Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/2694f8-fa1f-4c81-8312-3b6f1bdf412a/1/Qm0v2QB0N6w8qGQL8ta92rDkpA0.roa
File: Qm0v2QB0N6w8qGQL8ta92rDkpA0.roa (raw, json)
Hash identifier: aEK3PYUQq1E1pzkJ/CLkmP6YwUe047cyT3qoeHQ2dn8=
Subject key identifier: 42:6D:2F:D9:00:74:37:AC:3C:A8:64:0B:F2:D6:BD:DA:B0:E4:A4:0D
Certificate issuer: /CN=afa929be73491acd99d590372a52b815fa1f23f5
Certificate serial: 019420D6399103032BA521C139CE778504C5
Authority key identifier: AF:A9:29:BE:73:49:1A:CD:99:D5:90:37:2A:52:B8:15:FA:1F:23:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r6kpvnNJGs2Z1ZA3KlK4FfofI_U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/2694f8-fa1f-4c81-8312-3b6f1bdf412a/1/Qm0v2QB0N6w8qGQL8ta92rDkpA0.roa
Signing time: Wed 01 Jan 2025 07:48:17 +0000
ROA not before: Wed 01 Jan 2025 07:48:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57774
IP address blocks: 176.107.192.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d6:39:91:03:03:2b:a5:21:c1:39:ce:77:85:04:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afa929be73491acd99d590372a52b815fa1f23f5
Validity
Not Before: Jan 1 07:48:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=426d2fd9007437ac3ca8640bf2d6bddab0e4a40d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:57:50:25:f1:d4:b8:a6:08:a9:d3:72:f9:94:
98:ff:d8:7f:90:14:cf:a2:db:10:7e:1b:39:2b:91:
b0:19:f4:20:dc:0b:06:d8:1c:7f:6f:d2:89:00:6c:
02:49:c6:01:1f:41:6f:a6:53:54:73:ba:8f:50:d0:
9f:ff:66:42:bc:d7:20:8a:ed:ae:be:b8:a2:69:00:
bc:af:f8:c1:66:2b:79:bd:1b:68:c0:f3:a7:41:d5:
b8:b0:2e:59:ff:d6:c5:7b:4d:23:40:38:5d:91:7f:
2e:c5:d2:44:03:7d:ac:97:bb:19:5f:25:5c:35:7a:
73:03:c2:2b:4b:4b:e0:78:80:fd:48:80:98:34:89:
fa:e6:c8:99:5d:7b:7d:1b:1a:9c:8f:f1:df:25:82:
59:ac:f8:19:66:40:ef:48:e9:35:18:f0:66:d2:f6:
4a:c9:1c:10:8b:c2:83:9e:b6:1a:bc:05:b5:e0:96:
4a:71:c5:ce:f9:1f:34:e8:5d:94:94:af:54:49:7f:
ec:ae:23:1e:8a:84:84:e5:5b:fc:df:9e:b8:b1:ee:
12:3c:80:b0:37:0b:10:e8:91:0c:38:ec:38:a0:b9:
b8:5b:3a:53:05:db:ee:9c:76:37:da:a5:69:6f:4a:
ea:c1:0d:99:a5:86:02:e6:1b:79:6b:39:03:e3:3f:
e8:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:6D:2F:D9:00:74:37:AC:3C:A8:64:0B:F2:D6:BD:DA:B0:E4:A4:0D
X509v3 Authority Key Identifier:
keyid:AF:A9:29:BE:73:49:1A:CD:99:D5:90:37:2A:52:B8:15:FA:1F:23:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r6kpvnNJGs2Z1ZA3KlK4FfofI_U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/2694f8-fa1f-4c81-8312-3b6f1bdf412a/1/Qm0v2QB0N6w8qGQL8ta92rDkpA0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/2694f8-fa1f-4c81-8312-3b6f1bdf412a/1/r6kpvnNJGs2Z1ZA3KlK4FfofI_U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.107.192.0/21
Signature Algorithm: sha256WithRSAEncryption
99:36:fb:02:dc:1b:2a:16:e9:b6:f8:e2:9a:f7:d4:1e:02:c3:
bb:8e:85:8c:53:9c:4b:7b:09:aa:b7:8c:49:e2:ac:6b:8d:f3:
7a:de:50:c1:5d:62:bd:31:f1:a3:a4:f1:7c:dc:96:d4:9c:44:
a9:3e:91:c6:78:a2:90:d6:ef:94:05:9f:b4:b7:04:36:99:12:
2c:b7:5b:1e:b8:79:3c:cd:cb:52:a2:86:9d:27:b1:db:2f:56:
09:d9:3a:90:2f:89:35:96:b5:2c:55:aa:36:a8:b6:3e:b7:e9:
ef:85:1b:39:15:f1:55:6a:c8:56:0f:f6:90:e8:d3:f9:1a:0c:
cf:fd:72:5b:08:e2:40:5b:8a:f8:1e:eb:07:0c:93:7a:87:b7:
f1:d1:c9:c0:c1:2b:b4:1c:7d:ba:31:92:db:56:83:24:cd:be:
56:00:2b:8a:d4:1a:be:07:f8:f9:fb:84:29:9f:26:9e:a7:62:
40:81:f7:73:73:ff:42:b2:e7:8b:f0:61:fe:0a:73:69:09:9c:
ba:9b:5a:b0:a2:5d:df:b8:ae:92:6c:eb:e7:1d:92:74:90:cc:
20:70:30:3b:75:a4:f3:f1:0d:3d:4c:dd:76:cb:34:e9:fc:77:
09:c4:c1:d0:b0:e0:e8:f6:06:60:89:ef:f9:d4:2f:69:db:02:
07:aa:79:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:27 2025 by rpki-client on console.sobornost.net