Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/qmDxl9YHgeoJI9B4C_upP5C7c7c.roa
File: qmDxl9YHgeoJI9B4C_upP5C7c7c.roa (raw, json)
Hash identifier: mxvJt931J2sBPmyGHC4DW5FCa/dC7O8ZTCF4Sy9iOpA=
Subject key identifier: AA:60:F1:97:D6:07:81:EA:09:23:D0:78:0B:FB:A9:3F:90:BB:73:B7
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0184E2AF4B5EA777EC86DA16A229B2B207B7
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/qmDxl9YHgeoJI9B4C_upP5C7c7c.roa
Signing time: Mon 05 Dec 2022 14:27:29 +0000
ROA not before: Mon 05 Dec 2022 14:27:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24767
IP address blocks: 109.188.0.0/16 maxlen: 24
212.14.160.0/19 maxlen: 24
195.230.64.0/19 maxlen: 24
195.149.111.0/24 maxlen: 24
195.16.96.0/19 maxlen: 24
195.78.116.0/23 maxlen: 24
193.201.228.0/22 maxlen: 24
178.23.144.0/21 maxlen: 24
109.124.64.0/18 maxlen: 24
213.154.160.0/19 maxlen: 24
213.168.32.0/19 maxlen: 24
185.3.32.0/22 maxlen: 24
94.25.128.0/17 maxlen: 24
93.153.128.0/17 maxlen: 24
86.109.192.0/19 maxlen: 24
212.69.96.0/19 maxlen: 24
188.162.0.0/16 maxlen: 24
188.94.168.0/21 maxlen: 24
109.74.112.0/20 maxlen: 24
185.210.140.0/22 maxlen: 24
212.119.160.0/19 maxlen: 24
91.193.212.0/22 maxlen: 24
213.243.64.0/18 maxlen: 24
217.115.80.0/20 maxlen: 24
212.44.64.0/19 maxlen: 24
195.5.128.0/19 maxlen: 24
128.204.64.0/18 maxlen: 24
95.137.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e2:af:4b:5e:a7:77:ec:86:da:16:a2:29:b2:b2:07:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 5 14:27:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aa60f197d60781ea0923d0780bfba93f90bb73b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:87:f1:df:69:02:3c:26:d7:40:55:30:fe:87:
de:d6:b3:36:ab:8e:56:42:2e:ea:10:c0:bb:45:f8:
9c:5a:cc:a1:52:b9:4a:6f:88:58:83:63:47:6c:80:
5b:a6:55:e1:a0:8e:42:3c:87:6d:44:6f:2a:55:bb:
12:3e:ec:95:d8:a3:90:16:57:db:52:d2:c0:d0:49:
88:19:95:a4:38:f2:9a:ce:d7:8e:79:d2:5e:0e:d9:
ac:ab:37:d4:bb:59:c0:ce:6e:32:b5:1a:87:ac:28:
8e:e5:51:d5:1c:14:14:08:85:69:3b:b7:39:51:01:
77:d3:df:89:1c:4e:c8:e0:2f:91:0f:f4:f9:37:0c:
c8:a0:24:c0:79:f2:04:df:23:87:49:f5:b3:ed:ef:
5a:33:b2:cb:5b:90:10:76:16:78:d1:7f:87:8c:b7:
0f:00:09:e7:58:68:1d:77:7b:29:b1:a7:db:1e:53:
ac:5a:dd:19:7b:de:5f:dd:47:b9:78:b9:aa:28:94:
e2:36:2b:f7:7e:8e:5d:42:2e:fa:f7:ad:d3:82:68:
1b:fc:12:41:1e:b2:bc:5f:86:47:0e:b3:53:4b:d3:
5d:7c:5c:2b:fa:5f:80:38:0b:cf:52:9f:72:b2:c8:
e4:ed:c2:de:46:c9:53:f9:8b:e3:14:59:9a:33:3b:
24:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:60:F1:97:D6:07:81:EA:09:23:D0:78:0B:FB:A9:3F:90:BB:73:B7
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/qmDxl9YHgeoJI9B4C_upP5C7c7c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.109.192.0/19
91.193.212.0/22
93.153.128.0/17
94.25.128.0/17
95.137.0.0/17
109.74.112.0/20
109.124.64.0/18
109.188.0.0/16
128.204.64.0/18
178.23.144.0/21
185.3.32.0/22
185.210.140.0/22
188.94.168.0/21
188.162.0.0/16
193.201.228.0/22
195.5.128.0/19
195.16.96.0/19
195.78.116.0/23
195.149.111.0/24
195.230.64.0/19
212.14.160.0/19
212.44.64.0/19
212.69.96.0/19
212.119.160.0/19
213.154.160.0/19
213.168.32.0/19
213.243.64.0/18
217.115.80.0/20
Signature Algorithm: sha256WithRSAEncryption
92:96:18:e4:85:52:e6:71:c7:5d:1a:d4:51:4d:98:36:e1:00:
1a:a7:ba:ff:d9:df:ba:bd:23:2a:3d:54:5e:eb:88:fc:df:c7:
87:b9:85:a7:67:69:39:86:17:38:22:0d:05:24:db:f6:45:e8:
83:cb:de:db:b7:9f:51:d6:46:f8:f6:39:9a:54:f7:c4:85:7a:
ad:da:d2:01:27:f0:15:cb:6e:55:b4:1a:5d:c2:1c:fc:d9:48:
85:79:c0:c1:e5:a8:47:06:2c:7f:69:b4:e5:c0:77:bc:47:03:
4d:06:90:03:9e:6e:42:17:a6:2d:35:81:1f:85:ea:42:3a:93:
75:93:de:eb:bd:43:a7:24:e3:23:fc:52:95:74:f2:37:07:36:
32:ba:9b:f6:01:1d:63:da:2c:c2:ed:93:8c:a1:89:5a:18:8a:
3e:14:77:12:2b:93:98:94:1c:ee:f8:d4:c7:66:88:b0:b3:bf:
ef:1a:a0:01:1b:95:07:f9:50:d9:66:02:fd:22:35:cf:5b:c9:
a3:39:da:cb:b1:61:bf:ea:df:98:32:21:9b:7c:df:04:60:92:
18:85:03:fb:e7:92:dd:da:1a:ad:00:49:58:2c:15:57:d5:53:
bc:dc:4e:bd:d5:3a:8d:ad:10:56:bc:d5:55:5a:ac:6e:aa:40:
d3:2f:57:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 00:55:49 2025 by rpki-client