Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/7e070e-7930-43c8-a66d-215c3d8f8914/1/qbJh1gxvhPhTW_QhcQsTXSMSG2k.roa
File: qbJh1gxvhPhTW_QhcQsTXSMSG2k.roa (raw, json)
Hash identifier: z/f7K4NzNfNZVvKO/ZrbSbIdLW4Wrj0STXKrCvn91Oo=
Subject key identifier: A9:B2:61:D6:0C:6F:84:F8:53:5B:F4:21:71:0B:13:5D:23:12:1B:69
Certificate issuer: /CN=88796992df883be1bab2a52f45f5254ebb52b697
Certificate serial: 01E0ED55
Authority key identifier: 88:79:69:92:DF:88:3B:E1:BA:B2:A5:2F:45:F5:25:4E:BB:52:B6:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iHlpkt-IO-G6sqUvRfUlTrtStpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/7e070e-7930-43c8-a66d-215c3d8f8914/1/qbJh1gxvhPhTW_QhcQsTXSMSG2k.roa
Signing time: Tue 15 Feb 2022 18:45:21 +0000
ROA not before: Tue 15 Feb 2022 18:45:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 100
IP address blocks: 195.16.74.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31518037 (0x1e0ed55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88796992df883be1bab2a52f45f5254ebb52b697
Validity
Not Before: Feb 15 18:45:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a9b261d60c6f84f8535bf421710b135d23121b69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:a4:de:17:d4:49:83:d2:24:95:a7:e6:85:e4:
97:62:8e:47:da:9f:f2:df:8d:f7:19:c8:3f:32:c9:
30:84:47:f0:12:dd:6d:89:94:c4:91:50:df:d9:20:
98:83:bb:32:9d:9d:a4:9f:97:74:04:7f:b7:20:a3:
18:f4:4b:de:ac:39:c3:31:5e:67:4d:65:7d:45:58:
ac:86:a1:8c:4c:38:5c:4f:52:6b:a3:94:b2:1b:21:
60:f8:1f:5e:97:b9:eb:bb:18:19:68:58:8f:c9:f4:
52:f2:9c:30:02:43:27:45:c7:48:cb:10:55:b5:94:
96:2d:da:ad:b7:be:fc:97:bf:e2:ad:de:f6:32:ed:
14:ec:d8:32:f1:95:19:cc:51:32:92:f6:59:10:25:
e9:1d:13:4c:76:eb:7b:bf:f6:c9:4b:99:69:41:d5:
24:4a:9b:82:06:4a:fb:45:e3:8b:4a:cd:3d:4e:42:
dd:fa:5f:6c:df:5c:17:c6:24:1a:16:36:1c:00:8c:
cd:17:f5:50:33:99:42:b8:0c:7f:b3:d4:f7:1f:f1:
39:8b:4a:b1:5b:c7:8c:69:fc:51:4b:9e:d7:e5:c2:
a7:bf:df:d6:ad:eb:3b:aa:92:de:ea:65:ac:c9:a9:
f3:ec:da:36:f4:b6:2d:cb:df:62:54:12:87:dd:00:
b5:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:B2:61:D6:0C:6F:84:F8:53:5B:F4:21:71:0B:13:5D:23:12:1B:69
X509v3 Authority Key Identifier:
keyid:88:79:69:92:DF:88:3B:E1:BA:B2:A5:2F:45:F5:25:4E:BB:52:B6:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iHlpkt-IO-G6sqUvRfUlTrtStpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/7e070e-7930-43c8-a66d-215c3d8f8914/1/qbJh1gxvhPhTW_QhcQsTXSMSG2k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/7e070e-7930-43c8-a66d-215c3d8f8914/1/iHlpkt-IO-G6sqUvRfUlTrtStpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.16.74.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:6a:f7:25:7e:d1:2e:87:72:4a:4c:e6:b5:f8:ae:49:e9:7a:
78:8f:fa:85:1a:ec:2c:5c:f6:b1:b9:e7:c4:2b:4b:b0:4c:4b:
46:d8:d5:e2:eb:0f:55:7e:c8:c7:d0:15:2a:8a:09:a8:1f:62:
9a:2a:cd:cf:bd:11:23:c9:1f:bc:4b:6c:ee:44:c4:c5:d9:f2:
c4:6d:e1:bd:6f:41:12:11:bb:af:06:2e:6e:ab:19:f6:8c:05:
38:3d:9c:8e:2b:67:a0:ed:82:a6:36:58:89:ff:f5:8c:cc:a4:
4a:c2:5d:bb:6f:23:a7:35:36:0a:af:bd:d7:82:25:f4:e7:80:
9a:0a:51:c9:76:35:52:4c:75:0b:69:aa:c4:de:06:b2:b3:0c:
dc:2c:bd:ba:f8:69:3f:15:e0:aa:9f:ae:11:51:f8:68:0b:24:
fd:c8:92:db:4c:55:b4:a0:12:a5:54:60:7d:b5:00:a6:5c:c9:
f0:06:f8:ca:e4:1b:38:18:ad:45:1a:48:e1:e2:3d:bb:37:16:
ee:ca:d0:e3:5d:b9:d9:2d:d3:21:1d:c4:bd:86:19:b6:29:68:
67:8b:b6:62:f4:cc:ef:74:62:84:cb:63:da:3b:1a:be:70:ff:
96:aa:89:f8:7d:11:a9:5c:e9:be:12:16:0c:32:e9:07:d6:e7:
95:55:45:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 12 13:58:05 2025 by rpki-client