Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/59fc26-f8dd-4f5e-bca2-225d8adfe8bb/1/qBfFLLbMjDiXpHlclpBQm55p-Q8.roa
File: qBfFLLbMjDiXpHlclpBQm55p-Q8.roa (raw, json)
Hash identifier: X7f4s7PxbdY1OwsEitEQVcC4bC8kVzy8m2zO1xjTkLU=
Subject key identifier: A8:17:C5:2C:B6:CC:8C:38:97:A4:79:5C:96:90:50:9B:9E:69:F9:0F
Certificate issuer: /CN=d50051613d3cc6b3eb81d5bb400ae0d4e2412c80
Certificate serial: 019427478D8A40D359E893F85FDE7C13394A
Authority key identifier: D5:00:51:61:3D:3C:C6:B3:EB:81:D5:BB:40:0A:E0:D4:E2:41:2C:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QBRYT08xrPrgdW7QArg1OJBLIA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/59fc26-f8dd-4f5e-bca2-225d8adfe8bb/1/qBfFLLbMjDiXpHlclpBQm55p-Q8.roa
Signing time: Thu 02 Jan 2025 13:49:48 +0000
ROA not before: Thu 02 Jan 2025 13:49:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48026
IP address blocks: 193.42.150.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:8d:8a:40:d3:59:e8:93:f8:5f:de:7c:13:39:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d50051613d3cc6b3eb81d5bb400ae0d4e2412c80
Validity
Not Before: Jan 2 13:49:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a817c52cb6cc8c3897a4795c9690509b9e69f90f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:db:cc:c0:ef:f8:d7:12:e0:4f:02:6d:15:d9:
6c:0b:3a:24:0a:66:82:80:1b:6c:d8:67:18:21:83:
3a:8e:33:fc:92:59:89:92:90:21:d9:ff:0e:a9:7f:
3f:30:89:fb:ca:23:5a:ad:20:67:6e:0a:a4:d0:84:
9d:b7:10:c7:38:7f:e2:21:59:72:ba:69:26:15:58:
2e:63:b8:12:00:53:69:17:ca:2c:0c:9b:df:66:39:
14:6d:c7:5a:7f:44:21:f6:b1:61:28:60:a6:14:80:
3a:0c:04:53:95:64:40:f6:b1:3e:63:77:19:f7:09:
bc:b9:1e:c0:22:c3:78:4a:bd:09:54:fd:e1:99:5b:
c5:76:2e:b1:f2:a0:41:2b:24:24:be:cc:3c:af:d2:
91:43:05:f6:9e:16:4d:02:8c:c3:16:23:7d:2a:8f:
a3:ea:a9:e6:b5:ac:d5:6f:91:ca:1f:7e:dc:ec:92:
dd:9d:2a:8a:0d:ad:d1:fd:50:d3:e7:b6:f9:81:94:
c9:b9:c9:6b:65:0a:40:e9:8c:16:f5:26:bc:20:e8:
e0:04:ee:29:77:e0:bc:9d:a1:5d:21:a2:bf:f9:2c:
a5:54:df:f0:42:9a:9f:b6:54:b4:31:01:dc:62:98:
7e:19:0b:0b:ae:c1:73:e9:1a:01:a2:96:6d:95:48:
87:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:17:C5:2C:B6:CC:8C:38:97:A4:79:5C:96:90:50:9B:9E:69:F9:0F
X509v3 Authority Key Identifier:
keyid:D5:00:51:61:3D:3C:C6:B3:EB:81:D5:BB:40:0A:E0:D4:E2:41:2C:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QBRYT08xrPrgdW7QArg1OJBLIA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/59fc26-f8dd-4f5e-bca2-225d8adfe8bb/1/qBfFLLbMjDiXpHlclpBQm55p-Q8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/59fc26-f8dd-4f5e-bca2-225d8adfe8bb/1/1QBRYT08xrPrgdW7QArg1OJBLIA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.42.150.0/24
