Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/c71daf-dd66-41d8-b04f-da88b6bdb316/1/qtJ3Y8Nh3yBs1KUFcCBsBoHTW90.roa
File: qtJ3Y8Nh3yBs1KUFcCBsBoHTW90.roa (raw, json)
Hash identifier: TAPDQ7+BV0Mqpj8ADDZprtd8brSGvTT0R/6Gqd3aB70=
Subject key identifier: AA:D2:77:63:C3:61:DF:20:6C:D4:A5:05:70:20:6C:06:81:D3:5B:DD
Certificate issuer: /CN=581ecc1a74cf92ab619c5f710123937ce50d9c43
Certificate serial: 07D50C6A
Authority key identifier: 58:1E:CC:1A:74:CF:92:AB:61:9C:5F:71:01:23:93:7C:E5:0D:9C:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WB7MGnTPkqthnF9xASOTfOUNnEM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/c71daf-dd66-41d8-b04f-da88b6bdb316/1/qtJ3Y8Nh3yBs1KUFcCBsBoHTW90.roa
Signing time: Tue 15 Mar 2022 10:33:32 +0000
ROA not before: Tue 15 Mar 2022 10:33:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208041
IP address blocks: 193.160.10.0/23 maxlen: 23
193.160.14.0/23 maxlen: 23
2a0f:d181::/32 maxlen: 32
2a0f:d180::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131402858 (0x7d50c6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=581ecc1a74cf92ab619c5f710123937ce50d9c43
Validity
Not Before: Mar 15 10:33:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aad27763c361df206cd4a50570206c0681d35bdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:80:a7:ef:c7:33:be:b0:ab:c8:1e:44:b6:8b:
eb:c8:41:94:08:96:0c:ac:fe:1f:2d:09:3d:2a:a2:
ee:83:75:3e:2f:57:53:c7:37:a9:bf:74:86:b7:4e:
99:0c:1e:e4:bb:29:03:61:c7:43:d4:e6:a3:db:17:
a4:e0:dd:cf:6d:72:d6:e4:d7:50:9f:a3:09:2a:a6:
f2:76:0a:3a:35:fa:bf:cd:6b:be:e1:15:03:58:18:
e7:80:d8:50:63:d3:3a:23:8b:cf:41:b6:ec:af:9e:
e3:93:a1:22:62:56:7b:ba:9d:cf:b0:34:b1:32:39:
df:5e:3c:83:da:2b:f3:11:e7:c3:bd:3a:aa:7e:25:
ba:bf:cf:ad:5e:44:6c:28:bf:69:21:ea:5d:cd:ae:
cc:a4:c6:c0:3d:66:77:b6:ac:78:46:ee:76:50:61:
54:76:e7:d0:8e:ef:93:4b:3d:5d:c6:22:4d:db:2b:
59:13:9a:31:05:5a:02:7e:b0:b1:78:24:24:76:b8:
29:88:cb:b0:d7:d5:02:d2:05:2d:aa:f3:c6:b4:38:
26:e2:93:99:f2:11:01:d4:94:b6:35:7f:2b:f7:97:
dd:44:71:17:18:78:7b:38:0d:2a:34:66:9d:35:04:
09:38:82:b9:17:91:2e:0d:ad:ea:bd:86:bf:57:68:
42:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:D2:77:63:C3:61:DF:20:6C:D4:A5:05:70:20:6C:06:81:D3:5B:DD
X509v3 Authority Key Identifier:
keyid:58:1E:CC:1A:74:CF:92:AB:61:9C:5F:71:01:23:93:7C:E5:0D:9C:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WB7MGnTPkqthnF9xASOTfOUNnEM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/c71daf-dd66-41d8-b04f-da88b6bdb316/1/qtJ3Y8Nh3yBs1KUFcCBsBoHTW90.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/c71daf-dd66-41d8-b04f-da88b6bdb316/1/WB7MGnTPkqthnF9xASOTfOUNnEM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.10.0/23
193.160.14.0/23
IPv6:
2a0f:d180::/31
Signature Algorithm: sha256WithRSAEncryption
18:8c:46:89:15:fd:f6:b3:54:d7:a0:16:cd:d6:c0:6e:48:27:
6e:46:a4:fd:a5:ec:a3:5d:1b:78:80:92:fb:3c:8a:71:70:80:
2a:10:22:5e:51:99:26:8c:f8:d4:97:ce:1e:be:d1:0b:ee:b8:
a4:88:d0:80:df:3c:e0:84:71:17:9e:66:86:cb:c8:6d:c8:d7:
cb:c3:0f:ba:7e:d4:16:8c:94:1f:1e:dc:e7:c0:40:ac:14:83:
dd:eb:fb:d8:7f:c6:e1:05:15:29:a5:a6:5d:b2:b4:69:0c:f6:
10:ce:25:ac:a2:80:3f:96:69:a1:dd:94:a6:c3:90:92:0f:11:
a0:a7:04:07:c8:08:33:01:59:dc:50:89:ec:9c:9c:d0:86:6e:
33:c2:d9:ae:34:88:3f:bc:22:a5:07:5d:d7:e5:8e:22:ef:67:
bd:d8:16:a4:a8:88:eb:83:69:80:19:f9:97:49:a8:95:d2:e5:
d3:b2:ce:ed:67:78:2d:71:93:18:6d:25:22:ed:53:2c:d9:9d:
52:45:84:85:48:c1:54:5a:36:44:a1:6f:6d:f9:fd:22:1c:82:
df:08:bd:92:bf:a4:b8:f8:4c:41:4c:b4:72:49:93:88:18:1d:
2d:3e:ac:63:f6:84:23:a7:12:b1:51:c4:d6:95:25:f6:d1:0b:
08:e9:7f:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 08:20:50 2025 by rpki-client