Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/bbc17c-878d-4f89-8790-e584b79a4349/1/QX9i63PHPberNjyLWBw_yIwIPuA.roa
File: QX9i63PHPberNjyLWBw_yIwIPuA.roa (raw, json)
Hash identifier: I2ZJLsZyD0UysCyjKc/bviiBzti/Sn1ZxU0HlKRLUu4=
Subject key identifier: 41:7F:62:EB:73:C7:3D:B7:AB:36:3C:8B:58:1C:3F:C8:8C:08:3E:E0
Certificate issuer: /CN=eae26c2c0b679218b0a8351eb783b63f8b6e2cbc
Certificate serial: 01856DCAE1406903F659A880759F7C9270C0
Authority key identifier: EA:E2:6C:2C:0B:67:92:18:B0:A8:35:1E:B7:83:B6:3F:8B:6E:2C:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6uJsLAtnkhiwqDUet4O2P4tuLLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/bbc17c-878d-4f89-8790-e584b79a4349/1/QX9i63PHPberNjyLWBw_yIwIPuA.roa
Signing time: Sun 01 Jan 2023 14:44:50 +0000
ROA not before: Sun 01 Jan 2023 14:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47693
IP address blocks: 185.99.21.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ca:e1:40:69:03:f6:59:a8:80:75:9f:7c:92:70:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eae26c2c0b679218b0a8351eb783b63f8b6e2cbc
Validity
Not Before: Jan 1 14:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=417f62eb73c73db7ab363c8b581c3fc88c083ee0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:82:10:a5:94:c6:a0:0c:03:bb:92:e0:6b:0b:
3e:71:9b:af:01:86:f6:14:89:bb:d9:11:a1:5e:0c:
a4:30:2e:05:38:83:ca:7e:19:e7:0a:e9:fc:45:51:
63:83:ac:24:af:2f:b5:15:67:f1:b5:79:a4:f8:a1:
9e:04:da:41:49:e1:56:ed:9b:a4:dd:ab:06:12:39:
15:1f:9e:93:03:0c:ca:85:7f:2e:ce:a8:2d:8d:36:
52:7f:5f:b4:f7:ab:d8:6e:aa:cb:43:a1:6a:11:b7:
e8:7a:bd:53:85:35:e7:d9:dd:9e:72:62:7d:4a:83:
fd:55:c2:e3:1f:f6:ee:7f:2a:cd:ed:a9:83:7e:50:
50:21:95:8f:b7:6b:18:2e:aa:40:6c:59:35:c8:46:
19:ee:d8:56:c8:46:9a:53:56:b2:8b:17:6b:5c:10:
4a:f2:6d:8a:1a:1f:18:51:28:c4:0c:d5:07:74:41:
cf:1d:eb:77:0a:16:db:d7:56:03:90:fb:83:7a:44:
14:ec:09:8e:19:b0:51:72:7c:65:58:64:49:06:44:
6f:85:3d:59:a2:b2:26:14:35:97:d3:59:aa:df:2d:
29:24:52:88:ad:2a:27:59:2b:ae:ef:d0:a9:5c:92:
d5:cd:05:dd:8a:ae:fc:53:e1:ef:7a:c9:b9:cf:87:
ee:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:7F:62:EB:73:C7:3D:B7:AB:36:3C:8B:58:1C:3F:C8:8C:08:3E:E0
X509v3 Authority Key Identifier:
keyid:EA:E2:6C:2C:0B:67:92:18:B0:A8:35:1E:B7:83:B6:3F:8B:6E:2C:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6uJsLAtnkhiwqDUet4O2P4tuLLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/bbc17c-878d-4f89-8790-e584b79a4349/1/QX9i63PHPberNjyLWBw_yIwIPuA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/bbc17c-878d-4f89-8790-e584b79a4349/1/6uJsLAtnkhiwqDUet4O2P4tuLLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.99.21.0/24
