Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/QfK8Q1wRZf_q9H15fVVQNKvF0LQ.roa
File: QfK8Q1wRZf_q9H15fVVQNKvF0LQ.roa (raw, json)
Hash identifier: LUCbYY2413PazdPOS5F82YiM4c97oUjdJKbRUiIGaGI=
Subject key identifier: 41:F2:BC:43:5C:11:65:FF:EA:F4:7D:79:7D:55:50:34:AB:C5:D0:B4
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 01942369CCFFC88614637389BB57163B2522
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/QfK8Q1wRZf_q9H15fVVQNKvF0LQ.roa
Signing time: Wed 01 Jan 2025 19:48:43 +0000
ROA not before: Wed 01 Jan 2025 19:48:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 216156
IP address blocks: 170.62.176.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:cc:ff:c8:86:14:63:73:89:bb:57:16:3b:25:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: Jan 1 19:48:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=41f2bc435c1165ffeaf47d797d555034abc5d0b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:34:94:28:cb:bd:c4:36:a6:77:70:c0:0d:cf:
86:b2:c2:ec:51:3e:f7:1e:f5:f5:19:5b:6c:92:e7:
ce:b6:30:17:b6:4b:8e:2b:ce:70:88:65:c1:f4:0b:
c9:19:d3:62:a4:87:b8:cf:c7:67:2d:27:c8:2b:c4:
ae:05:82:54:38:04:cf:f7:22:12:1c:23:a5:09:61:
bc:91:83:86:10:36:8d:0b:45:52:b6:62:bb:3b:a4:
00:84:44:ac:f1:c5:c3:bf:45:60:cb:f2:04:58:5c:
fa:cd:be:74:59:1c:a6:84:8c:dd:9e:cc:d3:2b:91:
ca:8b:1e:82:68:16:ad:db:00:97:45:d3:3f:2e:52:
31:28:64:fe:3c:f7:f7:d7:32:c5:40:9d:9f:82:0f:
54:45:99:8a:77:aa:00:06:61:24:9f:46:f4:67:6c:
24:6a:3a:08:9b:e3:b5:ce:ca:ba:df:bb:23:65:81:
66:0d:3b:2b:69:d7:66:87:8f:f2:32:64:68:2a:3b:
86:44:e5:b3:c8:b6:16:bb:b0:97:94:0c:79:28:e8:
ce:3d:47:27:b6:7c:91:2b:ea:9a:29:46:6a:44:24:
06:b4:cc:6c:ad:72:93:f7:bf:30:8a:8d:72:33:bc:
6e:47:93:66:ce:4c:68:e3:f4:9f:1c:49:bc:35:aa:
71:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:F2:BC:43:5C:11:65:FF:EA:F4:7D:79:7D:55:50:34:AB:C5:D0:B4
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/QfK8Q1wRZf_q9H15fVVQNKvF0LQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.62.176.0/21
Signature Algorithm: sha256WithRSAEncryption
4c:0e:79:e8:7b:9d:17:8b:8a:2e:b5:01:76:a2:ca:da:e1:3d:
21:b5:14:70:6f:0e:67:d1:c3:7f:40:ec:02:62:ec:a3:58:d3:
1f:5f:1f:80:ee:38:52:35:13:6a:7b:3a:02:4d:55:db:83:72:
cd:f1:e9:cd:c0:35:d3:58:53:84:f1:dd:2a:9f:df:e7:95:70:
a7:d8:4b:25:0c:61:05:6a:40:78:53:34:48:4a:e9:0b:d8:f2:
cd:26:6b:34:3a:1e:ed:8b:50:2a:6a:98:bf:55:f2:26:3c:19:
fb:2b:b4:0d:e3:3b:ac:75:ae:39:88:ba:4a:96:8c:20:64:da:
3d:23:8f:97:c6:f9:a2:f1:d8:e4:3d:7f:50:9c:69:56:6f:e5:
50:5b:27:8f:f0:b2:f7:20:bc:3a:54:f8:33:c9:8f:14:67:d3:
1b:e3:98:c4:2a:5e:f6:b9:ee:c5:7a:d8:38:7a:db:5f:8c:74:
6e:0a:05:76:5e:a7:a5:39:62:53:87:71:63:a9:4a:af:d8:0b:
07:5c:e1:64:35:3b:d5:f6:c3:0a:7f:85:89:0f:93:9b:a9:eb:
a1:e1:1c:b8:ee:73:86:60:b3:bd:e0:62:d5:67:8c:80:de:3e:
cc:31:69:ea:9f:59:d8:eb:b6:f7:ab:22:cd:a2:b6:0f:5e:a5:
e3:90:af:bc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQjacz/yIYUY3OJu1cWOyUiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwNGE1ODA0N2YzN2JiYzA1Nzk0NGJiZjhjYWQ4NzQyODc5
NTkyZGEwHhcNMjUwMTAxMTk0ODQzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MWYyYmM0MzVjMTE2NWZmZWFmNDdkNzk3ZDU1NTAzNGFiYzVkMGI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtzSUKMu9xDamd3DADc+GssLsUT73
HvX1GVtskufOtjAXtkuOK85wiGXB9AvJGdNipIe4z8dnLSfIK8SuBYJUOATP9yIS
HCOlCWG8kYOGEDaNC0VStmK7O6QAhESs8cXDv0Vgy/IEWFz6zb50WRymhIzdnszT
K5HKix6CaBat2wCXRdM/LlIxKGT+PPf31zLFQJ2fgg9URZmKd6oABmEkn0b0Z2wk
ajoIm+O1zsq637sjZYFmDTsraddmh4/yMmRoKjuGROWzyLYWu7CXlAx5KOjOPUcn
tnyRK+qaKUZqRCQGtMxsrXKT978wio1yM7xuR5Nmzkxo4/SfHEm8NapxlwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEHyvENcEWX/6vR9eX1VUDSrxdC0MB8GA1UdIwQY
MBaAFPBKWAR/N7vAV5RLv4yth0KHlZLaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYt
ZjVmYjcxYjlhNTFmLzEvUWZLOFExd1JaZl9xOUgxNWZWVlFOS3ZGMExRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYtZjVmYjcxYjlhNTFm
LzEvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDqj6wMA0G
CSqGSIb3DQEBCwUAA4IBAQBMDnnoe50Xi4outQF2osra4T0htRRwbw5n0cN/QOwC
YuyjWNMfXx+A7jhSNRNqezoCTVXbg3LN8enNwDXTWFOE8d0qn9/nlXCn2EslDGEF
akB4UzRISukL2PLNJms0Oh7ti1Aqapi/VfImPBn7K7QN4zusda45iLpKlowgZNo9
I4+Xxvmi8djkPX9QnGlWb+VQWyeP8LL3ILw6VPgzyY8UZ9Mb45jEKl72ue7Fetg4
ettfjHRuCgV2XqelOWJTh3FjqUqv2AsHXOFkNTvV9sMKf4WJD5Obqeuh4Ry47nOG
YLO94GLVZ4yA3j7MMWnqn1nY67b3qyLNorYPXqXjkK+8
-----END CERTIFICATE-----
Generated at Thu Jan 23 19:13:27 2025 by rpki-client on console.sobornost.net