Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/QUqReStf6TEFnsU1tSixUGPYTuI.roa
File: QUqReStf6TEFnsU1tSixUGPYTuI.roa (raw, json)
Hash identifier: K60fCDp86LLBo6obO2VN9uWaTquDob132b4Q/cH5WYU=
Subject key identifier: 41:4A:91:79:2B:5F:E9:31:05:9E:C5:35:B5:28:B1:50:63:D8:4E:E2
Certificate issuer: /CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Certificate serial: 019427B42251B6A256767DB6FA7B34435C1B
Authority key identifier: F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/QUqReStf6TEFnsU1tSixUGPYTuI.roa
Signing time: Thu 02 Jan 2025 15:48:24 +0000
ROA not before: Thu 02 Jan 2025 15:48:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 5511
IP address blocks: 82.140.128.0/24 maxlen: 24
82.140.129.0/24 maxlen: 24
82.140.130.0/24 maxlen: 24
82.140.159.0/24 maxlen: 24
82.140.177.0/24 maxlen: 24
82.140.180.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b4:22:51:b6:a2:56:76:7d:b6:fa:7b:34:43:5c:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Validity
Not Before: Jan 2 15:48:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=414a91792b5fe931059ec535b528b15063d84ee2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e6:22:e8:8d:5d:1c:30:3e:83:a1:60:43:b5:
9a:bf:46:0c:a5:ef:e9:0b:a0:52:7f:7e:a4:a1:cc:
2e:d7:aa:9f:1d:3a:a0:67:80:4c:b3:61:95:37:5e:
df:2c:fe:61:5b:e9:22:6b:a4:62:b9:73:69:7b:da:
09:a9:a1:f2:4a:84:85:99:74:ed:0b:a5:c3:40:81:
eb:d6:ea:6a:69:a1:8c:24:d9:7e:51:5a:80:ec:3a:
d9:b5:4f:fd:91:60:5a:6d:cb:98:78:a9:ef:ec:68:
71:0a:9b:fe:12:f1:c7:35:62:44:28:e3:94:0a:2b:
7e:5d:2e:33:a9:de:a9:0f:e6:ab:5d:86:83:b8:92:
e1:85:49:03:2c:9a:7a:a0:9e:04:42:12:4f:0a:c3:
2c:69:47:13:6f:63:e6:3d:98:fe:35:02:62:60:51:
89:c8:41:a5:3e:fb:2b:59:c9:6b:bc:db:0d:5c:11:
d2:d6:0f:1d:68:80:6e:0e:12:8d:5a:c1:b0:ba:fa:
48:1e:3d:83:23:a3:fd:ea:f9:af:b5:42:7d:e9:d9:
f0:50:46:8a:98:92:6d:d0:a1:6c:da:f9:3a:7b:14:
93:1b:d6:bd:e3:ba:0f:3d:4e:db:64:be:58:f4:5d:
79:01:fd:78:fb:ed:d0:d5:0b:53:0e:0b:dc:63:55:
43:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:4A:91:79:2B:5F:E9:31:05:9E:C5:35:B5:28:B1:50:63:D8:4E:E2
X509v3 Authority Key Identifier:
keyid:F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/QUqReStf6TEFnsU1tSixUGPYTuI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.128.0-82.140.130.255
82.140.159.0/24
82.140.177.0/24
82.140.180.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:d8:5a:ac:7a:ea:44:17:9d:e6:da:a9:50:95:6f:2a:da:7b:
ab:25:0d:f6:74:b6:39:42:2f:60:f9:ac:7c:3f:73:90:54:9d:
f5:c7:02:50:86:4c:13:0f:cd:91:c0:3e:58:3d:10:b8:43:b5:
ca:07:ce:12:d4:d1:81:be:d1:a1:94:19:c1:ec:38:6b:02:38:
95:d2:80:49:c6:9a:0e:c5:87:40:bf:8d:fe:01:29:9c:77:96:
18:25:85:85:b2:80:59:25:c8:b4:59:0d:a0:25:8e:a6:b6:46:
9d:d5:ca:65:1e:a8:25:81:13:00:41:97:44:81:50:0f:04:6b:
39:1d:2f:ae:ee:28:6a:da:98:20:e8:27:d5:46:5d:63:7a:5d:
61:56:12:09:eb:d3:25:4a:ae:95:6d:c5:7d:b0:0a:cc:e1:f1:
0d:4d:31:ef:4d:f8:a9:0c:cc:95:63:5b:fa:28:9a:70:32:04:
0f:27:a7:da:4c:cd:82:f1:5b:5d:58:8a:71:e8:ed:1d:fa:24:
cc:1f:23:19:0c:27:1e:1f:65:ad:82:d6:fa:9b:a2:41:ba:0c:
ee:be:69:0a:e7:86:96:40:46:af:ae:eb:55:0c:fa:01:54:13:
07:8f:ea:41:4d:b6:e9:2b:e4:0d:6b:cc:44:e8:26:70:3b:c7:
4f:58:90:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:04:01 2025 by rpki-client