Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/9d4274-fb10-42a4-bf9b-1c8be25eb686/1/qqmAsjIJyxprjV-Z0wRBlVRs5QY.roa
File: qqmAsjIJyxprjV-Z0wRBlVRs5QY.roa (raw, json)
Hash identifier: pdJ0sqOoN9EzOHOuHyXun8oq8xcslLUsNxeZED/f3bk=
Subject key identifier: AA:A9:80:B2:32:09:CB:1A:6B:8D:5F:99:D3:04:41:95:54:6C:E5:06
Certificate issuer: /CN=3918700ea9c7be2df5688affbedd8a4e55392de6
Certificate serial: 019426D91B8B43AC574D695014EF1E68F28B
Authority key identifier: 39:18:70:0E:A9:C7:BE:2D:F5:68:8A:FF:BE:DD:8A:4E:55:39:2D:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ORhwDqnHvi31aIr_vt2KTlU5LeY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/9d4274-fb10-42a4-bf9b-1c8be25eb686/1/qqmAsjIJyxprjV-Z0wRBlVRs5QY.roa
Signing time: Thu 02 Jan 2025 11:49:10 +0000
ROA not before: Thu 02 Jan 2025 11:49:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60650
IP address blocks: 193.53.8.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:1b:8b:43:ac:57:4d:69:50:14:ef:1e:68:f2:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3918700ea9c7be2df5688affbedd8a4e55392de6
Validity
Not Before: Jan 2 11:49:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=aaa980b23209cb1a6b8d5f99d3044195546ce506
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:98:19:12:70:6d:9c:d6:6b:fc:5b:d5:d4:c4:
ef:be:2e:4e:a9:71:be:b7:77:96:de:65:26:73:01:
72:bd:e4:03:af:b9:76:d6:1c:24:79:79:45:e8:1b:
c9:29:e9:60:b2:4c:08:6e:48:d8:1e:8b:9c:bc:fe:
f2:fa:a1:b5:0b:89:26:bd:41:68:63:8a:29:b6:a2:
de:fa:cc:36:1b:3d:02:31:e1:3e:85:09:c2:d8:23:
11:bd:15:f3:82:52:3b:2d:06:d2:f3:17:84:2c:99:
73:f1:f3:fd:f7:94:cb:29:08:e4:92:d6:3c:75:01:
38:24:c9:89:aa:17:8c:0b:f3:5e:3e:f6:7f:cf:61:
dd:ef:e9:23:14:a8:92:22:6d:f5:14:07:02:27:a1:
07:e4:d0:86:23:fb:17:4d:32:9d:e2:57:82:ed:bf:
49:b3:8d:ba:d2:f0:4e:cd:9e:eb:ad:69:b7:38:19:
f8:87:05:0d:15:5e:c0:c3:ff:19:b2:ba:0c:b3:98:
6c:f9:cf:0e:02:0e:0e:17:2d:7b:ea:42:ab:dd:a7:
f6:43:51:c4:84:a6:85:9f:b0:0b:44:5d:be:0d:7a:
9f:71:eb:7c:1f:3f:c3:63:44:d6:8c:49:44:e1:bd:
ad:52:bc:e2:50:84:ba:fc:d0:6a:b6:01:4f:9f:7f:
2b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:A9:80:B2:32:09:CB:1A:6B:8D:5F:99:D3:04:41:95:54:6C:E5:06
X509v3 Authority Key Identifier:
keyid:39:18:70:0E:A9:C7:BE:2D:F5:68:8A:FF:BE:DD:8A:4E:55:39:2D:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ORhwDqnHvi31aIr_vt2KTlU5LeY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/9d4274-fb10-42a4-bf9b-1c8be25eb686/1/qqmAsjIJyxprjV-Z0wRBlVRs5QY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/9d4274-fb10-42a4-bf9b-1c8be25eb686/1/ORhwDqnHvi31aIr_vt2KTlU5LeY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.53.8.0/23
