Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/qgPWKYFtu0IUR_-V5fRqLPpAhTU.roa
File: qgPWKYFtu0IUR_-V5fRqLPpAhTU.roa (raw, json)
Hash identifier: bvnPOKZmZN3AfRZBK/C64xJZdjYAq2fKvZPLVCNSpJc=
Subject key identifier: AA:03:D6:29:81:6D:BB:42:14:47:FF:95:E5:F4:6A:2C:FA:40:85:35
Certificate issuer: /CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Certificate serial: 0195AB995E97524A3939782E3EB754C5CF91
Authority key identifier: 99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/qgPWKYFtu0IUR_-V5fRqLPpAhTU.roa
Signing time: Tue 18 Mar 2025 23:31:49 +0000
ROA not before: Tue 18 Mar 2025 23:31:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 132892
IP address blocks: 141.101.88.0/24 maxlen: 24
141.101.89.0/24 maxlen: 24
2a06:98c0:3600::/48 maxlen: 48
2a06:98c0:3601::/48 maxlen: 48
2a06:98c0:3602::/48 maxlen: 48
2a06:98c0:3603::/48 maxlen: 48
2a06:98c0:3604::/48 maxlen: 48
2a06:98c0:3605::/48 maxlen: 48
2a06:98c0:3606::/48 maxlen: 48
2a06:98c0:3607::/48 maxlen: 48
2a06:98c0:3608::/48 maxlen: 48
2a06:98c0:3609::/48 maxlen: 48
2a06:98c0:360a::/48 maxlen: 48
2a06:98c0:360b::/48 maxlen: 48
2a06:98c0:360c::/48 maxlen: 48
2a06:98c0:360d::/48 maxlen: 48
2a06:98c0:360f::/48 maxlen: 48
2a06:98c0:3610::/48 maxlen: 48
2a06:98c0:3611::/48 maxlen: 48
2a06:98c0:3613::/48 maxlen: 48
2a06:98c0:3614::/48 maxlen: 48
2a06:98c0:3615::/48 maxlen: 48
2a06:98c0:361c::/48 maxlen: 48
2a06:98c0:361d::/48 maxlen: 48
2a06:98c0:361f::/48 maxlen: 48
2a06:98c0:3620::/48 maxlen: 48
2a06:98c0:3621::/48 maxlen: 48
2a06:98c0:3622::/48 maxlen: 48
2a06:98c0:3623::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:ab:99:5e:97:52:4a:39:39:78:2e:3e:b7:54:c5:cf:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Validity
Not Before: Mar 18 23:31:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=aa03d629816dbb421447ff95e5f46a2cfa408535
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:15:29:63:91:04:0a:3b:fd:08:21:89:eb:0a:
75:83:22:e6:ac:2e:fe:31:99:1f:0d:39:3e:8a:17:
91:f3:30:16:29:ce:1e:4a:46:89:89:1c:a7:4b:aa:
87:a4:f6:56:18:5b:54:26:ec:47:09:b2:c8:06:87:
a9:07:4d:22:a9:f2:9d:64:b4:e8:c1:5e:ff:78:b3:
37:c5:a9:c3:6a:58:15:a6:de:aa:c5:01:93:28:fb:
de:c7:cb:0f:00:70:96:f8:ba:35:c7:a9:ee:28:82:
d9:86:20:c6:7d:f2:6e:b5:1f:e2:0e:98:63:db:44:
64:95:e1:d8:cc:e5:29:31:28:0d:23:f0:e9:96:d5:
85:9a:14:0d:35:76:0d:4a:bb:8d:d2:67:3d:a5:da:
03:3c:6f:bc:c6:94:89:74:31:6f:20:ae:27:39:a7:
f2:00:cb:53:50:12:71:e4:c4:e9:09:c9:45:21:ca:
d0:2a:96:5b:7f:d8:3d:97:e0:46:fe:ed:4d:c4:92:
44:63:9b:77:90:93:68:b4:ce:4e:9f:b0:03:e0:2a:
e0:72:bb:07:41:ea:8b:47:84:25:2f:d4:7d:a7:d8:
1e:7b:c4:df:1f:44:12:00:9a:ed:dd:8b:76:ec:9f:
3f:f9:b4:19:44:90:a5:e3:f8:39:ff:37:ee:68:ee:
95:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:03:D6:29:81:6D:BB:42:14:47:FF:95:E5:F4:6A:2C:FA:40:85:35
X509v3 Authority Key Identifier:
keyid:99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/qgPWKYFtu0IUR_-V5fRqLPpAhTU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.101.88.0/23
