Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/974213-49fd-4c5c-8014-bd3a630ee5cc/1/QQ6vjhCR2yyTREcRxQKVvyzivi8.roa
File: QQ6vjhCR2yyTREcRxQKVvyzivi8.roa (raw, json)
Hash identifier: 7L16FIPuAoIWTe7eg7gWhNFlOXbBacL341K5d1WI9xc=
Subject key identifier: 41:0E:AF:8E:10:91:DB:2C:93:44:47:11:C5:02:95:BF:2C:E2:BE:2F
Certificate issuer: /CN=602be661e57c14659a608e9f6be605d6250047fc
Certificate serial: 019423D79A0FA3CB420337954123BD4E8B89
Authority key identifier: 60:2B:E6:61:E5:7C:14:65:9A:60:8E:9F:6B:E6:05:D6:25:00:47:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YCvmYeV8FGWaYI6fa-YF1iUAR_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/974213-49fd-4c5c-8014-bd3a630ee5cc/1/QQ6vjhCR2yyTREcRxQKVvyzivi8.roa
Signing time: Wed 01 Jan 2025 21:48:39 +0000
ROA not before: Wed 01 Jan 2025 21:48:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6876
IP address blocks: 31.31.96.0/19 maxlen: 19
37.203.0.0/19 maxlen: 19
45.130.0.0/22 maxlen: 22
45.140.120.0/22 maxlen: 22
45.156.36.0/22 maxlen: 22
62.16.0.0/19 maxlen: 19
79.140.0.0/20 maxlen: 20
85.238.96.0/19 maxlen: 19
88.214.8.0/22 maxlen: 22
95.214.40.0/22 maxlen: 22
130.0.32.0/19 maxlen: 19
176.119.64.0/18 maxlen: 18
185.21.51.0/24 maxlen: 24
185.23.104.0/22 maxlen: 22
185.145.104.0/22 maxlen: 22
185.166.220.0/22 maxlen: 22
185.177.240.0/22 maxlen: 22
185.184.168.0/22 maxlen: 22
185.206.36.0/22 maxlen: 22
185.226.112.0/22 maxlen: 22
185.228.104.0/22 maxlen: 22
185.247.20.0/22 maxlen: 22
188.115.128.0/18 maxlen: 18
193.163.196.0/24 maxlen: 24
193.178.48.0/22 maxlen: 22
195.138.64.0/19 maxlen: 19
212.24.112.0/24 maxlen: 24
212.90.124.0/22 maxlen: 22
212.178.0.0/19 maxlen: 19
2a04:2c00::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:9a:0f:a3:cb:42:03:37:95:41:23:bd:4e:8b:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=602be661e57c14659a608e9f6be605d6250047fc
Validity
Not Before: Jan 1 21:48:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=410eaf8e1091db2c93444711c50295bf2ce2be2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:45:c1:8b:8d:09:93:b6:ab:3b:fa:b4:a7:5b:
f3:a6:59:a7:98:13:ed:aa:8e:02:cb:d6:3a:20:1d:
98:9b:08:a9:a1:d0:a3:9e:da:53:88:67:46:70:57:
cb:ca:37:2f:00:8f:2e:7e:d1:f4:09:de:4c:d8:81:
53:28:db:5a:f1:4a:34:0a:0e:f6:59:4a:5a:a9:22:
eb:63:7a:2f:e0:74:eb:5d:04:53:9e:d5:d8:3e:87:
6b:9a:fa:3e:18:f5:ed:a6:bd:cb:4f:03:a7:7e:48:
14:2f:50:2e:a0:ae:31:37:f9:d1:0c:e7:e2:52:b9:
18:e7:e4:fd:b6:f0:ba:b4:0d:43:5b:ea:67:3b:19:
29:c3:f5:69:e7:94:00:f7:4f:a2:3a:af:60:e5:25:
e7:be:78:dc:8e:3c:17:24:f8:ca:e2:e3:a0:84:28:
67:08:77:f6:96:64:23:21:55:b5:8c:b9:f9:64:f4:
9d:69:ee:35:64:3d:d6:2f:f9:df:f8:82:8d:22:79:
c5:3a:69:b0:05:19:cf:98:76:74:68:5f:e1:4e:f9:
d4:7e:36:d7:af:a9:83:57:6f:b0:c9:c6:c2:0a:ff:
38:85:e3:68:bb:5a:de:4f:9f:73:60:c8:06:52:d7:
06:ad:22:76:33:42:37:b2:6a:a2:3c:f3:9c:ef:7f:
de:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:0E:AF:8E:10:91:DB:2C:93:44:47:11:C5:02:95:BF:2C:E2:BE:2F
X509v3 Authority Key Identifier:
keyid:60:2B:E6:61:E5:7C:14:65:9A:60:8E:9F:6B:E6:05:D6:25:00:47:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YCvmYeV8FGWaYI6fa-YF1iUAR_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/974213-49fd-4c5c-8014-bd3a630ee5cc/1/QQ6vjhCR2yyTREcRxQKVvyzivi8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/974213-49fd-4c5c-8014-bd3a630ee5cc/1/YCvmYeV8FGWaYI6fa-YF1iUAR_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.31.96.0/19
