Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/qrHO4JuoG-LDxOuAICnz-iTQh2g.roa
File: qrHO4JuoG-LDxOuAICnz-iTQh2g.roa (raw, json)
Hash identifier: QI9Q9SttIETGUZx/+WEq9AMThP9JrfpLQMgWXLgzBk4=
Subject key identifier: AA:B1:CE:E0:9B:A8:1B:E2:C3:C4:EB:80:20:29:F3:FA:24:D0:87:68
Certificate issuer: /CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Certificate serial: 0194DFFCFDC9451C6F6BDEF75EDEE49B9E72
Authority key identifier: C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/qrHO4JuoG-LDxOuAICnz-iTQh2g.roa
Signing time: Fri 07 Feb 2025 10:38:06 +0000
ROA not before: Fri 07 Feb 2025 10:38:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42956
IP address blocks: 78.128.74.0/24 maxlen: 24
78.142.36.0/24 maxlen: 24
78.142.40.0/22 maxlen: 24
79.124.2.0/23 maxlen: 24
79.124.83.0/24 maxlen: 24
79.124.86.0/24 maxlen: 24
80.72.81.0/24 maxlen: 24
94.72.142.0/24 maxlen: 24
94.72.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:df:fc:fd:c9:45:1c:6f:6b:de:f7:5e:de:e4:9b:9e:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Validity
Not Before: Feb 7 10:38:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=aab1cee09ba81be2c3c4eb802029f3fa24d08768
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:e3:20:a5:e5:9c:18:be:d4:73:74:6c:a6:a5:
67:99:e4:fe:41:63:05:0a:71:d2:d8:c4:a7:f7:75:
3a:a8:ec:a4:58:62:49:56:93:20:0e:2b:24:1e:d4:
c1:c5:a1:de:e1:6e:33:4d:32:a9:dd:a8:fa:26:1c:
95:be:74:df:ba:f1:6f:4e:b3:ad:a3:d4:58:c6:3b:
32:67:6b:3c:31:7d:45:6f:f6:b3:8b:d5:89:41:cf:
82:db:da:3f:00:91:c7:5b:f5:1c:3a:de:b1:03:2f:
0f:c8:d6:25:63:ea:a0:37:b5:76:26:86:8f:10:57:
91:91:89:09:71:b5:c3:ba:46:41:be:44:51:cb:12:
76:ae:ce:2b:dd:3e:c6:cb:3e:4f:8e:c4:91:1c:a1:
e3:84:63:29:9a:8f:06:48:48:a7:fc:4c:21:1c:50:
32:c0:80:e0:4f:87:51:3a:77:99:8f:c7:92:ec:61:
96:ed:97:42:26:8e:6b:09:e6:de:5f:e8:56:d0:85:
f6:b7:fd:47:5e:78:35:51:3d:3f:43:0b:e3:c9:1d:
f6:2f:2d:94:8d:f6:7f:2a:65:34:9c:cb:fa:6a:a5:
3d:dd:7d:1a:5b:f3:2e:a9:47:a7:26:c6:e3:7f:62:
47:8a:c1:2e:1e:ca:b8:be:9c:43:09:b3:fd:ae:42:
cc:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:B1:CE:E0:9B:A8:1B:E2:C3:C4:EB:80:20:29:F3:FA:24:D0:87:68
X509v3 Authority Key Identifier:
keyid:C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/qrHO4JuoG-LDxOuAICnz-iTQh2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.128.74.0/24
78.142.36.0/24
78.142.40.0/22
79.124.2.0/23
79.124.83.0/24
79.124.86.0/24
80.72.81.0/24
94.72.142.0/24
94.72.144.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:da:aa:dd:5a:83:db:26:24:ef:ac:2b:07:94:35:b9:dc:b9:
98:f9:22:05:f9:2e:a7:83:20:71:f2:65:6b:d3:ac:c7:de:84:
67:6e:a4:1d:f4:88:94:6b:eb:1f:90:3c:35:65:b2:7e:df:a2:
d7:36:43:bc:0a:bc:95:48:f3:3f:dc:5f:b4:07:41:5a:f5:66:
0b:df:81:39:4a:66:c8:1c:d2:cd:dd:40:2f:69:37:14:ed:c4:
e2:3a:71:df:2e:c7:b3:4d:e7:05:a3:d3:d8:b1:91:14:48:a0:
51:60:46:29:da:aa:3a:4b:8b:cd:c0:15:95:62:c9:17:96:d9:
09:d3:55:18:c9:12:c9:98:0e:e7:0d:85:81:c8:c8:5a:51:98:
42:c2:bf:6e:3a:ab:6e:68:25:8a:e8:08:a9:6f:ee:08:70:09:
6d:33:88:00:c3:6a:25:bc:59:7f:a9:2f:9b:80:e6:68:57:0d:
08:be:74:03:07:67:b4:0b:7c:11:91:3e:05:9f:47:55:6f:a2:
d2:7f:f5:89:ff:57:7d:64:19:11:9f:14:92:49:03:76:c7:5b:
9b:13:ed:c0:c8:01:c1:c6:cb:e4:02:83:e4:fe:dd:e1:8e:7f:
cc:0d:3d:ab:87:b5:05:91:ef:d7:76:95:ee:43:52:ef:80:2a:
2a:ab:64:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 13:08:18 2025 by rpki-client