Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/QVKhcbETyhqyNOsT4yRBGbfy7YI.roa
File: QVKhcbETyhqyNOsT4yRBGbfy7YI.roa (raw, json)
Hash identifier: Bjn1YWB0HzUaCjFh0RWD4+cMX0yt73NEPPps3Z7UDkY=
Subject key identifier: 41:52:A1:71:B1:13:CA:1A:B2:34:EB:13:E3:24:41:19:B7:F2:ED:82
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01960A57852297B94147C04594DC86764854
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/QVKhcbETyhqyNOsT4yRBGbfy7YI.roa
Signing time: Sun 06 Apr 2025 09:03:49 +0000
ROA not before: Sun 06 Apr 2025 09:03:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58061
IP address blocks: 45.88.14.0/24 maxlen: 24
45.88.15.0/24 maxlen: 24
62.192.152.0/24 maxlen: 24
77.81.182.0/24 maxlen: 24
79.110.227.0/24 maxlen: 24
85.204.18.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
89.35.129.0/24 maxlen: 24
89.37.192.0/24 maxlen: 24
89.40.36.0/24 maxlen: 24
89.40.215.0/24 maxlen: 24
89.45.35.0/24 maxlen: 24
89.47.36.0/24 maxlen: 24
93.115.107.0/24 maxlen: 24
93.118.36.0/24 maxlen: 24
93.119.154.0/24 maxlen: 24
94.198.171.0/24 maxlen: 24
128.0.41.0/24 maxlen: 24
176.223.188.0/24 maxlen: 24
185.198.233.0/24 maxlen: 24
188.215.31.0/24 maxlen: 24
188.241.221.0/24 maxlen: 24
193.178.134.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:0a:57:85:22:97:b9:41:47:c0:45:94:dc:86:76:48:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Apr 6 09:03:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4152a171b113ca1ab234eb13e3244119b7f2ed82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:0e:93:0c:7e:7e:2b:7d:46:50:b0:34:ed:e4:
69:cf:62:43:b8:06:05:20:d7:51:be:dd:c3:71:91:
39:14:d8:fd:58:b1:0a:42:05:9f:7c:d2:6a:48:1c:
6f:d4:20:86:65:17:7a:38:6f:b8:c6:0c:62:32:f8:
53:1a:8f:43:46:33:e2:34:e3:55:b7:e9:19:27:ec:
b3:98:8d:cb:f1:79:a0:ea:3b:83:32:87:1d:e9:6b:
67:3a:e1:9a:a3:13:d0:98:87:32:8e:83:75:d8:c8:
fb:7e:09:5c:fd:7c:01:3d:ca:a3:26:1f:08:bc:45:
42:d2:1e:a8:7a:61:80:09:44:04:ce:f6:ba:1b:85:
cf:9d:da:95:c6:4c:e6:cb:59:9c:a3:40:8c:c1:96:
49:4f:42:61:eb:06:f5:11:2f:6b:34:8b:4f:9c:d4:
3e:6c:12:b2:ee:0b:de:a8:2e:b5:0a:13:66:7c:57:
d1:1d:79:ab:31:a8:4e:1f:8c:76:d0:5e:00:b4:5b:
a8:79:16:ff:9f:1c:ca:64:0a:26:cf:39:79:38:ee:
01:4b:6a:cf:67:9e:36:8c:35:ac:14:6c:f6:7f:36:
51:d4:b8:79:cd:f2:bc:d4:53:1d:c9:2a:ba:60:89:
bd:9c:8f:a8:c9:c8:26:af:78:63:fd:8a:39:ff:d2:
87:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:52:A1:71:B1:13:CA:1A:B2:34:EB:13:E3:24:41:19:B7:F2:ED:82
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/QVKhcbETyhqyNOsT4yRBGbfy7YI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.14.0/23
62.192.152.0/24
77.81.182.0/24
79.110.227.0/24
85.204.18.0/24
89.34.106.0/24
89.35.129.0/24
89.37.192.0/24
89.40.36.0/24
89.40.215.0/24
89.45.35.0/24
89.47.36.0/24
93.115.107.0/24
93.118.36.0/24
93.119.154.0/24
94.198.171.0/24
128.0.41.0/24
176.223.188.0/24
185.198.233.0/24
188.215.31.0/24
188.241.221.0/24
193.178.134.0/24
Signature Algorithm: sha256WithRSAEncryption
54:99:a7:9c:40:d4:18:b0:f0:1b:cb:cd:29:33:d1:24:60:53:
6c:8f:70:67:38:b4:7b:be:1b:2e:91:f5:1b:81:d3:ea:5d:7d:
4d:30:da:a7:89:1c:50:07:f5:b1:f8:cb:de:ba:e8:df:b2:63:
4b:6f:0c:83:8c:ea:2e:02:11:cf:2c:84:a7:0f:f7:39:04:da:
a1:19:77:e3:5d:b4:4b:12:e6:05:fb:dd:0b:67:6f:2e:48:cb:
1f:c7:dc:63:fd:12:1b:1e:25:de:ea:8b:4a:96:d5:79:82:77:
a0:f7:c2:da:ff:72:90:67:08:4a:ff:ba:4f:f7:b0:29:55:a0:
22:e5:77:33:78:88:1f:bc:e8:f5:74:2d:64:e9:b2:50:5e:dd:
73:ec:fc:87:f3:b9:5c:16:c9:ab:67:99:90:36:8b:75:31:85:
f5:20:88:77:6d:e0:9f:2a:c7:d8:43:87:3f:8c:bb:9a:da:85:
ad:40:6d:fd:13:d0:1d:bf:64:3c:c9:8a:06:a0:a1:dd:b0:4c:
e2:34:6e:be:4b:bb:d5:91:7d:2f:7b:9a:81:4c:50:9f:c3:38:
dd:d5:15:32:e7:f9:e1:ba:08:9f:77:16:3a:c2:d9:89:aa:7d:
6e:8d:3c:31:48:9a:50:29:5e:18:ca:ff:2f:46:dc:99:95:06:
27:44:3a:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:42 2025 by rpki-client on console.sobornost.net