Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/ef0bc8-c711-43f8-8943-d2c5e6e335f8/1/Q3uZ51QYMLKXfMgCZnwkM6oiQNs.roa
File: Q3uZ51QYMLKXfMgCZnwkM6oiQNs.roa (raw, json)
Hash identifier: cSleHnwkg85gZyfTDAj602Lep9URBPAB+YcgqrDDmR0=
Subject key identifier: 43:7B:99:E7:54:18:30:B2:97:7C:C8:02:66:7C:24:33:AA:22:40:DB
Certificate issuer: /CN=76effdeaf9b0fad5accd074d0aa5b1eeb07ea69e
Certificate serial: 0711DF87
Authority key identifier: 76:EF:FD:EA:F9:B0:FA:D5:AC:CD:07:4D:0A:A5:B1:EE:B0:7E:A6:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/du_96vmw-tWszQdNCqWx7rB-pp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/ef0bc8-c711-43f8-8943-d2c5e6e335f8/1/Q3uZ51QYMLKXfMgCZnwkM6oiQNs.roa
Signing time: Sat 01 Jan 2022 12:56:15 +0000
ROA not before: Sat 01 Jan 2022 12:56:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60350
IP address blocks: 193.164.2.0/23 maxlen: 24
193.161.254.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118611847 (0x711df87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76effdeaf9b0fad5accd074d0aa5b1eeb07ea69e
Validity
Not Before: Jan 1 12:56:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=437b99e7541830b2977cc802667c2433aa2240db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:12:9d:bc:dc:93:f2:dd:09:f5:50:58:f1:f4:
0d:e9:84:e7:66:94:46:7c:0f:89:3f:55:42:33:40:
72:67:ba:49:fa:a3:5a:cb:4c:4a:2d:57:7c:a6:35:
7f:75:8c:b8:10:d0:60:7c:02:ea:71:7f:cc:5d:03:
fd:a4:f8:f2:e9:ef:de:83:02:e6:27:52:bd:64:11:
dd:8a:3b:f7:c1:3d:71:ce:5a:a3:71:ae:67:ed:1d:
11:55:da:7c:e7:66:20:09:fc:f1:ab:9c:ea:98:cd:
67:a7:6a:bc:a6:74:98:a5:ac:af:9d:77:16:b2:8e:
46:be:0d:f2:64:86:f6:07:a9:33:ef:85:cc:60:58:
06:17:f5:51:87:35:73:b0:02:fd:c6:85:fd:56:bf:
13:89:e0:5b:b0:25:68:9d:33:84:b3:a5:85:2d:57:
7d:e6:65:6c:3c:3a:ac:66:67:7a:51:4a:66:a0:86:
8a:43:f6:ae:15:7c:ed:fb:45:a5:ac:52:46:5d:bc:
b0:b5:06:cd:0c:b5:ec:4b:77:9f:02:3a:7c:cd:b2:
cf:90:66:94:98:0c:12:58:18:1a:29:4b:22:3d:86:
6b:af:b0:df:6a:af:c0:e6:ac:83:0c:3f:4b:21:c1:
ba:24:7d:fb:d1:0c:37:d6:98:d2:29:09:c1:ee:29:
52:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:7B:99:E7:54:18:30:B2:97:7C:C8:02:66:7C:24:33:AA:22:40:DB
X509v3 Authority Key Identifier:
keyid:76:EF:FD:EA:F9:B0:FA:D5:AC:CD:07:4D:0A:A5:B1:EE:B0:7E:A6:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/du_96vmw-tWszQdNCqWx7rB-pp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/ef0bc8-c711-43f8-8943-d2c5e6e335f8/1/Q3uZ51QYMLKXfMgCZnwkM6oiQNs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/ef0bc8-c711-43f8-8943-d2c5e6e335f8/1/du_96vmw-tWszQdNCqWx7rB-pp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.161.254.0/23