Signature Algorithm: sha256WithRSAEncryption
71:1e:ac:9a:9f:17:f2:d4:97:cd:32:aa:c2:ae:49:a0:50:2f:
e0:ad:81:71:8f:a4:a6:a2:16:d0:d2:e1:91:38:40:17:83:a7:
20:53:81:72:96:8a:e7:8a:b6:36:25:78:36:48:fc:78:06:64:
5e:7e:91:f3:ff:75:05:94:2d:de:b0:e7:59:4e:aa:a3:1b:25:
33:97:31:1f:ab:a6:7f:f4:a9:96:a0:ef:a9:45:d5:06:ce:c9:
40:50:b0:10:0b:85:3b:75:b6:8a:6b:a8:5e:80:ab:b5:65:7f:
c5:81:8e:c3:f3:f2:2c:a1:8a:00:5d:ea:a0:9b:3e:e2:05:2e:
cd:2d:ce:d0:c0:cd:68:f0:cd:57:1e:8f:99:2c:23:3a:98:3a:
93:d1:5c:f4:cb:85:ac:92:81:e8:71:e5:b5:53:bc:87:68:2d:
73:10:c2:fa:25:da:62:4a:36:7a:f0:df:bf:0f:fa:6f:94:da:
b8:a3:ce:ce:07:a5:dc:41:4c:07:9b:e5:04:c1:84:9b:db:b8:
53:31:12:d7:c9:f7:55:e4:8f:b1:2d:4c:4b:1b:e1:29:b1:b4:
1d:b7:d5:2f:18:ad:4f:cc:b0:8a:5e:4f:a5:92:13:fd:26:12:
49:08:59:2d:22:53:22:da:cc:26:7c:eb:a1:a0:ef:40:82:98:
a2:1d:a7:ab
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQm2RuLQ6xXTWlQFO8eaPKLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5MTg3MDBlYTljN2JlMmRmNTY4OGFmZmJlZGQ4YTRlNTUz
OTJkZTYwHhcNMjUwMTAyMTE0OTEwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYWE5ODBiMjMyMDljYjFhNmI4ZDVmOTlkMzA0NDE5NTU0NmNlNTA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2pgZEnBtnNZr/FvV1MTvvi5OqXG+
t3eW3mUmcwFyveQDr7l21hwkeXlF6BvJKelgskwIbkjYHoucvP7y+qG1C4kmvUFo
Y4optqLe+sw2Gz0CMeE+hQnC2CMRvRXzglI7LQbS8xeELJlz8fP995TLKQjkktY8
dQE4JMmJqheMC/NePvZ/z2Hd7+kjFKiSIm31FAcCJ6EH5NCGI/sXTTKd4leC7b9J
s4260vBOzZ7rrWm3OBn4hwUNFV7Aw/8ZsroMs5hs+c8OAg4OFy176kKr3af2Q1HE
hKaFn7ALRF2+DXqfcet8Hz/DY0TWjElE4b2tUrziUIS6/NBqtgFPn38rjwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKqpgLIyCcsaa41fmdMEQZVUbOUGMB8GA1UdIwQY
MBaAFDkYcA6px74t9WiK/77dik5VOS3mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1Jod0Rxbkh2aTMxYUlyX3Z0MktUbFU1TGVZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS85ZDQyNzQtZmIxMC00MmE0LWJmOWIt
MWM4YmUyNWViNjg2LzEvcXFtQXNqSUp5eHByalYtWjB3UkJsVlJzNVFZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS85ZDQyNzQtZmIxMC00MmE0LWJmOWItMWM4YmUyNWViNjg2
LzEvT1Jod0Rxbkh2aTMxYUlyX3Z0MktUbFU1TGVZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwTUIMA0G
CSqGSIb3DQEBCwUAA4IBAQBxHqyanxfy1JfNMqrCrkmgUC/grYFxj6SmohbQ0uGR
OEAXg6cgU4FylornirY2JXg2SPx4BmRefpHz/3UFlC3esOdZTqqjGyUzlzEfq6Z/
9KmWoO+pRdUGzslAULAQC4U7dbaKa6hegKu1ZX/FgY7D8/IsoYoAXeqgmz7iBS7N
Lc7QwM1o8M1XHo+ZLCM6mDqT0Vz0y4WskoHoceW1U7yHaC1zEML6JdpiSjZ68N+/
D/pvlNq4o87OB6XcQUwHm+UEwYSb27hTMRLXyfdV5I+xLUxLG+EpsbQdt9UvGK1P
zLCKXk+lkhP9JhJJCFktIlMi2swmfOuhoO9AgpiiHaer
-----END CERTIFICATE-----
Generated at Fri Apr 25 11:59:05 2025 by rpki-client