Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/3f99e4-8dd5-4e5f-beaa-a756929a8dc8/1/QB5FpuPpmowESfKF6nGgHMXmFsg.roa
File: QB5FpuPpmowESfKF6nGgHMXmFsg.roa (raw, json)
Hash identifier: 4U84FI9f905V3/Hwf++fcBDHdTLLsUUQSR6ku8lze+8=
Subject key identifier: 40:1E:45:A6:E3:E9:9A:8C:04:49:F2:85:EA:71:A0:1C:C5:E6:16:C8
Certificate issuer: /CN=d79dce1c05a143fdd858474004c47f6f3bfff749
Certificate serial: 019424452C9B818E80C82E9B22A4705C9E1D
Authority key identifier: D7:9D:CE:1C:05:A1:43:FD:D8:58:47:40:04:C4:7F:6F:3B:FF:F7:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/153OHAWhQ_3YWEdABMR_bzv_90k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/3f99e4-8dd5-4e5f-beaa-a756929a8dc8/1/QB5FpuPpmowESfKF6nGgHMXmFsg.roa
Signing time: Wed 01 Jan 2025 23:48:20 +0000
ROA not before: Wed 01 Jan 2025 23:48:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211148
IP address blocks: 193.242.186.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:2c:9b:81:8e:80:c8:2e:9b:22:a4:70:5c:9e:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d79dce1c05a143fdd858474004c47f6f3bfff749
Validity
Not Before: Jan 1 23:48:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=401e45a6e3e99a8c0449f285ea71a01cc5e616c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:72:65:9c:dd:06:1e:ce:f7:f4:7b:54:e0:8e:
da:99:ba:8e:1e:51:54:dc:76:a0:12:40:cb:d2:7f:
9d:c5:46:48:26:24:0b:35:de:03:a2:e4:4a:3c:84:
89:5b:95:92:c6:ba:d5:0a:26:90:23:89:e2:57:a5:
f8:4c:88:0c:bf:e7:fd:08:de:9a:f2:dc:8b:31:5a:
cb:04:4b:a1:c1:43:11:71:57:a4:00:50:c1:8c:04:
7a:43:fd:3f:ba:18:89:b3:c0:ee:92:38:00:6a:e5:
b1:b0:40:b9:ab:e2:46:a2:5a:e3:2d:fc:c9:24:fd:
84:1a:c5:87:85:2c:d5:80:b5:6d:62:bd:2f:af:45:
8d:fa:57:73:ee:db:ea:df:89:db:af:14:a7:7b:8f:
43:50:f3:1c:8d:d9:e2:7a:48:33:c1:f7:62:80:59:
28:ca:18:63:de:3a:35:62:a9:36:a4:68:7a:dc:f3:
6e:7f:fa:4c:53:27:aa:c5:41:0a:03:6f:18:17:ba:
9e:18:9a:94:24:d2:39:99:d5:d0:e0:59:cd:7f:23:
60:7e:99:2d:42:33:77:5c:52:16:1f:44:e5:52:4c:
94:45:22:c9:d4:c7:71:81:0b:7e:eb:69:b8:20:cc:
b2:25:59:eb:7a:a7:cd:15:7d:04:b6:69:4c:ce:db:
3c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:1E:45:A6:E3:E9:9A:8C:04:49:F2:85:EA:71:A0:1C:C5:E6:16:C8
X509v3 Authority Key Identifier:
keyid:D7:9D:CE:1C:05:A1:43:FD:D8:58:47:40:04:C4:7F:6F:3B:FF:F7:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/153OHAWhQ_3YWEdABMR_bzv_90k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/3f99e4-8dd5-4e5f-beaa-a756929a8dc8/1/QB5FpuPpmowESfKF6nGgHMXmFsg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/3f99e4-8dd5-4e5f-beaa-a756929a8dc8/1/153OHAWhQ_3YWEdABMR_bzv_90k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.242.186.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:1d:30:9d:2f:35:20:e9:cf:1f:ba:2f:aa:16:6b:e6:73:06:
29:6e:84:bf:66:c4:2a:f5:f9:11:41:e5:b3:f2:18:63:18:3b:
35:15:bd:45:c9:b6:51:43:a2:89:43:da:8c:58:46:b8:a3:4a:
c5:ae:2f:58:1e:f4:65:ee:03:61:b8:49:7c:24:33:58:29:4e:
c6:b3:6c:d0:d2:33:90:f0:24:86:3a:32:26:1c:3d:f5:ff:37:
67:d7:c7:0b:13:ef:3d:23:17:e2:17:e0:bd:02:58:de:bf:5d:
37:c0:0d:63:96:5a:1a:3d:e8:9c:2a:e5:9d:e9:c2:62:fa:3e:
2e:15:7e:69:d8:39:e9:1a:35:ec:5e:0b:7b:ac:92:6f:f4:bb:
59:fb:4f:b6:2e:c9:aa:b9:7d:e6:8b:99:f6:38:e9:66:82:f4:
9e:df:62:f4:7d:3c:b2:88:96:7d:f4:6d:38:99:9a:78:15:f0:
70:1e:32:77:07:da:34:4f:e3:8d:c3:2a:65:65:74:d8:4e:ac:
c2:a0:64:01:db:67:53:41:3c:05:a2:d6:ec:84:ba:18:c6:b3:
fc:e0:88:d3:2e:ac:43:7e:a5:50:f3:b9:73:1b:26:b8:ad:06:
ea:c6:ef:44:2d:99:08:4a:81:d8:76:9a:5b:ae:85:d9:f6:cf:
ce:bf:85:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 03:52:45 2025 by rpki-client