Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/921536-ee46-4e80-a51f-b667ec0d6d0f/1/QRDDAosyuD0nwg03Paaf5n72Sog.roa
File: QRDDAosyuD0nwg03Paaf5n72Sog.roa (raw, json)
Hash identifier: vf4nNB7BX+ABcuPDeDxOvpFyQfnAXEQbTy8bNHuFW8c=
Subject key identifier: 41:10:C3:02:8B:32:B8:3D:27:C2:0D:37:3D:A6:9F:E6:7E:F6:4A:88
Certificate issuer: /CN=0abeafd556595e8840ca8ebd19bbd2ac591b4ca8
Certificate serial: 0185707077F1F8103744E7A8860ABB7A87D1
Authority key identifier: 0A:BE:AF:D5:56:59:5E:88:40:CA:8E:BD:19:BB:D2:AC:59:1B:4C:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cr6v1VZZXohAyo69GbvSrFkbTKg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/921536-ee46-4e80-a51f-b667ec0d6d0f/1/QRDDAosyuD0nwg03Paaf5n72Sog.roa
Signing time: Mon 02 Jan 2023 03:04:56 +0000
ROA not before: Mon 02 Jan 2023 03:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 103.39.40.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:77:f1:f8:10:37:44:e7:a8:86:0a:bb:7a:87:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0abeafd556595e8840ca8ebd19bbd2ac591b4ca8
Validity
Not Before: Jan 2 03:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4110c3028b32b83d27c20d373da69fe67ef64a88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ee:f5:f4:64:06:0d:55:80:fc:6c:ce:ad:ba:
81:d9:df:a6:0d:d0:6a:58:1a:3d:c1:dd:c3:47:90:
89:71:fc:32:1f:85:7b:2a:b2:40:4f:9d:6b:28:e1:
f8:ef:6a:da:d2:5d:7a:f0:98:67:be:0d:b8:c4:98:
3d:8d:8d:b1:df:21:3f:cb:e7:91:65:6b:ae:2d:6f:
37:67:9c:6a:63:a1:1a:31:a6:c0:0c:16:e0:b0:e8:
72:92:56:93:fd:32:17:5d:4e:c5:a8:d6:8b:52:ac:
32:b1:7d:fd:86:6d:fd:65:cf:fa:b8:99:00:ec:98:
0f:2f:3d:19:18:d4:b9:b5:5f:12:60:19:3c:a0:25:
cd:43:e7:85:f0:1b:14:65:0d:7c:c4:08:25:eb:4a:
33:4c:fa:49:0c:4c:de:49:ca:f0:7b:81:09:41:2e:
af:75:bc:ed:38:0e:72:b9:04:5c:af:6c:fc:82:27:
2f:42:44:8b:3f:b0:a6:78:ef:18:f8:3e:0c:dc:b7:
12:a6:f3:25:96:04:3e:0e:6d:7d:53:66:1a:b7:41:
0e:a0:4c:69:3e:c5:ec:ac:67:31:fb:8b:e0:62:87:
76:70:a1:db:c6:85:c5:87:b0:0f:d6:3e:9c:49:49:
50:f3:ca:9c:ca:14:c6:84:0e:e3:46:bf:2d:24:15:
27:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:10:C3:02:8B:32:B8:3D:27:C2:0D:37:3D:A6:9F:E6:7E:F6:4A:88
X509v3 Authority Key Identifier:
keyid:0A:BE:AF:D5:56:59:5E:88:40:CA:8E:BD:19:BB:D2:AC:59:1B:4C:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cr6v1VZZXohAyo69GbvSrFkbTKg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/921536-ee46-4e80-a51f-b667ec0d6d0f/1/QRDDAosyuD0nwg03Paaf5n72Sog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/921536-ee46-4e80-a51f-b667ec0d6d0f/1/Cr6v1VZZXohAyo69GbvSrFkbTKg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.39.40.0/24
