Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b8c7ba-92fa-4b73-a924-3d33e5414d9b/1/QY8orDNDFtPRatFK02MXIdps050.roa
File: QY8orDNDFtPRatFK02MXIdps050.roa (raw, json)
Hash identifier: NiooW7R3ctbGvF0POc0TxPmXz9RBOYgCBww2xqBcPpU=
Subject key identifier: 41:8F:28:AC:33:43:16:D3:D1:6A:D1:4A:D3:63:17:21:DA:6C:D3:9D
Certificate issuer: /CN=415a412127b514f6455ec8a86e29d38eb0abb5ac
Certificate serial: 01941F8C8E23E95EBA28E8F5D64960839371
Authority key identifier: 41:5A:41:21:27:B5:14:F6:45:5E:C8:A8:6E:29:D3:8E:B0:AB:B5:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QVpBISe1FPZFXsiobinTjrCrtaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b8c7ba-92fa-4b73-a924-3d33e5414d9b/1/QY8orDNDFtPRatFK02MXIdps050.roa
Signing time: Wed 01 Jan 2025 01:48:12 +0000
ROA not before: Wed 01 Jan 2025 01:48:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47575
IP address blocks: 109.205.44.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:8e:23:e9:5e:ba:28:e8:f5:d6:49:60:83:93:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=415a412127b514f6455ec8a86e29d38eb0abb5ac
Validity
Not Before: Jan 1 01:48:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=418f28ac334316d3d16ad14ad3631721da6cd39d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:bc:dc:d0:c0:4b:bd:33:c4:21:a9:62:9c:c7:
f0:ff:c3:65:43:54:3a:81:7c:2d:cb:e8:66:dd:34:
07:32:c2:c4:b1:a3:64:43:d3:d5:68:84:5a:eb:00:
a9:04:69:5c:39:fd:61:54:ee:98:99:d1:12:48:a5:
e5:fa:e1:42:c4:99:5a:ee:00:59:f9:a3:2c:99:24:
6f:bb:6f:a8:3b:23:a4:66:32:f0:62:09:f7:1d:23:
df:2c:c2:c0:13:25:2a:14:9f:c8:7d:b9:53:1e:fe:
91:b3:46:e6:df:48:e6:2e:9a:e0:08:ff:d6:1c:42:
b3:72:b9:74:cf:e1:30:17:1b:6c:84:b0:a9:d7:f6:
87:ab:1f:57:2e:28:9a:81:55:49:5f:39:75:1a:1a:
c6:b6:8a:dd:29:58:62:ff:1e:1c:6c:57:20:60:14:
64:b3:7e:c7:ff:ad:dc:c9:c3:d6:29:67:8a:46:14:
1a:8d:fd:01:bf:09:4b:f4:b8:dd:33:51:68:6b:d2:
d0:53:d5:13:5b:a1:7e:46:ac:66:e2:a6:ce:1a:e8:
61:ad:de:f0:86:55:c9:b4:24:1f:47:05:1f:98:e5:
74:ac:7e:89:ab:3b:25:e1:56:c3:0d:42:75:a9:02:
38:a0:18:0b:cd:a0:91:2d:50:82:b6:ee:99:c1:9a:
da:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:8F:28:AC:33:43:16:D3:D1:6A:D1:4A:D3:63:17:21:DA:6C:D3:9D
X509v3 Authority Key Identifier:
keyid:41:5A:41:21:27:B5:14:F6:45:5E:C8:A8:6E:29:D3:8E:B0:AB:B5:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QVpBISe1FPZFXsiobinTjrCrtaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b8c7ba-92fa-4b73-a924-3d33e5414d9b/1/QY8orDNDFtPRatFK02MXIdps050.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b8c7ba-92fa-4b73-a924-3d33e5414d9b/1/QVpBISe1FPZFXsiobinTjrCrtaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.44.0/23
