Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/QkzBjjFPpXv5Il1gIbJ84kxKNbg.roa
File: QkzBjjFPpXv5Il1gIbJ84kxKNbg.roa (raw, json)
Hash identifier: eQislG82ZimQ9YCAAg3VDLhs2PHosAHoBXKN4Sc2rBg=
Subject key identifier: 42:4C:C1:8E:31:4F:A5:7B:F9:22:5D:60:21:B2:7C:E2:4C:4A:35:B8
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 019368AF141C6574B139A9F9958ABEF652FA
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/QkzBjjFPpXv5Il1gIbJ84kxKNbg.roa
Signing time: Tue 26 Nov 2024 13:35:24 +0000
ROA not before: Tue 26 Nov 2024 13:35:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 397205
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
185.100.0.53/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:af:14:1c:65:74:b1:39:a9:f9:95:8a:be:f6:52:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Nov 26 13:35:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=424cc18e314fa57bf9225d6021b27ce24c4a35b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e2:22:f9:a8:d4:bf:db:a3:49:ee:eb:19:85:
16:8a:52:68:d3:0f:e5:7c:1a:cb:13:06:72:44:41:
3f:ae:9b:94:fb:3a:08:97:f4:87:d4:d7:89:25:aa:
33:2b:10:7e:8e:2d:d8:29:aa:7a:d7:f1:7e:69:4c:
8a:16:b2:dd:1f:7a:9f:2e:92:45:d2:35:f8:af:58:
1b:ff:40:63:41:0d:f3:96:02:bd:60:1d:97:02:4d:
71:da:03:79:03:02:e6:b8:21:89:fe:7f:b4:23:5b:
0e:4c:0c:e0:4f:33:07:90:ec:3a:a1:3b:62:94:60:
96:f9:02:4d:06:c6:6e:c8:80:31:4d:41:10:1a:42:
ca:4d:86:e8:9a:cf:26:bb:72:2e:e9:dd:e8:10:fa:
78:2f:9e:7e:94:0d:85:7f:54:ef:77:14:c3:bd:4d:
f8:12:f0:c7:9a:e3:2c:c4:ba:ba:6e:dd:b5:46:36:
9c:e4:d7:1e:40:b2:74:5a:97:a2:12:2e:ab:fd:ab:
33:9d:77:42:43:10:a8:af:00:4a:ac:43:70:bc:f5:
61:fe:5a:82:e2:5a:95:2b:20:e6:0d:25:25:0e:d4:
07:8b:ad:88:53:44:48:9c:e5:91:5e:77:c9:94:8a:
f0:5c:74:81:15:b6:d9:be:33:0c:c2:f1:ac:60:84:
eb:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:4C:C1:8E:31:4F:A5:7B:F9:22:5D:60:21:B2:7C:E2:4C:4A:35:B8
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/QkzBjjFPpXv5Il1gIbJ84kxKNbg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
185.100.0.53/32
Signature Algorithm: sha256WithRSAEncryption
1c:94:05:ab:f8:a2:d0:62:e9:5e:4d:49:61:20:67:50:5b:41:
1a:76:1a:8c:25:5e:3c:bf:00:f2:cc:6d:7c:7d:3c:c7:68:cd:
a9:c9:fb:ac:a7:1b:9a:25:d2:39:74:58:cb:0c:3d:db:9a:24:
d7:3e:bf:26:21:21:71:ae:74:5e:65:31:b6:b1:5c:b9:60:e2:
97:46:37:fb:cc:44:3e:78:e4:a3:f8:82:cc:29:a4:10:e7:92:
66:27:98:39:d4:cc:2d:e5:39:dd:6a:cd:a3:be:29:ee:75:b7:
19:ee:9d:12:51:94:9e:aa:e4:eb:dd:80:c4:73:6a:73:e9:b6:
fe:b2:66:7e:2d:90:28:fb:eb:9a:80:4e:59:ea:3c:a5:c6:7f:
85:40:45:d4:5b:b9:da:ab:63:3e:75:a8:e2:98:c3:0a:a2:21:
84:ef:4a:39:03:ba:b3:fc:06:df:14:0f:b3:6b:a4:67:42:f0:
c3:26:bb:ad:62:81:38:c7:39:37:30:20:77:7d:48:63:b2:0a:
7b:b2:7e:74:b3:25:80:90:7b:02:e0:63:0a:b7:be:38:b1:34:
a7:02:97:c1:b5:e9:3b:a5:89:3a:d8:a4:3f:5f:f2:21:8b:9b:
21:3f:d1:7b:1c:68:77:2a:6d:2b:79:12:c4:64:a6:b9:7c:01:
a6:a8:56:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:28:40 2025 by rpki-client