Signature Algorithm: sha256WithRSAEncryption
59:d6:0e:ca:ae:65:29:a6:76:25:ab:d6:e9:ce:42:09:38:eb:
5b:0f:fa:d3:01:f7:ee:22:e8:d2:e9:e9:51:e8:d8:c8:35:01:
99:9a:40:6a:57:b9:b0:bb:ab:c9:db:eb:bd:ec:f9:4e:3c:63:
11:74:a2:78:49:05:20:c4:69:70:2e:b9:d6:66:0e:1b:85:75:
af:cc:8c:dc:fa:e3:c2:96:5b:4e:2f:b6:ff:03:42:79:a5:e4:
f8:52:85:93:c6:bc:71:96:f8:d3:21:37:93:87:00:b4:33:e9:
db:eb:62:f0:09:12:0e:1b:e6:09:b8:94:57:2a:21:17:7b:78:
b8:30:7a:af:01:70:bf:91:61:84:84:d9:1d:78:ae:1f:d6:6e:
df:4f:9e:fa:c2:19:22:89:61:5a:03:b1:02:eb:a6:49:b2:f5:
cd:2a:68:40:a9:61:21:8e:6c:b6:b5:00:af:bd:10:3e:f2:b5:
80:3f:06:60:46:1c:81:47:85:ef:fb:0b:52:d3:b0:24:00:e2:
19:bd:51:e0:4f:8f:f0:7d:4c:27:18:7b:c7:27:8f:54:df:61:
11:70:a0:dc:3b:ff:ba:f2:de:15:ef:a5:db:b5:f7:62:ec:f7:
0b:23:1a:28:a5:be:43:3e:59:7c:55:e2:41:c8:5d:89:62:f8:
c9:75:5e:06
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwcHfx+BA3ROeohgq7eofRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBhYmVhZmQ1NTY1OTVlODg0MGNhOGViZDE5YmJkMmFjNTkx
YjRjYTgwHhcNMjMwMTAyMDMwNDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MTEwYzMwMjhiMzJiODNkMjdjMjBkMzczZGE2OWZlNjdlZjY0YTg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAue719GQGDVWA/GzOrbqB2d+mDdBq
WBo9wd3DR5CJcfwyH4V7KrJAT51rKOH472ra0l168Jhnvg24xJg9jY2x3yE/y+eR
ZWuuLW83Z5xqY6EaMabADBbgsOhyklaT/TIXXU7FqNaLUqwysX39hm39Zc/6uJkA
7JgPLz0ZGNS5tV8SYBk8oCXNQ+eF8BsUZQ18xAgl60ozTPpJDEzeScrwe4EJQS6v
dbztOA5yuQRcr2z8gicvQkSLP7CmeO8Y+D4M3LcSpvMllgQ+Dm19U2Yat0EOoExp
PsXsrGcx+4vgYod2cKHbxoXFh7AP1j6cSUlQ88qcyhTGhA7jRr8tJBUnPQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEEQwwKLMrg9J8INNz2mn+Z+9kqIMB8GA1UdIwQY
MBaAFAq+r9VWWV6IQMqOvRm70qxZG0yoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ3I2djFWWlpYb2hBeW82OUdidlNyRmtiVEtnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi85MjE1MzYtZWU0Ni00ZTgwLWE1MWYt
YjY2N2VjMGQ2ZDBmLzEvUVJEREFvc3l1RDBud2cwM1BhYWY1bjcyU29nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi85MjE1MzYtZWU0Ni00ZTgwLWE1MWYtYjY2N2VjMGQ2ZDBm
LzEvQ3I2djFWWlpYb2hBeW82OUdidlNyRmtiVEtnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZycoMA0G
CSqGSIb3DQEBCwUAA4IBAQBZ1g7KrmUppnYlq9bpzkIJOOtbD/rTAffuIujS6elR
6NjINQGZmkBqV7mwu6vJ2+u97PlOPGMRdKJ4SQUgxGlwLrnWZg4bhXWvzIzc+uPC
lltOL7b/A0J5peT4UoWTxrxxlvjTITeThwC0M+nb62LwCRIOG+YJuJRXKiEXe3i4
MHqvAXC/kWGEhNkdeK4f1m7fT576whkiiWFaA7EC66ZJsvXNKmhAqWEhjmy2tQCv
vRA+8rWAPwZgRhyBR4Xv+wtS07AkAOIZvVHgT4/wfUwnGHvHJ49U32ERcKDcO/+6
8t4V76Xbtfdi7PcLIxoopb5DPll8VeJByF2JYvjJdV4G
-----END CERTIFICATE-----
Generated at Thu Mar 13 19:59:55 2025 by rpki-client