Signature Algorithm: sha256WithRSAEncryption
98:a2:8d:6c:27:7c:b1:de:f0:79:7e:45:07:5b:17:0e:6c:02:
f9:9c:9e:37:75:b9:c2:2f:20:4e:3a:b4:6a:0a:d9:2c:fd:9a:
e5:a2:25:cb:b1:7a:5c:ef:a0:f7:73:f9:6c:40:fc:78:d4:f3:
7d:83:ec:bf:07:74:75:cb:d5:00:1b:c9:80:51:53:50:11:bf:
27:06:bd:7d:ce:86:41:a1:87:7c:fa:46:0b:ce:59:c9:e3:48:
1f:2b:e0:d3:fc:61:17:a2:7b:a8:da:07:1f:27:f8:bf:b3:21:
67:43:06:02:e7:21:bd:1f:c6:76:bd:f1:08:69:55:7e:e6:54:
71:cd:26:3b:01:03:00:03:d0:18:78:c4:00:db:d1:4a:f5:fd:
90:4d:d6:34:4a:fa:dd:2b:31:f1:96:b2:73:8e:d6:43:5f:f6:
f7:50:ba:26:b2:5f:87:24:da:b0:a3:f3:a0:78:93:fe:5f:cd:
c3:a3:3d:cc:d7:bf:0f:d2:61:48:94:78:4d:51:c6:ea:74:3f:
c4:c0:f1:51:82:f7:c7:8d:ff:25:27:c2:c4:03:4f:3f:bd:af:
a0:a8:3c:52:57:d0:ea:a0:0e:ab:ae:a7:17:d0:4a:97:c7:b8:
ec:d6:62:02:48:0c:fe:03:36:bc:26:cb:a9:b0:6b:68:f3:87:
39:99:7e:b5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQfjI4j6V66KOj11klgg5NxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxNWE0MTIxMjdiNTE0ZjY0NTVlYzhhODZlMjlkMzhlYjBh
YmI1YWMwHhcNMjUwMTAxMDE0ODEyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MThmMjhhYzMzNDMxNmQzZDE2YWQxNGFkMzYzMTcyMWRhNmNkMzlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzLzc0MBLvTPEIalinMfw/8NlQ1Q6
gXwty+hm3TQHMsLEsaNkQ9PVaIRa6wCpBGlcOf1hVO6YmdESSKXl+uFCxJla7gBZ
+aMsmSRvu2+oOyOkZjLwYgn3HSPfLMLAEyUqFJ/IfblTHv6Rs0bm30jmLprgCP/W
HEKzcrl0z+EwFxtshLCp1/aHqx9XLiiagVVJXzl1GhrGtordKVhi/x4cbFcgYBRk
s37H/63cycPWKWeKRhQajf0BvwlL9LjdM1Foa9LQU9UTW6F+Rqxm4qbOGuhhrd7w
hlXJtCQfRwUfmOV0rH6Jqzsl4VbDDUJ1qQI4oBgLzaCRLVCCtu6ZwZraGwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEGPKKwzQxbT0WrRStNjFyHabNOdMB8GA1UdIwQY
MBaAFEFaQSEntRT2RV7IqG4p046wq7WsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUVZwQklTZTFGUFpGWHNpb2JpblRqckNydGF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS9iOGM3YmEtOTJmYS00YjczLWE5MjQt
M2QzM2U1NDE0ZDliLzEvUVk4b3JETkRGdFBSYXRGSzAyTVhJZHBzMDUwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS9iOGM3YmEtOTJmYS00YjczLWE5MjQtM2QzM2U1NDE0ZDli
LzEvUVZwQklTZTFGUFpGWHNpb2JpblRqckNydGF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBbc0sMA0G
CSqGSIb3DQEBCwUAA4IBAQCYoo1sJ3yx3vB5fkUHWxcObAL5nJ43dbnCLyBOOrRq
Ctks/ZrloiXLsXpc76D3c/lsQPx41PN9g+y/B3R1y9UAG8mAUVNQEb8nBr19zoZB
oYd8+kYLzlnJ40gfK+DT/GEXonuo2gcfJ/i/syFnQwYC5yG9H8Z2vfEIaVV+5lRx
zSY7AQMAA9AYeMQA29FK9f2QTdY0SvrdKzHxlrJzjtZDX/b3ULomsl+HJNqwo/Og
eJP+X83Doz3M178P0mFIlHhNUcbqdD/EwPFRgvfHjf8lJ8LEA08/va+gqDxSV9Dq
oA6rrqcX0EqXx7js1mICSAz+Aza8JsupsGto84c5mX61
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:51 2025 by rpki-client on console.sobornost.net