Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/ebdca6-2588-40a0-a19e-6d0cbd8bd492/1/Q49WFQb687C-dROudfCZNH5xgk0.roa
File: Q49WFQb687C-dROudfCZNH5xgk0.roa (raw, json)
Hash identifier: 6gTPlVN38oZH6TKqFrihOGk/Y67bvVr39M4N4cXiKUY=
Subject key identifier: 43:8F:56:15:06:FA:F3:B0:BE:75:13:AE:75:F0:99:34:7E:71:82:4D
Certificate issuer: /CN=e4baad9f5f69bad910075f8e1d805eb41d0df7cb
Certificate serial: 0194221FF5B86DBB0F66FEF60E285325219E
Authority key identifier: E4:BA:AD:9F:5F:69:BA:D9:10:07:5F:8E:1D:80:5E:B4:1D:0D:F7:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Lqtn19putkQB1-OHYBetB0N98s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/ebdca6-2588-40a0-a19e-6d0cbd8bd492/1/Q49WFQb687C-dROudfCZNH5xgk0.roa
Signing time: Wed 01 Jan 2025 13:48:27 +0000
ROA not before: Wed 01 Jan 2025 13:48:27 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35224
IP address blocks: 45.93.72.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:f5:b8:6d:bb:0f:66:fe:f6:0e:28:53:25:21:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4baad9f5f69bad910075f8e1d805eb41d0df7cb
Validity
Not Before: Jan 1 13:48:27 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=438f561506faf3b0be7513ae75f099347e71824d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:72:ff:fe:0c:c7:3f:d6:fa:a9:e7:55:e0:df:
28:0f:d1:15:d9:00:86:03:2a:d9:2e:67:97:1e:05:
5a:05:c1:75:4e:f8:61:5a:24:d3:75:0a:42:01:de:
b6:7c:7f:7f:2b:90:a4:0c:98:bb:0e:0c:75:2b:8c:
95:47:bf:7a:32:d0:ed:41:7e:01:ef:ef:aa:0f:76:
04:d6:d6:d9:35:13:bd:83:27:12:ba:0d:ea:22:83:
78:c6:f4:11:e3:d8:2d:1d:88:06:e6:3e:af:de:19:
b8:02:56:f0:d2:43:46:64:89:a4:e2:d6:48:47:e0:
f6:c0:95:f0:47:28:4c:79:71:8e:f4:e3:5e:64:5d:
ef:5a:c3:6e:3d:c2:88:aa:43:6e:97:9b:ee:ed:19:
34:78:74:13:e0:38:77:74:be:8e:59:e3:d8:e2:99:
39:c5:c7:c9:09:07:db:5f:49:bc:6b:60:ee:23:79:
26:c7:f5:87:bf:69:e3:35:1d:40:f7:74:29:eb:63:
cb:56:65:4c:e6:c6:49:0b:10:c8:c5:ee:a9:85:b7:
fa:12:89:f5:e7:e7:00:6c:42:f9:18:d1:1a:d6:23:
ed:d6:26:c3:95:5d:66:0d:7b:1e:39:88:c3:45:98:
c9:25:1f:b9:89:38:df:e7:3e:b5:6d:2a:42:cf:66:
ff:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:8F:56:15:06:FA:F3:B0:BE:75:13:AE:75:F0:99:34:7E:71:82:4D
X509v3 Authority Key Identifier:
keyid:E4:BA:AD:9F:5F:69:BA:D9:10:07:5F:8E:1D:80:5E:B4:1D:0D:F7:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Lqtn19putkQB1-OHYBetB0N98s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/ebdca6-2588-40a0-a19e-6d0cbd8bd492/1/Q49WFQb687C-dROudfCZNH5xgk0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/ebdca6-2588-40a0-a19e-6d0cbd8bd492/1/5Lqtn19putkQB1-OHYBetB0N98s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.72.0/22