Signature Algorithm: sha256WithRSAEncryption
55:90:f8:72:b1:1e:7a:33:2c:99:a8:97:f8:56:12:2a:c1:44:
b3:83:cd:6b:26:55:3d:f3:e4:1a:aa:ee:13:95:04:62:2f:89:
0d:0f:8e:6f:a1:9a:da:5a:11:9f:72:26:20:d0:15:30:e3:cd:
3a:4c:ad:50:cc:15:69:1c:da:f3:06:83:fb:5b:c3:ff:07:d7:
6a:ae:3b:93:04:20:45:10:6f:4d:c6:e6:d4:04:66:89:d1:e7:
5f:98:75:1e:6d:69:9d:e5:f0:72:6d:91:ba:8d:1d:27:23:53:
35:6d:48:dd:3e:1b:ca:64:a4:78:58:5d:07:e3:f1:3a:2b:e4:
12:3a:33:ed:cd:51:9a:08:b2:8d:42:d1:cc:94:ad:88:1a:e5:
e2:29:86:05:20:d8:2a:84:4c:b6:1a:c3:77:25:af:3b:e3:e0:
63:4e:dd:94:8f:15:73:61:fe:53:5a:70:27:a8:a8:76:8f:32:
43:c3:4a:4b:25:2e:72:75:57:f9:aa:89:fc:15:6d:a4:2a:6b:
b7:67:6a:ca:7e:f1:34:7d:68:33:3a:f6:aa:99:97:c1:ad:ad:
b2:2d:9c:09:0d:a9:cb:af:c0:d0:6e:42:c7:e6:2c:8d:af:c7:
29:23:cf:b0:c0:c2:25:f7:9d:fa:50:d6:38:79:da:ba:69:f7:
9c:cc:b1:97
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQnR42KQNNZ6JP4X958EzlKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1MDA1MTYxM2QzY2M2YjNlYjgxZDViYjQwMGFlMGQ0ZTI0
MTJjODAwHhcNMjUwMTAyMTM0OTQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhODE3YzUyY2I2Y2M4YzM4OTdhNDc5NWM5NjkwNTA5YjllNjlmOTBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0tvMwO/41xLgTwJtFdlsCzokCmaC
gBts2GcYIYM6jjP8klmJkpAh2f8OqX8/MIn7yiNarSBnbgqk0ISdtxDHOH/iIVly
umkmFVguY7gSAFNpF8osDJvfZjkUbcdaf0Qh9rFhKGCmFIA6DARTlWRA9rE+Y3cZ
9wm8uR7AIsN4Sr0JVP3hmVvFdi6x8qBBKyQkvsw8r9KRQwX2nhZNAozDFiN9Ko+j
6qnmtazVb5HKH37c7JLdnSqKDa3R/VDT57b5gZTJuclrZQpA6YwW9Sa8IOjgBO4p
d+C8naFdIaK/+SylVN/wQpqftlS0MQHcYph+GQsLrsFz6RoBopZtlUiHnwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKgXxSy2zIw4l6R5XJaQUJueafkPMB8GA1UdIwQY
MBaAFNUAUWE9PMaz64HVu0AK4NTiQSyAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVFCUllUMDh4clByZ2RXN1FBcmcxT0pCTElBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC81OWZjMjYtZjhkZC00ZjVlLWJjYTIt
MjI1ZDhhZGZlOGJiLzEvcUJmRkxMYk1qRGlYcEhsY2xwQlFtNTVwLVE4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC81OWZjMjYtZjhkZC00ZjVlLWJjYTItMjI1ZDhhZGZlOGJi
LzEvMVFCUllUMDh4clByZ2RXN1FBcmcxT0pCTElBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwSqWMA0G
CSqGSIb3DQEBCwUAA4IBAQBVkPhysR56MyyZqJf4VhIqwUSzg81rJlU98+Qaqu4T
lQRiL4kND45voZraWhGfciYg0BUw4806TK1QzBVpHNrzBoP7W8P/B9dqrjuTBCBF
EG9NxubUBGaJ0edfmHUebWmd5fBybZG6jR0nI1M1bUjdPhvKZKR4WF0H4/E6K+QS
OjPtzVGaCLKNQtHMlK2IGuXiKYYFINgqhEy2GsN3Ja874+BjTt2UjxVzYf5TWnAn
qKh2jzJDw0pLJS5ydVf5qon8FW2kKmu3Z2rKfvE0fWgzOvaqmZfBra2yLZwJDanL
r8DQbkLH5iyNr8cpI8+wwMIl9536UNY4edq6afeczLGX
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:18 2025 by rpki-client on console.sobornost.net