Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/7fafdb-f74a-4ba1-9702-0fd02c44253b/1/qlMDWlG-JNx16-NWJFTyN9idn8E.roa
File: qlMDWlG-JNx16-NWJFTyN9idn8E.roa (raw, json)
Hash identifier: E945kOZUUQnkihDV8A7yVqNkz5KAfzQzs4QO1zB4q98=
Subject key identifier: AA:53:03:5A:51:BE:24:DC:75:EB:E3:56:24:54:F2:37:D8:9D:9F:C1
Certificate issuer: /CN=aa57e0eb4a4506a19ab2eff989a67d559b98cc1a
Certificate serial: 0194252154AABA5D4CEE9EB4991D916B6C13
Authority key identifier: AA:57:E0:EB:4A:45:06:A1:9A:B2:EF:F9:89:A6:7D:55:9B:98:CC:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qlfg60pFBqGasu_5iaZ9VZuYzBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/7fafdb-f74a-4ba1-9702-0fd02c44253b/1/qlMDWlG-JNx16-NWJFTyN9idn8E.roa
Signing time: Thu 02 Jan 2025 03:48:48 +0000
ROA not before: Thu 02 Jan 2025 03:48:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 2852
IP address blocks: 147.230.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:54:aa:ba:5d:4c:ee:9e:b4:99:1d:91:6b:6c:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa57e0eb4a4506a19ab2eff989a67d559b98cc1a
Validity
Not Before: Jan 2 03:48:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=aa53035a51be24dc75ebe3562454f237d89d9fc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:74:df:db:db:f0:8c:18:90:fb:d1:7d:f1:ab:
f7:c4:ee:8c:90:ff:7a:fe:0a:8d:fe:bc:41:fb:3b:
1a:44:f6:25:62:a1:9d:84:65:fd:0c:a7:84:10:df:
41:b8:91:03:61:6a:af:ef:9d:13:f0:11:09:2f:73:
64:7e:6e:4a:06:43:f1:8b:8e:c8:a1:3b:78:67:ee:
47:49:5c:f1:42:34:09:f4:ba:1c:58:0f:b2:96:bc:
23:50:01:cb:11:2b:bc:17:d6:50:09:aa:f7:e6:26:
cb:ec:7c:3f:c2:90:25:8e:7a:2e:5b:32:68:87:1a:
6d:3c:44:8f:9f:68:b3:40:c6:cc:eb:9c:a6:9d:37:
e4:49:0e:41:1a:c9:01:39:c8:24:dc:35:65:fc:fc:
77:3c:d4:ab:98:02:46:73:12:d0:b2:4f:74:72:a6:
79:8a:41:9a:d9:5d:35:a0:7d:7b:e8:a9:36:ba:63:
17:c8:88:37:99:fc:c4:fa:ab:b6:76:ce:f6:28:e8:
64:53:96:92:fc:b7:45:c8:26:65:2d:df:2e:02:6e:
2b:91:0f:12:ec:a2:fd:0e:e3:18:b5:25:e7:7e:32:
e1:17:22:da:44:c9:43:69:ad:b6:03:0c:70:e0:9c:
cb:eb:e6:a3:01:57:86:56:96:92:6c:46:49:19:2a:
27:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:53:03:5A:51:BE:24:DC:75:EB:E3:56:24:54:F2:37:D8:9D:9F:C1
X509v3 Authority Key Identifier:
keyid:AA:57:E0:EB:4A:45:06:A1:9A:B2:EF:F9:89:A6:7D:55:9B:98:CC:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qlfg60pFBqGasu_5iaZ9VZuYzBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7fafdb-f74a-4ba1-9702-0fd02c44253b/1/qlMDWlG-JNx16-NWJFTyN9idn8E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7fafdb-f74a-4ba1-9702-0fd02c44253b/1/qlfg60pFBqGasu_5iaZ9VZuYzBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.230.0.0/16
Signature Algorithm: sha256WithRSAEncryption
5d:77:cc:27:d1:33:1d:7f:d4:65:5f:65:2e:33:ff:01:64:43:
ce:d5:92:e4:49:72:24:24:4d:27:d3:5c:05:22:82:a1:04:f8:
35:b5:ca:44:13:2d:5f:01:ad:57:c8:9b:68:c9:f9:cc:af:64:
8e:03:6e:8f:5d:5b:2e:0e:4e:bc:be:f4:bb:b0:87:5d:1b:89:
67:35:df:06:78:14:8a:72:e7:dd:0c:bf:d4:79:cd:af:0f:69:
cc:d1:d1:66:6b:90:27:a1:42:58:8c:dc:d5:29:d8:a0:a0:7e:
5d:97:db:d5:67:bf:12:2a:e2:53:d5:79:81:4b:e7:db:04:26:
a6:81:aa:45:5f:a6:d2:92:ee:20:e0:4a:83:5b:cf:ec:2f:3b:
3f:99:5f:7e:e7:a5:a9:dc:d4:40:33:a6:e9:3a:ab:33:94:8f:
1a:4d:f0:80:92:35:59:76:8f:b6:c9:e2:06:ef:e2:f0:c5:1a:
ae:65:e9:22:14:30:ac:fa:22:c5:61:40:ad:47:7a:09:1b:95:
2a:ea:3c:77:6c:8b:9f:8e:ba:cc:bc:bc:5b:9c:fc:65:b7:97:
1c:c6:9e:31:c1:b4:69:53:bd:e8:6a:1c:a1:79:8b:65:88:6e:
5e:a0:6d:99:95:7f:72:2c:8a:87:10:16:6f:f6:89:7f:fa:58:
97:80:6e:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:45 2025 by rpki-client on console.sobornost.net