Signature Algorithm: sha256WithRSAEncryption
84:2c:1b:8d:12:20:e2:f9:30:06:e8:2f:df:b2:b1:63:0c:0e:
a9:32:a1:77:13:86:5a:2e:ea:31:17:ab:4b:61:30:e8:9e:44:
a6:22:97:23:9f:21:12:46:59:3f:cc:69:cd:ee:87:cf:36:c8:
b2:c0:94:1b:9a:58:70:df:fc:3d:6b:4b:23:4d:56:3c:84:9f:
90:10:37:72:7a:f4:e6:10:10:58:73:0a:a4:96:24:8d:4f:69:
3b:d3:0a:d8:84:07:c3:b3:a8:81:36:1a:12:d7:aa:e2:ee:95:
f5:bf:35:71:73:e1:39:08:44:23:f9:87:29:b9:90:36:d5:b8:
99:b0:03:a4:c5:cd:90:e0:01:ea:3d:0e:df:5f:d8:76:bc:5b:
94:fa:5e:33:1c:47:81:e8:4b:ed:2e:07:3d:70:64:dc:b4:75:
d6:31:17:5b:30:1b:4f:2f:a3:7f:c8:6f:ea:e8:f7:f5:f6:84:
2c:3c:de:a2:5d:ca:9a:82:31:99:90:ce:54:ba:dd:69:2c:8f:
fd:e2:6a:4c:8b:71:cf:b4:a3:91:e7:cf:59:3a:29:45:7b:ef:
79:d7:63:10:50:48:c6:ef:89:d6:b7:e5:a1:95:43:8b:87:12:
4b:3c:9a:a0:16:7a:49:50:cc:75:04:cd:af:63:ff:55:79:9d:
05:ee:41:48
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQiH/W4bbsPZv72DihTJSGeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0YmFhZDlmNWY2OWJhZDkxMDA3NWY4ZTFkODA1ZWI0MWQw
ZGY3Y2IwHhcNMjUwMTAxMTM0ODI3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MzhmNTYxNTA2ZmFmM2IwYmU3NTEzYWU3NWYwOTkzNDdlNzE4MjRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAznL//gzHP9b6qedV4N8oD9EV2QCG
AyrZLmeXHgVaBcF1TvhhWiTTdQpCAd62fH9/K5CkDJi7Dgx1K4yVR796MtDtQX4B
7++qD3YE1tbZNRO9gycSug3qIoN4xvQR49gtHYgG5j6v3hm4Albw0kNGZImk4tZI
R+D2wJXwRyhMeXGO9ONeZF3vWsNuPcKIqkNul5vu7Rk0eHQT4Dh3dL6OWePY4pk5
xcfJCQfbX0m8a2DuI3kmx/WHv2njNR1A93Qp62PLVmVM5sZJCxDIxe6phbf6Eon1
5+cAbEL5GNEa1iPt1ibDlV1mDXseOYjDRZjJJR+5iTjf5z61bSpCz2b/+QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEOPVhUG+vOwvnUTrnXwmTR+cYJNMB8GA1UdIwQY
MBaAFOS6rZ9fabrZEAdfjh2AXrQdDffLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNUxxdG4xOXB1dGtRQjEtT0hZQmV0QjBOOThzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi9lYmRjYTYtMjU4OC00MGEwLWExOWUt
NmQwY2JkOGJkNDkyLzEvUTQ5V0ZRYjY4N0MtZFJPdWRmQ1pOSDV4Z2swLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi9lYmRjYTYtMjU4OC00MGEwLWExOWUtNmQwY2JkOGJkNDky
LzEvNUxxdG4xOXB1dGtRQjEtT0hZQmV0QjBOOThzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLV1IMA0G
CSqGSIb3DQEBCwUAA4IBAQCELBuNEiDi+TAG6C/fsrFjDA6pMqF3E4ZaLuoxF6tL
YTDonkSmIpcjnyESRlk/zGnN7ofPNsiywJQbmlhw3/w9a0sjTVY8hJ+QEDdyevTm
EBBYcwqkliSNT2k70wrYhAfDs6iBNhoS16ri7pX1vzVxc+E5CEQj+YcpuZA21biZ
sAOkxc2Q4AHqPQ7fX9h2vFuU+l4zHEeB6EvtLgc9cGTctHXWMRdbMBtPL6N/yG/q
6Pf19oQsPN6iXcqagjGZkM5Uut1pLI/94mpMi3HPtKOR589ZOilFe+9512MQUEjG
74nWt+WhlUOLhxJLPJqgFnpJUMx1BM2vY/9VeZ0F7kFI
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:34 2025 by rpki-client on console.sobornost.net