Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/Qr40zgLsqXs09YURmny77wACH1k.roa
File: Qr40zgLsqXs09YURmny77wACH1k.roa (raw, json)
Hash identifier: tzDQXPZJIDwEIXyje3sNQfogj5x1yuqcIZu78tEYynQ=
Subject key identifier: 42:BE:34:CE:02:EC:A9:7B:34:F5:85:11:9A:7C:BB:EF:00:02:1F:59
Certificate issuer: /CN=17067977efd14bc89fb0daba03bb0f600fbb0184
Certificate serial: 019624FD42D16020244EE1DEE5173DDA1DE5
Authority key identifier: 17:06:79:77:EF:D1:4B:C8:9F:B0:DA:BA:03:BB:0F:60:0F:BB:01:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FwZ5d-_RS8ifsNq6A7sPYA-7AYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/Qr40zgLsqXs09YURmny77wACH1k.roa
Signing time: Fri 11 Apr 2025 13:14:59 +0000
ROA not before: Fri 11 Apr 2025 13:14:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 86.110.34.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:24:fd:42:d1:60:20:24:4e:e1:de:e5:17:3d:da:1d:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17067977efd14bc89fb0daba03bb0f600fbb0184
Validity
Not Before: Apr 11 13:14:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=42be34ce02eca97b34f585119a7cbbef00021f59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:72:fb:3b:ac:20:fc:b0:dd:7f:f5:2a:af:9e:
83:eb:c3:13:75:5e:63:7a:12:fa:b5:56:41:a1:f1:
36:d3:5d:af:61:e7:2f:e2:e9:0e:a5:6b:40:23:27:
f7:d3:6d:17:56:58:5b:1d:0f:11:83:e0:5b:61:78:
c4:1b:b0:2f:75:0f:e8:99:08:7e:bd:16:1c:ac:13:
7c:99:dc:1f:95:fc:12:a7:34:cd:2a:67:54:fb:c8:
3d:36:05:4d:99:be:4a:87:07:54:19:53:02:a0:65:
a5:77:4b:f3:b2:44:a5:c7:bd:4f:35:fc:52:c8:cb:
b1:cf:ee:ae:5a:e6:73:27:4d:5a:12:6c:18:49:c9:
1b:ad:5e:f4:46:d8:00:46:aa:e8:ea:af:4b:27:91:
72:6d:7f:64:96:cc:f4:ce:12:4e:89:b4:b2:6d:7f:
e7:fe:48:59:d3:81:50:8c:46:25:90:40:91:1a:02:
b3:e2:65:a6:4a:fb:fe:8c:19:84:c6:18:f0:52:a7:
01:15:ce:51:84:26:f2:6c:3a:5d:5f:3d:00:99:2e:
0b:30:eb:c9:0a:e0:71:1c:af:54:d0:e9:b0:08:a8:
01:97:e0:fd:57:c1:08:ca:e0:87:f8:4e:74:a3:c3:
87:02:e6:b8:7c:f9:c0:c7:1b:52:10:8d:67:4f:b5:
95:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:BE:34:CE:02:EC:A9:7B:34:F5:85:11:9A:7C:BB:EF:00:02:1F:59
X509v3 Authority Key Identifier:
keyid:17:06:79:77:EF:D1:4B:C8:9F:B0:DA:BA:03:BB:0F:60:0F:BB:01:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FwZ5d-_RS8ifsNq6A7sPYA-7AYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/Qr40zgLsqXs09YURmny77wACH1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/FwZ5d-_RS8ifsNq6A7sPYA-7AYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.110.34.0/24
Signature Algorithm: sha256WithRSAEncryption
24:2c:e1:73:d5:c0:2d:4a:a0:30:c8:bb:05:33:69:cd:57:58:
43:96:29:0d:c5:fa:d6:98:f8:4e:1c:2c:89:8b:cf:8d:d2:25:
91:db:30:c9:11:88:1b:d9:56:63:7e:aa:53:49:e0:82:0a:12:
df:6d:17:89:8a:03:f6:f6:6b:d0:5b:b4:93:69:be:07:94:57:
a4:35:55:b9:63:7f:99:77:74:73:83:63:9a:2f:bc:1f:6b:2a:
e7:48:4c:11:b9:2e:d1:45:5d:b1:16:40:a0:f5:23:d0:de:8e:
c5:89:47:96:52:1f:09:49:f6:f6:dc:28:f1:fe:f1:f6:9a:fd:
3c:a9:b7:20:32:8c:64:7f:ef:dc:8a:9c:48:91:ed:8f:b3:be:
02:c0:14:fe:80:60:b9:c6:8e:43:8d:61:50:92:1f:58:ba:d3:
83:2e:b0:5f:9f:ae:69:59:04:0e:bf:de:c1:50:6e:a0:dc:69:
11:3d:84:4c:4a:09:ad:35:08:36:0e:9d:2a:cf:0e:d2:78:fd:
8a:36:8e:9c:19:2c:36:6c:dd:f6:21:13:07:11:60:7d:d6:e9:
99:ea:66:69:09:0c:40:8a:06:e7:03:18:02:34:10:3b:4e:d9:
ce:20:af:32:d1:b7:04:99:3f:1c:b8:27:3f:61:b5:a1:fb:90:
0c:2d:9f:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:30 2025 by rpki-client on console.sobornost.net