Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/adf984-7959-4bbd-8a8e-2cbecddd0d64/1/QpSqb6NaQUo2aw3LPuosxHd4Wqs.roa
File: QpSqb6NaQUo2aw3LPuosxHd4Wqs.roa (raw, json)
Hash identifier: euL9pnyKB7Cxdfldh990cg3q0bj2BEOIXY3BCjW3Vt4=
Subject key identifier: 42:94:AA:6F:A3:5A:41:4A:36:6B:0D:CB:3E:EA:2C:C4:77:78:5A:AB
Certificate issuer: /CN=8491bbeacf5b0c589e99b93f84e1c5e47d9af604
Certificate serial: 0194266BB300C68E548009FE44F1DD2E7A22
Authority key identifier: 84:91:BB:EA:CF:5B:0C:58:9E:99:B9:3F:84:E1:C5:E4:7D:9A:F6:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hJG76s9bDFiembk_hOHF5H2a9gQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/adf984-7959-4bbd-8a8e-2cbecddd0d64/1/QpSqb6NaQUo2aw3LPuosxHd4Wqs.roa
Signing time: Thu 02 Jan 2025 09:49:39 +0000
ROA not before: Thu 02 Jan 2025 09:49:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35186
IP address blocks: 195.80.225.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:b3:00:c6:8e:54:80:09:fe:44:f1:dd:2e:7a:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8491bbeacf5b0c589e99b93f84e1c5e47d9af604
Validity
Not Before: Jan 2 09:49:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4294aa6fa35a414a366b0dcb3eea2cc477785aab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:54:fb:6f:1c:4c:15:31:00:7b:76:16:a3:3f:
0e:36:84:5d:ed:eb:17:d2:30:03:30:bf:4f:6a:fa:
87:8d:06:cc:0a:3a:63:24:d3:9d:52:d1:dc:2d:36:
9e:f5:d3:27:58:6b:b5:b4:7e:49:7e:d9:61:1d:0c:
48:8d:dc:19:7a:de:57:a0:d5:02:b8:16:63:40:b5:
4a:b1:56:9d:05:ab:ed:ed:7e:42:d3:1a:c5:25:2e:
72:6f:5e:c0:54:94:32:96:4c:27:20:92:16:c7:a8:
10:e4:7f:6a:a3:7e:de:38:89:96:9f:b8:1a:82:b2:
47:12:67:35:15:5d:f2:9c:96:d4:42:0d:31:d6:7b:
f9:78:1d:d3:95:42:d4:6d:12:e4:23:b3:3c:80:75:
c7:9a:82:6c:97:57:3f:c3:d7:72:81:fb:26:4c:eb:
f0:35:41:11:b1:d5:41:6c:45:a6:19:17:87:b8:57:
d0:8f:7e:b6:36:1d:a6:9c:17:03:1b:39:d7:bc:da:
53:83:60:94:9f:fe:36:2f:8d:24:f4:c2:8d:b6:ca:
5a:60:9d:65:86:75:5a:e9:69:73:05:ee:24:69:d7:
09:7a:f6:d7:cc:11:3f:41:22:48:8d:72:2d:95:c7:
da:fe:4b:9e:90:4e:f4:91:01:7a:ba:0e:1c:d2:3f:
3e:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:94:AA:6F:A3:5A:41:4A:36:6B:0D:CB:3E:EA:2C:C4:77:78:5A:AB
X509v3 Authority Key Identifier:
keyid:84:91:BB:EA:CF:5B:0C:58:9E:99:B9:3F:84:E1:C5:E4:7D:9A:F6:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hJG76s9bDFiembk_hOHF5H2a9gQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/adf984-7959-4bbd-8a8e-2cbecddd0d64/1/QpSqb6NaQUo2aw3LPuosxHd4Wqs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/adf984-7959-4bbd-8a8e-2cbecddd0d64/1/hJG76s9bDFiembk_hOHF5H2a9gQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.80.225.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:11:f4:11:70:a8:aa:8f:ca:4e:e2:f1:29:34:60:a1:c7:4a:
57:6e:85:1b:bc:9e:73:e4:e4:f9:19:46:3f:83:17:b2:85:74:
f3:b0:54:4a:25:d1:39:e5:0d:2f:bd:6d:ab:f1:57:0e:37:e0:
dd:1f:8f:62:34:6a:d7:cb:bd:c1:a5:2e:cf:d3:b5:02:fc:36:
bf:bf:f6:3c:28:5f:1d:48:7e:18:96:da:96:2f:37:03:de:f6:
a5:20:28:52:73:b7:22:1d:fa:6c:e7:36:02:5b:0e:d5:d3:92:
81:14:f0:d1:f9:fa:1f:b9:b0:4c:22:be:0c:cf:f0:b8:df:ee:
94:e3:59:f5:40:83:86:29:eb:41:ee:30:7d:8b:36:02:23:e2:
3a:b0:ac:51:0d:7c:ee:aa:58:4b:d3:21:84:04:b7:ea:72:88:
90:25:f8:1b:e5:62:dc:e5:15:66:9f:f7:07:9f:4e:19:2a:63:
4f:90:b2:55:6f:03:4d:cb:3e:3e:d5:64:26:e5:4f:19:95:1c:
86:27:8b:4a:73:0e:91:f9:3e:32:cd:a5:7f:e3:ab:0c:d5:89:
66:26:d5:c0:13:6d:22:29:3c:8b:0d:8e:16:51:7e:e8:55:51:
ed:f6:5e:1a:13:04:dd:70:35:38:29:94:71:4d:ee:56:3a:b8:
09:7c:e6:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:51:39 2025 by rpki-client