193.164.2.0/23
Signature Algorithm: sha256WithRSAEncryption
a1:f1:9c:e4:a3:d1:7b:ea:3d:fd:eb:a3:2c:ad:53:e1:96:7a:
4e:92:ec:51:d6:6c:3c:e3:9f:83:5d:57:ea:27:b5:89:c2:c9:
14:9c:91:80:83:be:99:9f:ba:f6:e8:63:f9:5f:66:e6:70:97:
4a:d0:53:1a:12:d1:8d:7c:12:2b:9c:ff:5b:7f:d2:cc:9a:df:
a7:e2:6d:e7:d3:c3:31:39:f5:fb:6b:d8:61:a3:0f:6c:4b:6e:
71:c8:25:36:41:87:43:b0:b0:e8:cb:05:b5:24:de:86:c2:6c:
b6:9e:26:59:0d:53:bd:e0:2c:1d:ba:f3:a7:89:79:5c:ac:ff:
75:a8:3c:9f:69:9b:ff:9d:18:01:a0:c0:6b:79:ef:cd:fa:21:
4e:76:a8:10:4e:b5:eb:03:b2:6a:e0:af:7e:8b:52:e4:71:c5:
5d:cf:58:99:bd:9b:c8:32:26:14:fd:2b:0e:13:c1:57:c0:8d:
23:d3:f4:d7:78:a9:71:eb:39:e7:87:b6:f2:58:01:84:1a:20:
93:dd:0f:71:8d:e4:ac:8a:37:eb:e7:f9:4b:e2:25:2d:7d:58:
fb:e1:7b:2d:1b:0f:48:21:da:44:92:80:e0:26:57:9a:13:8d:
6a:ae:1d:60:49:8f:03:3e:bf:81:c5:e0:59:e5:05:c9:c1:4c:
a5:ca:e2:db
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEBxHfhzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NmVmZmRlYWY5YjBmYWQ1YWNjZDA3NGQwYWE1YjFlZWIwN2VhNjllMB4XDTIyMDEw
MTEyNTYxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDM3Yjk5ZTc1NDE4
MzBiMjk3N2NjODAyNjY3YzI0MzNhYTIyNDBkYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKYSnbzck/LdCfVQWPH0DemE52aURnwPiT9VQjNAcme6Sfqj
WstMSi1XfKY1f3WMuBDQYHwC6nF/zF0D/aT48unv3oMC5idSvWQR3Yo798E9cc5a
o3GuZ+0dEVXafOdmIAn88auc6pjNZ6dqvKZ0mKWsr513FrKORr4N8mSG9gepM++F
zGBYBhf1UYc1c7AC/caF/Va/E4ngW7AlaJ0zhLOlhS1XfeZlbDw6rGZnelFKZqCG
ikP2rhV87ftFpaxSRl28sLUGzQy17Et3nwI6fM2yz5BmlJgMElgYGilLIj2Ga6+w
32qvwOasgww/SyHBuiR9+9EMN9aY0ikJwe4pUlsCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRDe5nnVBgwspd8yAJmfCQzqiJA2zAfBgNVHSMEGDAWgBR27/3q+bD61azN
B00KpbHusH6mnjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2R1Xzk2dm13LXRXc3pRZE5DcVd4N3JCLXBwNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzMvZWYwYmM4LWM3MTEtNDNmOC04OTQzLWQyYzVlNmUzMzVmOC8x
L1EzdVo1MVFZTUxLWGZNZ0NabndrTTZvaVFOcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzMv
ZWYwYmM4LWM3MTEtNDNmOC04OTQzLWQyYzVlNmUzMzVmOC8xL2R1Xzk2dm13LXRX
c3pRZE5DcVd4N3JCLXBwNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAcGh/gMEAcGkAjANBgkqhkiG9w0B
AQsFAAOCAQEAofGc5KPRe+o9/eujLK1T4ZZ6TpLsUdZsPOOfg11X6ie1icLJFJyR
gIO+mZ+69uhj+V9m5nCXStBTGhLRjXwSK5z/W3/SzJrfp+Jt59PDMTn1+2vYYaMP
bEtuccglNkGHQ7Cw6MsFtSTehsJstp4mWQ1TveAsHbrzp4l5XKz/dag8n2mb/50Y
AaDAa3nvzfohTnaoEE616wOyauCvfotS5HHFXc9Ymb2byDImFP0rDhPBV8CNI9P0
13ipces554e28lgBhBogk90PcY3krIo36+f5S+IlLX1Y++F7LRsPSCHaRJKA4CZX
mhONaq4dYEmPAz6/gcXgWeUFycFMpcri2w==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:05:57 2025 by rpki-client