Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/2c4731-89d5-4e9b-b4aa-bf09ad32c888/1/QdvbepQukFmfMSQYf6HBBLcHcMk.roa
File: QdvbepQukFmfMSQYf6HBBLcHcMk.roa (raw, json)
Hash identifier: F/Id75RSk4+xz0N0tNwJ7jB7AAssoyiwdWIUCFeT7Qg=
Subject key identifier: 41:DB:DB:7A:94:2E:90:59:9F:31:24:18:7F:A1:C1:04:B7:07:70:C9
Certificate issuer: /CN=b06551937efc96e145e33a1ebca24492dc120ecb
Certificate serial: 019426D90E2761A3FD6D3283EC8E5E4746A9
Authority key identifier: B0:65:51:93:7E:FC:96:E1:45:E3:3A:1E:BC:A2:44:92:DC:12:0E:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sGVRk378luFF4zoevKJEktwSDss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/2c4731-89d5-4e9b-b4aa-bf09ad32c888/1/QdvbepQukFmfMSQYf6HBBLcHcMk.roa
Signing time: Thu 02 Jan 2025 11:49:06 +0000
ROA not before: Thu 02 Jan 2025 11:49:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47288
IP address blocks: 93.184.144.0/24 maxlen: 24
93.184.145.0/24 maxlen: 24
93.184.146.0/24 maxlen: 24
93.184.147.0/24 maxlen: 24
93.184.148.0/24 maxlen: 24
93.184.149.0/24 maxlen: 24
93.184.150.0/24 maxlen: 24
93.184.151.0/24 maxlen: 24
93.184.152.0/24 maxlen: 24
93.184.153.0/24 maxlen: 24
93.184.154.0/24 maxlen: 24
93.184.155.0/24 maxlen: 24
93.184.156.0/24 maxlen: 24
93.184.157.0/24 maxlen: 24
93.184.158.0/24 maxlen: 24
93.184.159.0/24 maxlen: 24
185.168.152.0/24 maxlen: 24
185.168.153.0/24 maxlen: 24
185.168.154.0/23 maxlen: 23
185.168.154.0/24 maxlen: 24
185.168.155.0/24 maxlen: 24
193.218.40.0/24 maxlen: 24
193.218.43.0/24 maxlen: 24
193.218.105.0/24 maxlen: 24
193.218.121.0/24 maxlen: 24
2a00:dc00::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:0e:27:61:a3:fd:6d:32:83:ec:8e:5e:47:46:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b06551937efc96e145e33a1ebca24492dc120ecb
Validity
Not Before: Jan 2 11:49:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=41dbdb7a942e90599f3124187fa1c104b70770c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b6:c1:44:aa:19:22:dc:fb:54:bf:66:4d:31:
85:56:20:24:3b:ee:96:17:03:af:60:7e:5e:a1:0a:
fb:fc:21:d1:b2:d8:37:d4:43:9a:32:22:40:c6:80:
87:64:16:75:95:17:85:0f:21:6f:ee:68:b8:9d:cd:
e6:37:2d:59:d2:fc:07:7a:62:4c:91:e5:c5:48:46:
6b:13:b1:3e:66:2c:fa:de:c0:74:55:91:63:ff:5b:
0a:69:15:90:e2:3a:80:68:d4:6c:94:7b:8f:f3:56:
4c:77:bb:eb:a2:40:86:7e:8c:42:54:20:98:5d:19:
fb:22:aa:52:27:c4:13:f8:78:a8:13:85:fa:52:c7:
ae:14:e9:e4:da:da:b2:14:14:94:0b:b4:1e:f0:7e:
09:6d:48:a3:96:db:7b:4a:55:85:b1:5a:64:10:d2:
a0:7f:93:fc:67:1c:26:55:90:01:30:10:28:c8:bb:
b8:a4:1c:66:40:cb:e8:af:e6:fd:15:6d:89:be:a7:
f0:69:a8:ed:6f:93:a9:d0:16:23:20:ad:5e:94:04:
35:d3:ed:ca:6d:6b:32:19:1d:96:27:88:ea:e0:03:
2c:da:d9:28:7d:b1:c7:5d:80:44:b0:08:63:d0:03:
ed:aa:59:7e:75:e1:83:6c:13:c3:a1:6b:88:d8:e1:
d4:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:DB:DB:7A:94:2E:90:59:9F:31:24:18:7F:A1:C1:04:B7:07:70:C9
X509v3 Authority Key Identifier:
keyid:B0:65:51:93:7E:FC:96:E1:45:E3:3A:1E:BC:A2:44:92:DC:12:0E:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sGVRk378luFF4zoevKJEktwSDss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/2c4731-89d5-4e9b-b4aa-bf09ad32c888/1/QdvbepQukFmfMSQYf6HBBLcHcMk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/2c4731-89d5-4e9b-b4aa-bf09ad32c888/1/sGVRk378luFF4zoevKJEktwSDss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.184.144.0/20
185.168.152.0/22
193.218.40.0/24
193.218.43.0/24
193.218.105.0/24
193.218.121.0/24
IPv6:
2a00:dc00::/32
Signature Algorithm: sha256WithRSAEncryption
94:ab:1f:85:10:98:e1:f7:17:a1:63:92:8f:22:7e:b8:a7:10:
80:86:e4:b0:0b:c8:d4:68:c7:a7:45:31:8f:56:9a:af:2e:86:
31:e5:d0:13:6b:41:78:2e:a0:93:6b:16:dc:76:a4:71:aa:44:
64:a4:5d:0a:71:01:e8:4f:e1:ed:49:49:02:5b:9a:b5:86:49:
e4:70:a5:95:f4:92:6f:74:f8:71:08:f4:66:e4:e7:ca:14:d3:
c3:61:6b:cf:db:2a:23:2b:17:19:41:93:93:8f:bb:40:e3:ef:
ad:92:d3:b8:5e:df:c8:38:c5:7b:4c:cd:1d:13:40:f9:dc:56:
99:53:01:9f:ea:27:f0:a3:64:bc:9b:47:40:85:62:a0:26:43:
f9:6e:c8:45:ce:de:7b:00:5c:64:38:bf:14:05:09:df:66:94:
3a:2e:ef:db:3a:9c:5c:da:08:b4:dd:7e:de:77:fb:fe:90:be:
d6:11:9d:75:52:44:87:b5:d4:db:13:e5:6d:74:98:3a:73:f6:
6d:73:43:d1:81:1b:87:bd:c2:95:07:28:8e:c7:64:8e:79:e5:
e6:33:98:4e:63:20:15:33:9e:e4:fa:e4:9d:d3:0e:dd:60:f3:
49:41:6d:2a:a4:82:42:ee:0f:ff:72:41:eb:fe:c9:be:61:a3:
81:b6:71:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 06:04:53 2025 by rpki-client