Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/c2bb4d-8483-47ce-bb0a-f5f490d2c163/1/qlMHdAg_ZeG5jpZEikZxyiq5rOM.roa
File: qlMHdAg_ZeG5jpZEikZxyiq5rOM.roa (raw, json)
Hash identifier: r9NbCVDLWns0v6U+hfflkmDI70L6VCrJW0Q5+div1jw=
Subject key identifier: AA:53:07:74:08:3F:65:E1:B9:8E:96:44:8A:46:71:CA:2A:B9:AC:E3
Certificate issuer: /CN=de6c6035042cc532516ebc1968f41bfff4b8537e
Certificate serial: 019421444C899C8A9A2B3B9EB55ABBC0543F
Authority key identifier: DE:6C:60:35:04:2C:C5:32:51:6E:BC:19:68:F4:1B:FF:F4:B8:53:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3mxgNQQsxTJRbrwZaPQb__S4U34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/c2bb4d-8483-47ce-bb0a-f5f490d2c163/1/qlMHdAg_ZeG5jpZEikZxyiq5rOM.roa
Signing time: Wed 01 Jan 2025 09:48:31 +0000
ROA not before: Wed 01 Jan 2025 09:48:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212020
IP address blocks: 185.232.96.0/24 maxlen: 24
2a10:d280::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:4c:89:9c:8a:9a:2b:3b:9e:b5:5a:bb:c0:54:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de6c6035042cc532516ebc1968f41bfff4b8537e
Validity
Not Before: Jan 1 09:48:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=aa530774083f65e1b98e96448a4671ca2ab9ace3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:03:e2:bb:76:d3:b7:92:8c:36:80:aa:20:7d:
7d:3a:8c:03:99:0e:5a:64:1e:a5:b4:24:76:8d:b3:
1b:59:b8:37:e0:86:5b:26:57:c7:c2:79:63:09:3b:
6e:f2:98:bf:60:06:23:22:76:e9:ac:7d:1e:35:d2:
3a:50:aa:8b:fa:6a:22:bd:67:bc:0c:6e:d8:10:fd:
54:fc:10:0c:57:e5:a5:59:08:fe:60:b7:a5:40:25:
3b:eb:ff:c3:2f:09:05:a6:a2:5c:2f:e7:0d:30:7c:
4e:38:56:b7:37:b1:41:e1:77:cf:38:51:e9:b0:f5:
7e:83:94:c0:c2:3b:99:0c:82:5f:bb:77:29:34:61:
18:4e:8d:66:08:27:1d:8f:66:cb:42:78:90:62:2c:
32:2b:c5:86:61:4f:07:bd:68:4e:57:8b:60:0b:36:
2f:34:11:14:9f:85:aa:99:8b:c0:7a:04:44:99:53:
1e:db:ea:ef:69:0e:13:19:db:a0:1d:17:74:b2:19:
19:82:4c:f6:21:4d:86:6e:a0:b5:21:fd:47:5e:63:
e9:90:4d:7e:54:f2:33:16:30:17:07:20:3d:4e:12:
47:f4:ff:b3:8e:73:eb:29:e6:f2:17:14:2c:37:d7:
84:f3:0e:21:4f:75:b7:1f:db:ba:6c:2f:8c:55:2a:
ef:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:53:07:74:08:3F:65:E1:B9:8E:96:44:8A:46:71:CA:2A:B9:AC:E3
X509v3 Authority Key Identifier:
keyid:DE:6C:60:35:04:2C:C5:32:51:6E:BC:19:68:F4:1B:FF:F4:B8:53:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3mxgNQQsxTJRbrwZaPQb__S4U34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/c2bb4d-8483-47ce-bb0a-f5f490d2c163/1/qlMHdAg_ZeG5jpZEikZxyiq5rOM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/c2bb4d-8483-47ce-bb0a-f5f490d2c163/1/3mxgNQQsxTJRbrwZaPQb__S4U34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.232.96.0/24
IPv6:
2a10:d280::/29
Signature Algorithm: sha256WithRSAEncryption
d4:72:b3:ff:d0:e7:3b:ff:04:81:69:d1:95:30:6c:e7:33:db:
e5:ed:5f:c2:90:28:01:1d:a6:65:83:35:81:1d:b6:c2:48:78:
e4:70:bf:53:41:cc:b1:8a:12:67:b0:e8:78:86:b4:fb:35:20:
47:67:22:bc:19:47:75:15:1c:cb:8c:d0:66:30:43:e1:4e:94:
9b:44:b6:8c:5e:89:ac:d8:58:71:6e:ac:c4:0d:be:f8:6c:04:
d9:8a:ca:24:1e:f3:0e:04:66:e5:7a:7c:5f:2f:e9:ad:98:e1:
12:aa:19:65:3f:a4:dc:dd:7e:ff:56:e2:f0:62:04:04:7d:6c:
5d:0c:80:54:cb:1e:e3:6a:19:c5:b0:e0:3b:96:56:15:e5:1a:
e3:df:75:f7:5f:48:0c:8c:3a:75:29:6d:f6:f6:22:83:a1:4c:
91:50:00:cb:d3:71:78:59:ce:ef:ee:35:aa:31:71:bd:d9:55:
b3:1f:5e:df:56:0b:72:d4:e2:84:96:5e:9c:53:81:fc:d9:f5:
de:d8:c6:f8:21:b8:9f:d6:fb:c4:bd:d8:61:a9:9c:a6:86:53:
fc:91:4f:db:ac:c2:cc:df:fe:fe:2c:ff:ff:f8:fe:e8:37:65:
42:cd:b8:2f:c3:48:99:58:a1:ab:03:b9:a6:52:37:7b:7a:38:
0c:33:51:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:42 2025 by rpki-client on console.sobornost.net