Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/1af6ea-c736-4c20-a83c-67cd2b459aae/1/qyViuV165L-xE7uYQ2sF7wlGYBU.roa
File: qyViuV165L-xE7uYQ2sF7wlGYBU.roa (raw, json)
Hash identifier: 0KdoKDI8ZdUz1uym9xGUbcM+qAI/3kuRuqeRZbordfQ=
Subject key identifier: AB:25:62:B9:5D:7A:E4:BF:B1:13:BB:98:43:6B:05:EF:09:46:60:15
Certificate issuer: /CN=8dd003af04774dd3e39730497989a3a171516252
Certificate serial: 019423D7454CBD1126B43CE6A79A2600F2B3
Authority key identifier: 8D:D0:03:AF:04:77:4D:D3:E3:97:30:49:79:89:A3:A1:71:51:62:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jdADrwR3TdPjlzBJeYmjoXFRYlI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/1af6ea-c736-4c20-a83c-67cd2b459aae/1/qyViuV165L-xE7uYQ2sF7wlGYBU.roa
Signing time: Wed 01 Jan 2025 21:48:17 +0000
ROA not before: Wed 01 Jan 2025 21:48:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211649
IP address blocks: 185.251.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:45:4c:bd:11:26:b4:3c:e6:a7:9a:26:00:f2:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8dd003af04774dd3e39730497989a3a171516252
Validity
Not Before: Jan 1 21:48:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ab2562b95d7ae4bfb113bb98436b05ef09466015
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:23:24:15:38:f5:9b:06:b4:d6:24:8e:82:ab:
cd:30:7e:6f:6e:6c:e9:75:a1:90:cf:f2:a8:9e:d1:
f4:86:cf:42:28:c4:e8:7f:1e:38:b4:69:eb:0f:df:
83:62:50:91:e2:fe:a1:12:ad:02:50:71:6a:d7:f4:
36:b5:36:e8:0a:35:8e:16:18:cb:10:0d:03:2a:46:
5c:13:88:ea:68:c6:5b:3a:a4:1e:0a:93:8b:8d:f0:
28:ee:1d:4b:9a:b5:5f:0a:e9:86:fd:49:7b:a4:58:
cc:69:8c:9e:c3:04:cd:d5:cd:3b:dd:71:28:e8:39:
aa:75:d7:78:41:4a:30:00:f8:59:d2:1e:e9:65:25:
6d:2f:d4:2c:60:27:30:c5:b8:80:e6:eb:c4:63:06:
48:91:7f:2f:bd:a1:e9:7f:af:89:c5:09:df:97:13:
5a:14:eb:87:ac:74:2a:eb:d2:e9:99:61:d9:09:31:
34:9e:fd:9c:1c:c1:39:9b:35:ae:83:e2:78:ea:e8:
10:6d:57:f2:44:de:16:d8:70:5d:89:f7:53:13:e8:
ab:be:5c:38:b4:bc:1d:46:47:e5:ad:65:6c:81:91:
c5:a8:41:c8:78:1a:87:c8:dc:0e:4a:5b:6a:8e:c7:
82:55:7e:13:fe:12:35:24:87:c7:d5:87:c7:48:d7:
42:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:25:62:B9:5D:7A:E4:BF:B1:13:BB:98:43:6B:05:EF:09:46:60:15
X509v3 Authority Key Identifier:
keyid:8D:D0:03:AF:04:77:4D:D3:E3:97:30:49:79:89:A3:A1:71:51:62:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jdADrwR3TdPjlzBJeYmjoXFRYlI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/1af6ea-c736-4c20-a83c-67cd2b459aae/1/qyViuV165L-xE7uYQ2sF7wlGYBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/1af6ea-c736-4c20-a83c-67cd2b459aae/1/jdADrwR3TdPjlzBJeYmjoXFRYlI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.251.71.0/24
Signature Algorithm: sha256WithRSAEncryption
81:41:2b:26:06:61:72:4a:fc:a8:74:1a:a5:bf:5e:c8:dc:41:
be:fe:84:d6:d6:11:f1:e1:03:b7:56:09:ca:1c:18:52:19:c3:
01:8e:8a:ef:ab:6d:6b:74:06:87:46:e9:72:08:3a:06:6a:6d:
0d:14:9b:e8:ef:95:d4:d0:a9:4a:fe:13:65:cd:45:cc:f1:8d:
8a:b7:a2:5f:e9:e1:e3:c6:58:42:2f:77:09:cf:a1:9d:96:6e:
88:76:fa:e9:73:50:73:9a:58:d5:3f:25:a9:da:7d:7b:2d:25:
2a:96:f5:51:af:c3:6b:bd:1e:41:52:29:29:4c:10:59:3e:f8:
4c:53:41:4f:76:18:ec:35:b9:93:e1:45:9c:59:32:fb:0d:63:
d1:d0:ef:0f:6c:8b:4f:d2:1c:7f:60:c6:5d:72:6d:b2:91:76:
1e:4e:74:29:13:78:e4:eb:f0:c7:ee:3d:00:8a:9c:1e:03:8e:
bb:ce:1e:48:8e:31:53:95:b4:9d:2d:7a:56:1a:e7:9d:82:57:
97:d5:b5:68:aa:0f:95:28:2e:9c:79:62:7d:8c:ea:40:5d:0f:
ee:d5:9e:ca:09:a9:64:82:30:1d:2e:0d:29:e8:a0:95:a3:d7:
3f:8f:00:72:1c:14:2a:5d:69:0d:9a:0f:89:95:67:5d:ab:14:
65:3a:69:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:39:53 2025 by rpki-client