Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/QvNXo0HfykTYsMTiPBT_IG_cdDY.roa
File: QvNXo0HfykTYsMTiPBT_IG_cdDY.roa (raw, json)
Hash identifier: FsenK8tKJnoctXRp/jOAn956l0EB4WkOjKRv3cAX024=
Subject key identifier: 42:F3:57:A3:41:DF:CA:44:D8:B0:C4:E2:3C:14:FF:20:6F:DC:74:36
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 01842D620EA55D536BCDC0C3330CA2D45072
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/QvNXo0HfykTYsMTiPBT_IG_cdDY.roa
Signing time: Mon 31 Oct 2022 09:31:51 +0000
ROA not before: Mon 31 Oct 2022 09:31:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31261
IP address blocks: 81.23.0.0/21 maxlen: 21
81.23.9.0/24 maxlen: 24
81.23.8.0/23 maxlen: 23
37.16.80.0/22 maxlen: 22
81.23.14.0/24 maxlen: 24
185.68.145.0/24 maxlen: 24
83.220.32.0/19 maxlen: 19
185.68.146.0/23 maxlen: 23
77.242.15.0/24 maxlen: 24
217.171.152.0/21 maxlen: 21
188.164.214.0/23 maxlen: 23
185.196.246.0/23 maxlen: 23
185.6.172.0/22 maxlen: 22
185.6.174.0/24 maxlen: 24
188.68.189.0/24 maxlen: 24
188.164.212.0/24 maxlen: 24
89.107.141.0/24 maxlen: 24
188.164.209.0/24 maxlen: 24
89.107.142.0/23 maxlen: 23
77.74.79.0/24 maxlen: 24
5.8.177.0/24 maxlen: 24
91.198.212.0/24 maxlen: 24
94.124.192.0/21 maxlen: 21
77.74.72.0/22 maxlen: 22
77.220.211.0/24 maxlen: 24
77.74.78.0/24 maxlen: 24
77.74.77.0/24 maxlen: 24
77.220.209.0/24 maxlen: 24
185.22.24.0/24 maxlen: 24
109.73.12.0/23 maxlen: 23
93.191.16.0/21 maxlen: 21
93.191.23.0/24 maxlen: 24
109.73.4.0/22 maxlen: 22
109.73.0.0/22 maxlen: 22
109.73.8.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:2d:62:0e:a5:5d:53:6b:cd:c0:c3:33:0c:a2:d4:50:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Oct 31 09:31:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42f357a341dfca44d8b0c4e23c14ff206fdc7436
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:3c:25:d7:b8:9a:42:b8:fb:0b:ac:41:25:cd:
b1:3e:88:83:ab:f2:99:75:af:ae:e4:64:66:24:ae:
cd:0e:c9:17:e2:8d:6b:6f:64:c9:c3:b9:d9:e1:35:
47:c3:0a:8a:dc:4e:41:b5:72:26:ef:08:32:2c:08:
b4:50:f4:1b:cc:d8:28:d7:83:ec:59:0f:29:18:c5:
59:15:92:9a:02:b7:48:4b:77:38:e3:da:a8:90:09:
6a:65:47:ee:85:32:41:2d:49:b6:13:8b:92:54:b6:
7d:4b:e6:14:3f:f7:5b:66:1b:bb:a6:94:fa:ef:f7:
ad:ba:f8:c8:b6:c4:43:44:0d:2d:b6:ed:3a:c6:68:
2c:a1:f7:e2:c3:ff:de:b5:1e:96:34:bf:23:cf:0b:
f6:7f:dc:7b:76:7e:f7:ca:c1:f9:17:40:97:f7:0b:
a0:a7:0a:cf:2a:48:f5:b0:ea:7e:21:39:5e:f5:7b:
f3:9f:71:5c:9a:34:96:90:9c:04:a7:fc:99:fb:3a:
27:91:ff:75:8f:b6:be:23:5a:fe:6e:c8:86:80:f7:
e7:50:21:88:e0:95:c5:bc:97:37:54:2f:bc:35:40:
4c:e6:4a:ca:44:b7:81:1c:05:a0:d2:13:1d:a6:9e:
67:fa:52:bb:b6:0d:71:ae:bc:22:1d:71:6c:4d:09:
4c:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:F3:57:A3:41:DF:CA:44:D8:B0:C4:E2:3C:14:FF:20:6F:DC:74:36
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/QvNXo0HfykTYsMTiPBT_IG_cdDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.177.0/24
37.16.80.0/22
77.74.72.0/22
77.74.77.0-77.74.79.255
77.220.209.0/24
77.220.211.0/24
77.242.15.0/24
81.23.0.0-81.23.9.255
81.23.14.0/24
83.220.32.0/19
89.107.141.0-89.107.143.255
91.198.212.0/24
93.191.16.0/21
94.124.192.0/21
109.73.0.0-109.73.13.255
185.6.172.0/22
185.22.24.0/24
185.68.145.0-185.68.147.255
185.196.246.0/23
188.68.189.0/24
188.164.209.0/24
188.164.212.0/24
188.164.214.0/23
217.171.152.0/21
Signature Algorithm: sha256WithRSAEncryption
35:91:21:c4:18:88:13:72:79:f8:df:1b:6e:34:2a:7d:f7:c6:
29:fc:8a:73:a4:2f:48:06:ba:3c:42:57:5c:c9:6f:74:d1:d5:
8d:a5:90:61:fc:02:c6:d5:69:be:50:5c:f3:fd:fa:37:2b:cd:
1a:23:47:f4:79:a1:47:c4:15:c2:1c:b7:36:2a:4f:0b:22:35:
76:51:21:75:fd:10:56:48:dc:3a:8d:d6:1a:af:bf:71:3b:c7:
a1:ac:04:de:0f:cc:9c:81:8d:56:dd:cf:ed:b4:8c:e7:33:6d:
56:3e:7f:d3:aa:99:2c:66:7a:33:85:1c:c9:78:5e:68:f8:fe:
4a:24:02:af:24:8a:5b:bb:cc:8c:13:b2:9a:7c:38:b4:de:87:
59:71:36:9d:b8:14:24:45:c9:1d:08:f8:11:fd:ac:12:b2:90:
07:02:a0:3a:5d:de:b5:64:fc:14:dc:f2:84:62:84:7f:e3:8e:
cd:57:19:f3:89:be:d4:56:b8:81:d2:e3:e1:3d:1d:44:57:1b:
6e:7d:dd:52:35:4b:28:a4:51:15:9b:69:16:b1:6d:49:e7:d2:
82:f0:7e:6b:8a:d3:7e:65:f3:b2:44:e1:fe:03:3f:8a:b2:a9:
76:4a:34:22:8b:ef:4d:fe:fc:b8:89:67:22:78:62:52:d1:75:
28:47:d7:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:43:36 2025 by rpki-client