Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/QMEaS6BYrFoefBCXaXX7ISHt9Cw.roa
File: QMEaS6BYrFoefBCXaXX7ISHt9Cw.roa (raw, json)
Hash identifier: aNOI4ZmopzscNgoDkiNtRieGG64eDjtnW51oHSlXrss=
Subject key identifier: 40:C1:1A:4B:A0:58:AC:5A:1E:7C:10:97:69:75:FB:21:21:ED:F4:2C
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 019368AEF06F262ABAB876002E33563BAD77
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/QMEaS6BYrFoefBCXaXX7ISHt9Cw.roa
Signing time: Tue 26 Nov 2024 13:35:15 +0000
ROA not before: Tue 26 Nov 2024 13:35:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396551
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
185.100.0.53/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:ae:f0:6f:26:2a:ba:b8:76:00:2e:33:56:3b:ad:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Nov 26 13:35:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=40c11a4ba058ac5a1e7c10976975fb2121edf42c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:73:a9:e4:2a:3d:b9:36:91:d2:f2:ae:77:bf:
49:a6:db:98:48:82:64:57:47:2d:9c:da:e7:53:c2:
68:49:90:4b:fe:ea:86:35:9c:7b:bb:e4:81:01:89:
41:62:86:8b:f1:bb:d0:83:76:f4:ea:e5:40:4e:14:
dc:3b:91:30:23:dc:61:d8:5f:57:ff:6c:41:53:21:
64:aa:bf:09:83:e2:cd:f4:7f:ed:ad:89:50:37:ea:
3f:26:8f:fd:c7:ad:07:ad:7b:3b:44:34:32:6d:2f:
42:9c:fb:5a:0c:87:b2:2c:34:2e:d7:dd:bd:84:2e:
0b:35:87:21:69:83:f7:f9:6c:6f:a3:9b:12:bc:66:
3d:aa:51:c6:4f:c2:8e:40:b7:b6:d9:be:37:49:65:
86:f3:1b:83:76:4e:c8:55:90:53:65:fe:31:e8:d8:
16:fa:ce:52:5a:ff:a2:a3:2f:f5:18:72:f9:dc:05:
47:c0:bb:ea:e6:e8:42:e5:7e:f2:87:68:d5:98:56:
65:53:9c:50:9e:1a:43:ea:57:0a:40:dd:d2:00:19:
8b:cc:b3:ed:85:d3:81:a8:ee:7b:71:ea:e5:1d:ed:
b8:50:03:c0:dc:0a:ab:19:46:95:8b:04:ae:a3:35:
22:86:fc:14:a9:61:e5:4a:a3:4c:e6:57:7d:41:5e:
27:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:C1:1A:4B:A0:58:AC:5A:1E:7C:10:97:69:75:FB:21:21:ED:F4:2C
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/QMEaS6BYrFoefBCXaXX7ISHt9Cw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
185.100.0.53/32
Signature Algorithm: sha256WithRSAEncryption
c1:04:b1:1a:4c:68:79:03:52:6a:ba:e7:7d:62:35:42:6b:f0:
c3:2d:fd:c6:28:21:9e:b4:81:73:57:fc:b6:b1:82:0e:fb:ee:
23:03:a4:2d:65:2a:1e:ac:10:72:72:e3:f7:17:e6:a3:a6:27:
79:85:7c:9e:3e:8c:25:11:50:09:3e:10:81:66:d9:fa:bf:e9:
a8:e6:1b:24:92:bf:01:df:87:72:83:56:a0:35:ff:65:69:91:
7d:0c:64:81:68:dd:92:47:02:b7:d7:52:7b:ee:8f:34:f8:10:
bc:2d:ee:51:fa:49:b7:73:da:c6:a1:af:10:7c:35:c5:37:d7:
1d:87:ae:a4:f1:ff:c5:7a:cc:4d:05:21:93:d4:e6:51:20:b2:
ab:c9:20:1c:30:6d:7b:b3:62:5a:12:7b:bf:d3:fb:2a:5f:58:
01:43:04:a3:43:49:7d:0b:05:b4:ff:86:2b:9c:1d:ed:7b:d0:
b6:a6:80:80:1b:cd:7c:f0:54:00:1c:7d:9f:38:4c:9a:3b:04:
6e:be:df:82:91:45:65:c3:a3:85:6f:af:b8:14:9d:cf:1f:7b:
16:02:71:ff:2d:e0:4c:be:b7:91:fc:2e:80:06:d7:d4:31:15:
db:d4:38:0a:b7:30:b6:f7:30:5a:5c:3c:fb:da:66:bf:e1:77:
b1:b0:29:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:18:44 2025 by rpki-client