IPv6:
2a06:98c0:3600::-2a06:98c0:360d:ffff:ffff:ffff:ffff:ffff
2a06:98c0:360f::-2a06:98c0:3611:ffff:ffff:ffff:ffff:ffff
2a06:98c0:3613::-2a06:98c0:3615:ffff:ffff:ffff:ffff:ffff
2a06:98c0:361c::/47
2a06:98c0:361f::-2a06:98c0:3623:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
1f:e6:29:c0:ea:83:73:c9:b9:30:8c:87:b6:67:77:d2:2c:18:
74:6b:2c:e0:ef:0f:46:57:a7:34:1f:e4:ee:2f:84:f5:3d:ac:
e4:3a:7f:25:6e:7a:e0:cb:56:cc:2a:e1:d4:6e:3b:e8:66:27:
79:0b:e1:58:6a:77:56:e0:62:a6:bf:39:1c:56:90:6f:a9:e2:
80:b7:f4:ff:34:6f:5e:8e:e7:5f:59:06:9a:64:ec:d7:3a:82:
19:21:14:8b:b0:2c:17:1f:66:48:f3:3d:6a:98:c4:b9:29:c1:
c0:d9:15:27:f6:e0:68:64:36:e5:77:9e:4d:87:56:89:fa:79:
d3:5f:f4:89:19:66:bf:33:cb:b2:07:43:2f:97:4f:3e:59:b4:
40:2c:f3:d4:8a:98:f7:43:b9:4e:4c:1c:d6:6e:aa:9b:19:5d:
e9:1e:bf:80:1c:22:c5:aa:19:46:e4:53:45:53:93:f2:11:e2:
fd:fb:ab:35:56:b4:e8:37:c8:b4:65:46:d1:cf:f5:62:3e:34:
fc:1f:69:21:2a:74:aa:97:35:bb:4e:3e:95:4f:13:1e:86:a7:
e0:d6:4b:e7:55:4a:fd:e8:d5:d8:20:6d:57:61:c1:47:d8:81:
1c:e7:19:5d:68:e9:e4:45:f0:11:ee:63:be:28:b1:a5:aa:9c:
3f:ef:5b:59
-----BEGIN CERTIFICATE-----
MIIFXTCCBEWgAwIBAgISAZWrmV6XUko5OXguPrdUxc+RMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5ZDViZmFkNDVkN2M2NWE2ZTM0MzAyODUwOWZkMTg5MmU5
N2I5ZDAwHhcNMjUwMzE4MjMzMTQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYTAzZDYyOTgxNmRiYjQyMTQ0N2ZmOTVlNWY0NmEyY2ZhNDA4NTM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1RUpY5EECjv9CCGJ6wp1gyLmrC7+
MZkfDTk+iheR8zAWKc4eSkaJiRynS6qHpPZWGFtUJuxHCbLIBoepB00iqfKdZLTo
wV7/eLM3xanDalgVpt6qxQGTKPvex8sPAHCW+Lo1x6nuKILZhiDGffJutR/iDphj
20RkleHYzOUpMSgNI/DpltWFmhQNNXYNSruN0mc9pdoDPG+8xpSJdDFvIK4nOafy
AMtTUBJx5MTpCclFIcrQKpZbf9g9l+BG/u1NxJJEY5t3kJNotM5On7AD4CrgcrsH
QeqLR4QlL9R9p9gee8TfH0QSAJrt3Yt27J8/+bQZRJCl4/g5/zfuaO6VkQIDAQAB
o4ICaTCCAmUwHQYDVR0OBBYEFKoD1imBbbtCFEf/leX0aiz6QIU1MB8GA1UdIwQY
MBaAFJnVv61F18ZabjQwKFCf0Ykul7nQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbWRXX3JVWFh4bHB1TkRBb1VKX1JpUzZYdWRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC84MTcxZTMtMmQyOS00Y2I2LThhOTQt
NzU1MTgwOWNiNzMxLzEvcWdQV0tZRnR1MElVUl8tVjVmUnFMUHBBaFRVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC84MTcxZTMtMmQyOS00Y2I2LThhOTQtNzU1MTgwOWNiNzMx
LzEvbWRXX3JVWFh4bHB1TkRBb1VKX1JpUzZYdWRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMH8GCCsGAQUFBwEHAQH/BHAwbjAMBAIAATAGAwQBjWVYMF4E
AgACMFgwEQMGASoGmMA2AwcBKgaYwDYMMBIDBwAqBpjANg8DBwEqBpjANhAwEgMH
ACoGmMA2EwMHASoGmMA2FAMHASoGmMA2HDASAwcAKgaYwDYfAwcCKgaYwDYgMA0G
CSqGSIb3DQEBCwUAA4IBAQAf5inA6oNzybkwjIe2Z3fSLBh0ayzg7w9GV6c0H+Tu
L4T1PazkOn8lbnrgy1bMKuHUbjvoZid5C+FYandW4GKmvzkcVpBvqeKAt/T/NG9e
judfWQaaZOzXOoIZIRSLsCwXH2ZI8z1qmMS5KcHA2RUn9uBoZDbld55Nh1aJ+nnT
X/SJGWa/M8uyB0Mvl08+WbRALPPUipj3Q7lOTBzWbqqbGV3pHr+AHCLFqhlG5FNF
U5PyEeL9+6s1VrToN8i0ZUbRz/ViPjT8H2khKnSqlzW7Tj6VTxMehqfg1kvnVUr9
6NXYIG1XYcFH2IEc5xldaOnkRfAR7mO+KLGlqpw/71tZ
-----END CERTIFICATE-----
Generated at Fri Apr 11 08:18:24 2025 by rpki-client