Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b8c7ba-92fa-4b73-a924-3d33e5414d9b/1/Q0GMmj0TLNZKmzThv89XKbeW0UI.roa
File: Q0GMmj0TLNZKmzThv89XKbeW0UI.roa (raw, json)
Hash identifier: JZ14w91MZvqFvHWvtqxAYRsNPtiKbIaz1hieDnidrSg=
Subject key identifier: 43:41:8C:9A:3D:13:2C:D6:4A:9B:34:E1:BF:CF:57:29:B7:96:D1:42
Certificate issuer: /CN=415a412127b514f6455ec8a86e29d38eb0abb5ac
Certificate serial: 01941F8C8DEF3EA3936771C653450B79D12D
Authority key identifier: 41:5A:41:21:27:B5:14:F6:45:5E:C8:A8:6E:29:D3:8E:B0:AB:B5:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QVpBISe1FPZFXsiobinTjrCrtaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b8c7ba-92fa-4b73-a924-3d33e5414d9b/1/Q0GMmj0TLNZKmzThv89XKbeW0UI.roa
Signing time: Wed 01 Jan 2025 01:48:12 +0000
ROA not before: Wed 01 Jan 2025 01:48:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29289
IP address blocks: 109.205.46.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:8d:ef:3e:a3:93:67:71:c6:53:45:0b:79:d1:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=415a412127b514f6455ec8a86e29d38eb0abb5ac
Validity
Not Before: Jan 1 01:48:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=43418c9a3d132cd64a9b34e1bfcf5729b796d142
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:5c:39:f8:79:c3:cb:d5:19:d6:cd:89:d1:87:
9b:8d:2a:66:d4:14:66:19:96:65:5f:50:13:bd:6b:
43:26:db:3e:7c:79:73:7d:70:16:5d:32:61:82:a0:
fb:a1:38:cd:7c:5d:90:cc:45:38:82:48:b5:a3:4b:
ad:13:f3:db:8e:bb:f0:16:ac:87:cb:b2:ae:74:7f:
fd:d3:02:e7:67:b6:08:9a:ef:1f:83:21:0f:c0:a2:
1c:2d:95:9c:86:63:fe:f9:3d:a8:29:de:5b:cc:77:
e8:d2:c7:d0:f4:8c:bc:a2:ad:5f:25:39:72:ce:05:
c9:97:d5:99:bd:cc:6d:1c:fe:8e:c9:90:c5:46:7a:
50:0d:06:d8:35:29:55:64:42:ee:fa:cb:c0:a0:97:
ef:9f:c4:f2:60:0f:63:1a:1f:62:8d:47:24:41:5f:
64:69:31:5f:02:ea:d0:26:ed:88:05:78:70:50:a4:
20:40:67:f3:64:63:4c:4f:85:2d:80:e6:c6:f1:04:
b2:bd:99:ef:75:60:5e:26:f8:2f:62:26:fd:95:07:
64:e2:40:06:24:7e:d7:e6:56:7d:63:c5:e4:2e:63:
0e:9f:64:cd:5f:8b:8a:da:af:65:29:ac:07:53:bb:
ec:14:00:09:67:ad:49:53:8a:cf:58:e2:2f:83:fd:
32:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:41:8C:9A:3D:13:2C:D6:4A:9B:34:E1:BF:CF:57:29:B7:96:D1:42
X509v3 Authority Key Identifier:
keyid:41:5A:41:21:27:B5:14:F6:45:5E:C8:A8:6E:29:D3:8E:B0:AB:B5:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QVpBISe1FPZFXsiobinTjrCrtaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b8c7ba-92fa-4b73-a924-3d33e5414d9b/1/Q0GMmj0TLNZKmzThv89XKbeW0UI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b8c7ba-92fa-4b73-a924-3d33e5414d9b/1/QVpBISe1FPZFXsiobinTjrCrtaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.46.0/23
Signature Algorithm: sha256WithRSAEncryption
7f:a0:af:83:7d:11:56:dc:05:86:97:4d:0e:36:f1:ed:b4:0a:
5b:4d:32:4a:b1:a1:89:5f:67:5f:f8:89:cf:85:08:d0:4b:c6:
59:16:d5:ca:49:d4:10:17:23:db:d0:1d:51:e2:13:c9:23:ee:
09:19:be:82:d6:e9:80:a9:4c:19:6b:ff:eb:f7:ca:1f:d1:98:
f8:ac:d8:ef:e3:00:0d:40:69:6a:23:d3:f9:d3:75:f8:de:3c:
94:71:e8:b6:86:55:da:2d:e9:e8:23:b3:9c:7f:58:52:76:d0:
14:c3:6c:57:fc:d1:88:81:0f:b2:ce:e6:de:4f:6a:d5:5f:50:
5a:75:93:61:c0:f0:50:5d:b5:94:01:9c:51:bc:42:db:f8:da:
6d:df:49:99:5e:21:7f:f5:b9:74:d1:95:d5:ea:6d:b8:c2:d7:
29:a2:5b:ec:75:57:73:11:0d:08:6d:20:e5:04:ff:6a:97:91:
0c:73:fd:d4:7c:37:bc:46:67:41:cd:a6:62:44:21:f5:99:57:
26:f4:fc:9e:17:30:a8:12:04:28:e4:51:b2:8f:fc:0e:f1:7b:
2d:04:0f:b0:64:e3:64:41:c8:37:94:b2:ab:4c:f9:1e:91:3b:
8f:e6:7d:ce:f9:99:c9:7a:be:cc:4e:51:f3:d7:64:20:f3:1e:
d8:b1:23:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:51 2025 by rpki-client on console.sobornost.net