Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/Qdt9OgYgL3E4JsIJJmo0owCqpyE.roa
File: Qdt9OgYgL3E4JsIJJmo0owCqpyE.roa (raw, json)
Hash identifier: gjYk+X0Ypat1P/f1ZPngFIkRD5fHMOgl8GVoVYGkPE8=
Subject key identifier: 41:DB:7D:3A:06:20:2F:71:38:26:C2:09:26:6A:34:A3:00:AA:A7:21
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 019424B39E5848B14CC40BF1861205BE0FE6
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/Qdt9OgYgL3E4JsIJJmo0owCqpyE.roa
Signing time: Thu 02 Jan 2025 01:48:58 +0000
ROA not before: Thu 02 Jan 2025 01:48:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61254
IP address blocks: 185.233.17.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:9e:58:48:b1:4c:c4:0b:f1:86:12:05:be:0f:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Jan 2 01:48:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=41db7d3a06202f713826c209266a34a300aaa721
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:88:fa:e3:d8:ad:9a:fc:12:d2:8b:95:b2:47:
27:21:18:e8:dd:26:22:b6:c6:c2:df:66:c8:0d:65:
28:d1:ea:cc:e0:af:61:a8:86:29:48:73:a4:96:c5:
22:0e:fa:e5:fa:58:34:1a:6a:54:c2:19:5f:27:24:
1b:44:b7:b5:fa:76:f5:d4:2a:19:a6:2d:16:a4:8e:
bd:35:c4:42:d7:f4:01:e7:11:47:12:2e:39:fe:f5:
46:74:88:72:52:93:62:4e:bf:12:1d:34:20:01:93:
56:25:69:b9:c1:fe:29:db:a9:03:63:6f:20:17:10:
dd:f2:f4:96:66:82:d4:5e:a6:4a:28:18:1c:f4:8f:
60:ef:53:0f:02:5b:65:e5:d9:fc:f2:45:e5:94:43:
b4:1a:1d:f5:ed:c2:e7:bd:65:39:c8:0b:ae:df:ac:
86:67:e4:40:60:db:ce:e8:7c:b2:99:ba:01:b9:8a:
06:0e:e3:78:3c:2d:9b:2d:33:e3:8c:93:02:98:93:
de:e1:34:38:30:10:3c:27:0b:ad:f5:78:a9:52:8f:
a5:93:d2:3d:ec:70:f4:41:f1:5c:22:48:ba:03:41:
0b:b5:33:da:3a:92:a1:66:6d:0d:fa:02:44:d1:0c:
0a:92:15:bd:cf:1e:ee:03:3c:c9:70:76:1f:0a:c0:
20:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:DB:7D:3A:06:20:2F:71:38:26:C2:09:26:6A:34:A3:00:AA:A7:21
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/Qdt9OgYgL3E4JsIJJmo0owCqpyE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.17.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:4b:a3:55:ab:26:b8:b4:7e:86:0b:41:35:9c:21:3f:04:46:
88:e6:62:cb:3f:37:82:d2:5e:60:11:09:fb:2f:15:01:21:d1:
0a:32:9c:a0:9a:6e:5b:2a:96:ff:b8:70:4f:60:64:54:e5:fc:
1c:14:d5:7d:41:5a:87:bf:88:a7:53:34:d9:00:f5:c1:e9:36:
98:7f:57:af:57:46:43:41:ca:d3:53:05:62:e6:ff:b3:78:85:
d3:2d:98:99:b3:1d:db:58:e7:90:a3:2a:06:47:5a:d6:8c:40:
72:17:e5:9c:9b:60:0a:fa:16:a8:41:dd:8c:8c:21:e7:a6:7d:
f0:df:86:1f:9f:4f:08:d2:3f:da:af:f0:75:78:63:53:85:28:
14:5c:0f:fa:b1:02:a0:cb:52:42:bd:b2:61:2a:83:4c:b3:37:
39:88:09:48:0b:2a:bc:49:db:58:1a:c6:ce:38:52:78:15:8a:
c7:ce:2e:97:c6:ba:ac:0c:40:eb:ef:2a:9c:d9:a9:f5:7d:09:
f0:48:f0:77:f9:d3:6b:ff:ee:8f:07:5a:0a:6c:e6:bb:02:19:
53:9d:76:12:d3:e4:d6:0e:52:58:c3:4e:b0:15:34:a5:79:42:
aa:6e:a8:fd:90:d5:78:90:4d:58:f2:4c:a1:18:37:cf:30:37:
f3:84:57:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 22:57:06 2025 by rpki-client