Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/81b2c7-f454-4119-894a-7a06ff002517/1/Qzsv6JoCjjcwb2ZwyNYxWYWt4Xk.roa
File: Qzsv6JoCjjcwb2ZwyNYxWYWt4Xk.roa (raw, json)
Hash identifier: ToKPVGU4kUs10EflzvqcGH84k9PN/XYqsUpdwJ4GkyQ=
Subject key identifier: 43:3B:2F:E8:9A:02:8E:37:30:6F:66:70:C8:D6:31:59:85:AD:E1:79
Certificate issuer: /CN=11660f0a05fc4cf7332230852d9d78bd7ac2f24b
Certificate serial: 019425FC41D48AD8A245E4B92A478B115080
Authority key identifier: 11:66:0F:0A:05:FC:4C:F7:33:22:30:85:2D:9D:78:BD:7A:C2:F2:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EWYPCgX8TPczIjCFLZ14vXrC8ks.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/81b2c7-f454-4119-894a-7a06ff002517/1/Qzsv6JoCjjcwb2ZwyNYxWYWt4Xk.roa
Signing time: Thu 02 Jan 2025 07:47:56 +0000
ROA not before: Thu 02 Jan 2025 07:47:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211713
IP address blocks: 185.93.24.0/22 maxlen: 24
2a03:8e20::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:41:d4:8a:d8:a2:45:e4:b9:2a:47:8b:11:50:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11660f0a05fc4cf7332230852d9d78bd7ac2f24b
Validity
Not Before: Jan 2 07:47:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=433b2fe89a028e37306f6670c8d6315985ade179
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:30:70:fd:dc:f3:0d:79:cf:d4:45:06:f0:c4:
08:8c:c9:b6:90:23:0a:62:7c:e8:73:76:ee:d6:51:
c6:2a:d8:76:f3:50:82:c3:3c:6f:c0:ed:89:fd:a7:
a6:10:85:e5:8d:1f:a1:fc:bb:15:4e:2a:95:c1:6c:
81:36:ef:39:f8:53:af:a0:f2:4b:11:79:66:fc:c4:
b7:5c:6d:ba:49:a4:44:4d:16:2e:41:e8:73:82:70:
35:36:bf:41:d8:91:80:f4:d0:28:13:ac:7f:f8:af:
c9:38:47:18:eb:c2:24:b4:22:a7:83:91:79:5b:dd:
28:8b:09:41:80:90:c9:5e:ad:ac:1c:16:8a:a1:93:
9e:b1:d0:ac:33:08:5a:4c:b3:1d:66:dd:96:9c:c6:
a7:5d:04:f1:c3:78:2b:d0:6b:d6:82:93:41:31:39:
89:0d:d4:99:3d:11:59:a7:6b:5f:4c:dd:45:b7:f4:
c1:f3:28:4b:b5:eb:82:60:e0:01:a9:51:e2:8a:4e:
81:64:5f:b3:d2:71:df:a0:64:73:04:c6:bf:5c:c8:
5e:7d:32:a0:dd:4e:3f:fa:6b:fb:70:3c:83:23:9e:
00:d8:c5:e2:ad:c5:d8:34:bc:e3:9e:09:8c:92:07:
15:ed:00:a5:ea:4e:5f:58:00:c4:c5:5c:31:c2:e1:
9a:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:3B:2F:E8:9A:02:8E:37:30:6F:66:70:C8:D6:31:59:85:AD:E1:79
X509v3 Authority Key Identifier:
keyid:11:66:0F:0A:05:FC:4C:F7:33:22:30:85:2D:9D:78:BD:7A:C2:F2:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EWYPCgX8TPczIjCFLZ14vXrC8ks.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/81b2c7-f454-4119-894a-7a06ff002517/1/Qzsv6JoCjjcwb2ZwyNYxWYWt4Xk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/81b2c7-f454-4119-894a-7a06ff002517/1/EWYPCgX8TPczIjCFLZ14vXrC8ks.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.24.0/22
IPv6:
2a03:8e20::/32
Signature Algorithm: sha256WithRSAEncryption
58:4f:8a:7d:51:81:9d:d5:14:d2:8b:be:b5:bc:48:ae:48:43:
ab:3e:99:5c:98:e7:32:3f:2f:00:df:22:21:f4:8a:cc:54:b8:
ea:7b:90:28:c4:c8:90:6c:8c:cb:7f:a5:c3:88:ba:10:8d:5e:
ca:33:15:54:0b:b7:f2:28:ee:ce:e9:51:98:e9:ed:5e:69:86:
1c:cd:ed:dc:c1:b5:63:a7:f9:36:b0:89:09:50:50:ff:33:d0:
cf:11:42:16:de:23:3c:14:96:d3:e6:b8:01:6c:60:1c:4b:b3:
b4:5e:8c:4c:26:a0:55:9b:49:76:91:63:67:10:8a:49:8f:95:
99:b3:39:67:d1:09:59:48:82:c9:5c:bd:24:09:ba:66:f3:64:
97:49:d0:92:d5:95:24:e2:99:1d:74:af:df:95:e7:12:2f:19:
f3:3a:2d:da:cc:50:d0:c0:91:24:14:36:65:d8:1f:9f:f5:f3:
b8:7d:ea:4e:c5:5e:d3:13:a0:05:87:f1:62:d5:32:ac:8b:0f:
52:4a:75:47:c5:8c:72:6c:fb:c5:66:f4:4d:7e:c1:33:4a:25:
fb:62:28:30:84:0d:62:f6:27:8a:19:07:03:a3:7c:fc:a5:19:
42:91:ac:c9:b1:7f:8d:3d:e5:41:ad:ba:2a:63:83:ff:e2:59:
6c:e2:33:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:12:02 2025 by rpki-client