Signature Algorithm: sha256WithRSAEncryption
09:8d:45:71:14:96:28:47:d6:74:7b:69:3c:3b:7e:e1:9d:a0:
34:9f:00:0a:53:8a:47:72:73:52:9e:9f:50:3c:55:04:4e:66:
7a:31:86:8f:f9:e2:4e:67:73:38:19:07:b9:83:7b:b5:7a:7e:
10:d4:e4:6f:02:b5:0a:11:87:12:36:cf:f8:bf:e2:17:1f:1e:
dc:7c:4d:1f:b6:b1:3f:c5:79:98:92:d1:ae:2e:2d:a3:41:08:
2c:a2:48:c3:1f:4d:0f:10:c3:6c:12:16:fd:75:0b:e6:7e:f7:
a1:5c:4e:26:0f:80:60:71:51:74:1e:ec:eb:c4:1b:97:71:08:
81:6e:90:ff:48:65:34:c4:65:54:f8:f5:97:3e:97:cf:95:31:
fe:06:1d:73:33:ac:08:77:e9:78:c1:88:7d:0d:1e:fd:e7:42:
64:db:33:06:05:e2:f4:6d:3d:39:2d:8d:55:69:92:d5:39:72:
32:b5:f4:b3:11:ba:cc:df:09:ab:13:c3:4a:56:08:9a:75:43:
ca:dc:70:2b:aa:13:f5:3f:95:10:0d:20:f7:cc:11:d9:1b:9d:
0c:6d:7b:62:bd:f3:7c:22:83:ae:4a:14:1c:b0:9d:a3:33:c4:
06:9c:d5:63:ba:44:90:86:25:89:c5:4d:58:7c:23:69:9b:11:
42:32:0f:a3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtyuFAaQP2WaiAdZ98knDAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVhZTI2YzJjMGI2NzkyMThiMGE4MzUxZWI3ODNiNjNmOGI2
ZTJjYmMwHhcNMjMwMTAxMTQ0NDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MTdmNjJlYjczYzczZGI3YWIzNjNjOGI1ODFjM2ZjODhjMDgzZWUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArYIQpZTGoAwDu5Lgaws+cZuvAYb2
FIm72RGhXgykMC4FOIPKfhnnCun8RVFjg6wkry+1FWfxtXmk+KGeBNpBSeFW7Zuk
3asGEjkVH56TAwzKhX8uzqgtjTZSf1+096vYbqrLQ6FqEbfoer1ThTXn2d2ecmJ9
SoP9VcLjH/bufyrN7amDflBQIZWPt2sYLqpAbFk1yEYZ7thWyEaaU1ayixdrXBBK
8m2KGh8YUSjEDNUHdEHPHet3Chbb11YDkPuDekQU7AmOGbBRcnxlWGRJBkRvhT1Z
orImFDWX01mq3y0pJFKIrSonWSuu79CpXJLVzQXdiq78U+Hvesm5z4fujwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEF/Yutzxz23qzY8i1gcP8iMCD7gMB8GA1UdIwQY
MBaAFOribCwLZ5IYsKg1HreDtj+Lbiy8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNnVKc0xBdG5raGl3cURVZXQ0TzJQNHR1TEx3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy9iYmMxN2MtODc4ZC00Zjg5LTg3OTAt
ZTU4NGI3OWE0MzQ5LzEvUVg5aTYzUEhQYmVyTmp5TFdCd195SXdJUHVBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yy9iYmMxN2MtODc4ZC00Zjg5LTg3OTAtZTU4NGI3OWE0MzQ5
LzEvNnVKc0xBdG5raGl3cURVZXQ0TzJQNHR1TEx3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuWMVMA0G
CSqGSIb3DQEBCwUAA4IBAQAJjUVxFJYoR9Z0e2k8O37hnaA0nwAKU4pHcnNSnp9Q
PFUETmZ6MYaP+eJOZ3M4GQe5g3u1en4Q1ORvArUKEYcSNs/4v+IXHx7cfE0ftrE/
xXmYktGuLi2jQQgsokjDH00PEMNsEhb9dQvmfvehXE4mD4BgcVF0HuzrxBuXcQiB
bpD/SGU0xGVU+PWXPpfPlTH+Bh1zM6wId+l4wYh9DR7950Jk2zMGBeL0bT05LY1V
aZLVOXIytfSzEbrM3wmrE8NKVgiadUPK3HArqhP1P5UQDSD3zBHZG50MbXtivfN8
IoOuShQcsJ2jM8QGnNVjukSQhiWJxU1YfCNpmxFCMg+j
-----END CERTIFICATE-----
Generated at Thu Mar 13 20:45:02 2025 by rpki-client