Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/3e3b4b-f827-4347-9022-2818f6578d1b/1/q9jElUrbhazQFMEmmCOsDeqbLJA.roa
File: q9jElUrbhazQFMEmmCOsDeqbLJA.roa (raw, json)
Hash identifier: RedQ+QOQuI2x8mkKA1C82rnZg776YlWDZwTviJY79bo=
Subject key identifier: AB:D8:C4:95:4A:DB:85:AC:D0:14:C1:26:98:23:AC:0D:EA:9B:2C:90
Certificate issuer: /CN=41b8c2f37bd8d7e04e76985a4ced4559d7651c43
Certificate serial: 019421B258A7F728298E37A6E757FED0CC0C
Authority key identifier: 41:B8:C2:F3:7B:D8:D7:E0:4E:76:98:5A:4C:ED:45:59:D7:65:1C:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QbjC83vY1-BOdphaTO1FWddlHEM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/3e3b4b-f827-4347-9022-2818f6578d1b/1/q9jElUrbhazQFMEmmCOsDeqbLJA.roa
Signing time: Wed 01 Jan 2025 11:48:43 +0000
ROA not before: Wed 01 Jan 2025 11:48:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203017
IP address blocks: 193.53.23.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:58:a7:f7:28:29:8e:37:a6:e7:57:fe:d0:cc:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41b8c2f37bd8d7e04e76985a4ced4559d7651c43
Validity
Not Before: Jan 1 11:48:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=abd8c4954adb85acd014c1269823ac0dea9b2c90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ae:81:f0:de:60:1e:16:dd:d2:c8:3e:21:1d:
e9:fa:66:30:78:62:2c:9e:65:a8:93:98:9a:2c:19:
1e:fe:1a:46:0d:95:52:f6:21:58:91:a9:06:76:bc:
da:8d:09:a3:d2:d0:da:51:54:ca:b0:39:07:c6:b1:
23:b8:8f:87:d5:39:71:68:3e:9d:3c:4d:54:30:ad:
01:44:28:87:24:3d:f7:25:e5:cc:29:60:63:df:8d:
88:70:23:f0:fa:dc:ba:f3:ed:72:76:be:1d:86:3f:
cf:55:49:7b:b6:22:72:39:7a:ba:9e:d0:bf:2e:84:
b6:a4:96:1b:3f:c0:71:1e:a3:b5:15:bf:e7:d4:67:
f5:2b:61:40:59:01:eb:d0:c6:86:44:16:f8:4e:aa:
1f:0b:a2:65:ec:38:e2:af:a7:2f:19:eb:b3:04:c9:
66:69:b3:10:d1:dd:f6:c8:c3:3e:d1:94:1e:05:60:
1b:c3:ab:fa:1f:8e:70:3e:c6:58:24:95:89:85:ca:
c5:c3:a1:3a:7e:49:e8:f7:86:26:29:38:56:71:a1:
9a:9a:07:63:9d:1d:77:0d:a1:74:92:d5:a3:c2:29:
e4:0b:64:be:3d:eb:88:20:d8:e6:b2:db:8d:9b:4b:
5d:00:6e:23:b3:9c:fa:19:75:74:13:78:00:7a:de:
93:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:D8:C4:95:4A:DB:85:AC:D0:14:C1:26:98:23:AC:0D:EA:9B:2C:90
X509v3 Authority Key Identifier:
keyid:41:B8:C2:F3:7B:D8:D7:E0:4E:76:98:5A:4C:ED:45:59:D7:65:1C:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QbjC83vY1-BOdphaTO1FWddlHEM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/3e3b4b-f827-4347-9022-2818f6578d1b/1/q9jElUrbhazQFMEmmCOsDeqbLJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/3e3b4b-f827-4347-9022-2818f6578d1b/1/QbjC83vY1-BOdphaTO1FWddlHEM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.53.23.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:2a:30:7f:23:81:1f:6b:97:b6:85:8a:fa:7f:de:9f:ad:ef:
