:57:01:38:66:1b:c3:f7:
d6:8b:2f:a5:38:27:30:fd:77:de:df:6a:16:ba:70:4d:53:8e:
73:fc:90:8f:a7:76:05:34:50:c4:89:70:ae:7e:c2:2c:2d:f6:
35:84:20:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 10:01:08 2025 by rpki-client