37.203.0.0/19
45.130.0.0/22
45.140.120.0/22
45.156.36.0/22
62.16.0.0/19
79.140.0.0/20
85.238.96.0/19
88.214.8.0/22
95.214.40.0/22
130.0.32.0/19
176.119.64.0/18
185.21.51.0/24
185.23.104.0/22
185.145.104.0/22
185.166.220.0/22
185.177.240.0/22
185.184.168.0/22
185.206.36.0/22
185.226.112.0/22
185.228.104.0/22
185.247.20.0/22
188.115.128.0/18
193.163.196.0/24
193.178.48.0/22
195.138.64.0/19
212.24.112.0/24
212.90.124.0/22
212.178.0.0/19
IPv6:
2a04:2c00::/29
Signature Algorithm: sha256WithRSAEncryption
1c:77:8a:5b:3a:95:0c:d9:53:65:5e:32:3d:6e:73:64:71:2a:
51:ad:b9:52:a2:57:e4:4c:32:d8:3f:e8:b4:e2:9b:b0:62:92:
c6:09:97:8a:69:7e:2f:ba:a8:92:ee:93:31:dd:1c:20:ea:5b:
b7:58:06:f5:6d:7b:78:bf:8c:1d:c5:12:bf:2f:5a:b5:3a:5d:
87:a3:41:70:ad:1d:bc:11:dc:1f:99:bc:bc:72:fd:2b:eb:e1:
dc:10:3e:98:88:19:55:f6:99:8a:33:2e:79:1a:83:dc:29:be:
7f:68:b2:7e:2c:06:55:d3:cd:54:6b:3d:f4:e7:b3:f6:82:98:
59:64:df:93:01:86:c7:70:d2:77:8c:9b:42:8b:82:9d:11:fb:
78:83:20:c7:7d:a9:88:3b:50:33:ac:bb:84:57:0b:df:81:7f:
a1:64:f8:d1:38:5b:09:fc:a2:27:75:b1:24:58:b7:b0:56:5e:
c4:0e:d6:da:b0:ab:33:57:ce:6f:38:cc:7d:cd:e1:0e:4f:89:
dd:f4:f3:fa:15:c2:5c:3d:aa:02:5d:bf:94:0d:c7:64:a8:b5:
b6:df:86:f1:77:bb:a1:10:ec:bd:76:f0:7f:77:5b:f2:17:1d:
39:7b:6e:5b:92:e2:a7:15:c5:29:8a:7e:19:94:0f:fc:fb:e1:
42:7d:ab:75
-----BEGIN CERTIFICATE-----
MIIFuTCCBKGgAwIBAgISAZQj15oPo8tCAzeVQSO9TouJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwMmJlNjYxZTU3YzE0NjU5YTYwOGU5ZjZiZTYwNWQ2MjUw
MDQ3ZmMwHhcNMjUwMTAxMjE0ODM5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MTBlYWY4ZTEwOTFkYjJjOTM0NDQ3MTFjNTAyOTViZjJjZTJiZTJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArUXBi40Jk7arO/q0p1vzplmnmBPt
qo4Cy9Y6IB2YmwipodCjntpTiGdGcFfLyjcvAI8uftH0Cd5M2IFTKNta8Uo0Cg72
WUpaqSLrY3ov4HTrXQRTntXYPodrmvo+GPXtpr3LTwOnfkgUL1AuoK4xN/nRDOfi
UrkY5+T9tvC6tA1DW+pnOxkpw/Vp55QA90+iOq9g5SXnvnjcjjwXJPjK4uOghChn
CHf2lmQjIVW1jLn5ZPSdae41ZD3WL/nf+IKNInnFOmmwBRnPmHZ0aF/hTvnUfjbX
r6mDV2+wycbCCv84heNou1reT59zYMgGUtcGrSJ2M0I3smqiPPOc73/eIQIDAQAB
o4ICxTCCAsEwHQYDVR0OBBYEFEEOr44Qkdssk0RHEcUClb8s4r4vMB8GA1UdIwQY
MBaAFGAr5mHlfBRlmmCOn2vmBdYlAEf8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUN2bVllVjhGR1dhWUk2ZmEtWUYxaVVBUl93LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC85NzQyMTMtNDlmZC00YzVjLTgwMTQt
YmQzYTYzMGVlNWNjLzEvUVE2dmpoQ1IyeXlUUkVjUnhRS1Z2eXppdmk4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC85NzQyMTMtNDlmZC00YzVjLTgwMTQtYmQzYTYzMGVlNWNj
LzEvWUN2bVllVjhGR1dhWUk2ZmEtWUYxaVVBUl93LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHaBggrBgEFBQcBBwEB/wSByjCBxzCBtQQCAAEwga4DBAUf
H2ADBAUlywADBAItggADBAItjHgDBAItnCQDBAU+EAADBARPjAADBAVV7mADBAJY
1ggDBAJf1igDBAWCACADBAawd0ADBAC5FTMDBAK5F2gDBAK5kWgDBAK5ptwDBAK5
sfADBAK5uKgDBAK5ziQDBAK54nADBAK55GgDBAK59xQDBAa8c4ADBADBo8QDBALB
sjADBAXDikADBADUGHADBALUWnwDBAXUsgAwDQQCAAIwBwMFAyoELAAwDQYJKoZI
hvcNAQELBQADggEBABx3ils6lQzZU2VeMj1uc2RxKlGtuVKiV+RMMtg/6LTim7Bi
ksYJl4ppfi+6qJLukzHdHCDqW7dYBvVte3i/jB3FEr8vWrU6XYejQXCtHbwR3B+Z
vLxy/Svr4dwQPpiIGVX2mYozLnkag9wpvn9osn4sBlXTzVRrPfTns/aCmFlk35MB
hsdw0neMm0KLgp0R+3iDIMd9qYg7UDOsu4RXC9+Bf6Fk+NE4Wwn8oid1sSRYt7BW
XsQO1tqwqzNXzm84zH3N4Q5Pid308/oVwlw9qgJdv5QNx2SotbbfhvF3u6EQ7L12
8H93W/IXHTl7bluS4qcVxSmKfhmUD/z74UJ9q3U=
-----END CERTIFICATE-----
Generated at Fri Apr 25 12:08:39 2025 by rpki-client