Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/2399d2-8e24-48f2-be88-f371f98a753b/1/QyZ6YrSQShEJRCfEg7OABiPpNqo.roa
File: QyZ6YrSQShEJRCfEg7OABiPpNqo.roa (raw, json)
Hash identifier: /IBc404KSaAjXw58g7c+9ZuoNzXJ+jjuCZD0InA6tmA=
Subject key identifier: 43:26:7A:62:B4:90:4A:11:09:44:27:C4:83:B3:80:06:23:E9:36:AA
Certificate issuer: /CN=12b1674bbf0d118f2554f80cafd3ef1b39d8ae3f
Certificate serial: 019424B3ECDD5CEBBDA4E729AA742721D5EB
Authority key identifier: 12:B1:67:4B:BF:0D:11:8F:25:54:F8:0C:AF:D3:EF:1B:39:D8:AE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ErFnS78NEY8lVPgMr9PvGznYrj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/2399d2-8e24-48f2-be88-f371f98a753b/1/QyZ6YrSQShEJRCfEg7OABiPpNqo.roa
Signing time: Thu 02 Jan 2025 01:49:18 +0000
ROA not before: Thu 02 Jan 2025 01:49:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203694
IP address blocks: 185.132.124.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:ec:dd:5c:eb:bd:a4:e7:29:aa:74:27:21:d5:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12b1674bbf0d118f2554f80cafd3ef1b39d8ae3f
Validity
Not Before: Jan 2 01:49:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=43267a62b4904a11094427c483b3800623e936aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:e4:41:d0:dd:f9:97:cd:ae:41:c3:de:31:15:
58:90:1b:09:80:e5:0a:3a:76:f0:ef:e0:5f:8d:28:
1f:f4:46:a9:1a:f5:40:10:a3:d9:df:43:86:cb:2f:
6f:72:fd:10:ce:82:2e:bb:37:1c:1e:2b:92:56:b5:
10:cc:06:5d:6c:6a:57:66:e3:a9:3f:b9:cb:bb:42:
8e:6a:5b:68:57:4c:00:16:a7:ad:7b:99:e3:62:b7:
6a:5d:b7:d9:9d:b4:6d:c3:52:7f:f4:f8:14:f1:76:
26:30:d9:ac:97:fd:3d:75:32:36:48:f3:b5:7e:6a:
b7:04:33:0d:b1:0a:6c:d2:d8:8e:82:54:99:e8:d2:
ed:e2:c2:05:75:9b:97:a5:2e:29:5d:95:8e:18:21:
ea:c4:72:f2:b1:1b:ad:77:29:56:b6:56:fa:15:79:
f0:d7:ec:a1:aa:27:81:4f:ba:c2:be:fc:d2:4c:d4:
ed:73:28:66:a2:85:1b:36:ce:e6:65:a0:68:bc:30:
95:76:27:a2:0e:d2:07:e0:fc:0d:a1:ca:c8:27:05:
4b:a3:17:a7:b2:63:c3:98:90:c9:3e:fa:1c:9c:a3:
87:ea:19:66:19:95:86:cc:de:f7:1d:ca:34:6e:0f:
eb:1e:b2:49:b0:23:1b:38:19:28:54:4f:c6:b6:b0:
fb:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:26:7A:62:B4:90:4A:11:09:44:27:C4:83:B3:80:06:23:E9:36:AA
X509v3 Authority Key Identifier:
keyid:12:B1:67:4B:BF:0D:11:8F:25:54:F8:0C:AF:D3:EF:1B:39:D8:AE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ErFnS78NEY8lVPgMr9PvGznYrj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/2399d2-8e24-48f2-be88-f371f98a753b/1/QyZ6YrSQShEJRCfEg7OABiPpNqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/2399d2-8e24-48f2-be88-f371f98a753b/1/ErFnS78NEY8lVPgMr9PvGznYrj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.132.124.0/24
Signature Algorithm: sha256WithRSAEncryption
95:bb:f3:67:70:e3:97:b1:e3:69:da:a7:70:fc:99:06:30:6c:
5f:af:42:97:05:63:59:f4:e7:6f:4d:c0:de:de:18:11:c4:f1:
e6:32:a8:99:18:a8:74:27:75:5b:11:30:3d:da:93:59:dd:2b:
3c:22:40:5f:a2:ae:e3:7e:44:65:da:14:51:b5:73:d9:be:79:
dc:3d:d6:e5:55:77:33:f2:57:7e:7e:15:ff:2c:d3:d6:4f:f2:
a6:d3:7b:0b:c0:a2:ef:c2:ef:18:71:20:75:d0:75:9f:dc:2d:
cd:0c:38:43:1c:62:64:05:7f:b9:a7:fd:bb:31:3c:f8:44:c6:
aa:d5:45:00:9d:70:23:1a:ae:07:49:9f:69:ad:45:06:ad:88:
55:8f:a7:70:ce:61:29:fe:f0:57:91:09:6e:d8:33:6c:e6:46:
a8:a8:f3:85:f4:5f:2a:46:a7:91:12:f1:a5:af:78:d7:c0:92:
93:22:45:3b:51:17:ef:16:c7:97:b6:f8:6c:17:45:c1:29:66:
ee:98:22:db:17:c0:76:f0:13:35:a6:4b:43:4e:10:6f:71:ad:
fd:1d:68:52:ed:ef:b3:f2:a7:52:1f:16:d6:2f:f3:f5:9b:a3:
37:36:bd:db:28:bc:cd:88:30:c5:0b:62:34:53:7c:f0:cf:ec:
0a:6a:1a:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:27 2025 by rpki-client on console.sobornost.net