af:05:ba:29:86:d6:86:e7:65:48:6f:9f:86:8c:a0:18:a5:24:
64:7c:ff:5a:e8:b8:39:fa:90:08:02:28:e1:0a:aa:cf:1b:72:
b7:8d:c5:d3:1e:be:1a:e0:81:3e:e1:fb:8d:15:52:8a:ac:11:
8e:59:d4:f5:07:19:75:1e:9a:ed:65:80:3f:6b:1d:2c:66:da:
90:f9:51:34:45:1a:eb:3a:a9:11:94:c1:de:37:2c:a0:5e:84:
5b:34:a9:8d:6a:21:b3:7d:c3:40:50:5f:14:15:96:c1:30:8a:
6e:99:62:df:6f:a8:1d:87:1a:88:a2:49:63:59:43:74:6b:e8:
12:4b:f4:aa:b7:b5:d1:75:9d:57:73:3c:7c:b9:27:de:61:2b:
0a:7f:22:df:3b:a2:3c:c2:c0:cb:2a:fa:73:c6:07:1b:72:8a:
3e:b4:57:07:9d:00:48:a1:af:7e:b4:32:e8:19:fc:3e:11:c2:
5f:e5:4f:60:e7:f7:92:61:4b:df:7c:23:4d:97:88:c2:c6:69:
e4:5f:0c:4f:4a:5d:c1:f4:dc:0c:95:15:d3:1a:c1:e2:34:78:
f9:53:e3:58:dd:46:be:9b:6e:a6:35:44:3f:0a:bc:e0:bb:65:
a8:4e:f6:0e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQhslin9ygpjjem51f+0MwMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxYjhjMmYzN2JkOGQ3ZTA0ZTc2OTg1YTRjZWQ0NTU5ZDc2
NTFjNDMwHhcNMjUwMTAxMTE0ODQzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYmQ4YzQ5NTRhZGI4NWFjZDAxNGMxMjY5ODIzYWMwZGVhOWIyYzkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAta6B8N5gHhbd0sg+IR3p+mYweGIs
nmWok5iaLBke/hpGDZVS9iFYkakGdrzajQmj0tDaUVTKsDkHxrEjuI+H1TlxaD6d
PE1UMK0BRCiHJD33JeXMKWBj342IcCPw+ty68+1ydr4dhj/PVUl7tiJyOXq6ntC/
LoS2pJYbP8BxHqO1Fb/n1Gf1K2FAWQHr0MaGRBb4TqofC6Jl7Djir6cvGeuzBMlm
abMQ0d32yMM+0ZQeBWAbw6v6H45wPsZYJJWJhcrFw6E6fkno94YmKThWcaGamgdj
nR13DaF0ktWjwinkC2S+PeuIINjmstuNm0tdAG4js5z6GXV0E3gAet6T4wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKvYxJVK24Ws0BTBJpgjrA3qmyyQMB8GA1UdIwQY
MBaAFEG4wvN72NfgTnaYWkztRVnXZRxDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWJqQzgzdlkxLUJPZHBoYVRPMUZXZGRsSEVNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS8zZTNiNGItZjgyNy00MzQ3LTkwMjIt
MjgxOGY2NTc4ZDFiLzEvcTlqRWxVcmJoYXpRRk1FbW1DT3NEZXFiTEpBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS8zZTNiNGItZjgyNy00MzQ3LTkwMjItMjgxOGY2NTc4ZDFi
LzEvUWJqQzgzdlkxLUJPZHBoYVRPMUZXZGRsSEVNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwTUXMA0G
CSqGSIb3DQEBCwUAA4IBAQCuKjB/I4Efa5e2hYr6f96fre+vBbophtaG52VIb5+G
jKAYpSRkfP9a6Lg5+pAIAijhCqrPG3K3jcXTHr4a4IE+4fuNFVKKrBGOWdT1Bxl1
HprtZYA/ax0sZtqQ+VE0RRrrOqkRlMHeNyygXoRbNKmNaiGzfcNAUF8UFZbBMIpu
mWLfb6gdhxqIokljWUN0a+gSS/Sqt7XRdZ1Xczx8uSfeYSsKfyLfO6I8wsDLKvpz
xgcbcoo+tFcHnQBIoa9+tDLoGfw+EcJf5U9g5/eSYUvffCNNl4jCxmnkXwxPSl3B
9NwMlRXTGsHiNHj5U+NY3Ua+m26mNUQ/Crzgu2WoTvYO
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:46:43 2025 by rpki-client