Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/dd8877-d082-41ea-9f85-696b615cbec3/1/pqlsmAxEb6u37QxzF6qCzpQ4SBk.roa
File: pqlsmAxEb6u37QxzF6qCzpQ4SBk.roa (raw, json)
Hash identifier: teI/DPbnnC6ro04KC4yzmzn/SS2I9ht6+3TdoQMOA3A=
Subject key identifier: A6:A9:6C:98:0C:44:6F:AB:B7:ED:0C:73:17:AA:82:CE:94:38:48:19
Certificate issuer: /CN=4003350bcc7b540fadea951e046081d8da06c145
Certificate serial: 01947DBF7392256418302591E33BC41A6906
Authority key identifier: 40:03:35:0B:CC:7B:54:0F:AD:EA:95:1E:04:60:81:D8:DA:06:C1:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QAM1C8x7VA-t6pUeBGCB2NoGwUU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/dd8877-d082-41ea-9f85-696b615cbec3/1/pqlsmAxEb6u37QxzF6qCzpQ4SBk.roa
Signing time: Sun 19 Jan 2025 08:48:06 +0000
ROA not before: Sun 19 Jan 2025 08:48:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 1299
IP address blocks: 185.7.175.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:7d:bf:73:92:25:64:18:30:25:91:e3:3b:c4:1a:69:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4003350bcc7b540fadea951e046081d8da06c145
Validity
Not Before: Jan 19 08:48:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a6a96c980c446fabb7ed0c7317aa82ce94384819
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:92:5f:fd:91:05:ac:48:7b:0b:44:26:d7:22:
ce:44:56:03:e9:03:b4:32:90:4f:39:34:c2:ac:bc:
2a:ce:0b:c6:45:9a:a9:34:06:08:ec:50:62:78:d1:
d0:7b:2b:c3:4d:0b:8e:1e:09:b0:8e:ee:b3:c5:c6:
67:0e:75:7d:ab:b4:29:91:92:fd:d9:86:b0:82:6e:
f0:a1:50:c2:84:1a:db:09:51:fa:22:b1:4b:cf:7f:
74:78:47:e4:f5:fd:62:05:38:42:3e:97:ab:a4:86:
ac:45:b3:cc:32:44:3c:9a:f4:3d:5b:12:65:ef:b1:
a7:ca:49:b2:ac:33:5c:ce:fa:25:0d:79:db:77:9b:
e8:a2:21:24:9f:44:c0:47:e2:e6:fa:cc:69:fd:56:
3c:d2:67:24:77:b1:6e:db:6a:f1:a1:3c:90:07:ff:
e4:66:01:e6:91:dc:32:59:c8:ce:73:1e:2b:7a:f6:
1a:14:93:c4:ea:fe:14:1b:2b:4f:e3:16:f9:c3:04:
b2:f1:6b:8e:0e:74:11:33:b5:42:08:ab:64:b2:a6:
b3:82:57:af:9b:1d:fc:94:17:bb:27:bd:a6:30:88:
54:93:ed:8c:63:e9:f8:98:99:2d:65:99:94:1c:2f:
c8:19:5a:dd:f3:79:16:5a:de:ee:19:7f:b7:96:7e:
99:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:A9:6C:98:0C:44:6F:AB:B7:ED:0C:73:17:AA:82:CE:94:38:48:19
X509v3 Authority Key Identifier:
keyid:40:03:35:0B:CC:7B:54:0F:AD:EA:95:1E:04:60:81:D8:DA:06:C1:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QAM1C8x7VA-t6pUeBGCB2NoGwUU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/dd8877-d082-41ea-9f85-696b615cbec3/1/pqlsmAxEb6u37QxzF6qCzpQ4SBk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/dd8877-d082-41ea-9f85-696b615cbec3/1/QAM1C8x7VA-t6pUeBGCB2NoGwUU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.7.175.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:bb:59:0c:37:b4:c0:80:9f:bb:17:1a:de:02:58:2c:a6:3e:
ff:9e:c9:c8:aa:bc:85:4a:c1:22:51:7b:bb:ea:32:1f:ca:ab:
5a:49:00:8f:43:93:b0:0d:8d:dd:c0:47:dd:46:48:9b:73:a9:
eb:07:4a:3d:66:88:63:66:e9:f2:a0:1b:88:d8:dd:a0:c8:b3:
d4:63:96:89:ac:e2:75:f7:47:e0:01:f6:ad:54:28:31:88:4a:
96:cc:70:2d:fb:d4:88:ea:93:4d:6c:58:15:a7:7e:47:40:8e:
e5:c2:d2:9f:ea:d1:18:5e:eb:cb:bf:8d:d9:94:09:3c:74:1a:
2f:19:a6:de:df:6a:56:ad:67:ea:c9:6f:0e:aa:72:32:24:d0:
08:4d:ce:b3:54:ca:b3:d2:f6:ad:ad:c9:5a:1e:e4:44:d4:c1:
93:72:af:f6:f8:12:e2:33:eb:2e:fe:3a:62:41:d2:76:ce:29:
96:71:b8:d9:d9:e1:65:ce:09:9e:d9:6b:22:3f:fd:fe:71:25:
8f:38:73:6d:c8:5d:0b:2a:b6:0b:31:df:2a:3f:60:03:fa:0a:
2d:c6:76:a8:b5:65:59:78:45:02:f8:39:70:39:43:0a:74:86:
17:f4:7c:d4:c9:23:29:68:f4:58:71:f1:46:a1:97:90:f5:77:
b4:41:57:8d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZR9v3OSJWQYMCWR4zvEGmkGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwMDMzNTBiY2M3YjU0MGZhZGVhOTUxZTA0NjA4MWQ4ZGEw
NmMxNDUwHhcNMjUwMTE5MDg0ODA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNmE5NmM5ODBjNDQ2ZmFiYjdlZDBjNzMxN2FhODJjZTk0Mzg0ODE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5ZJf/ZEFrEh7C0Qm1yLORFYD6QO0
MpBPOTTCrLwqzgvGRZqpNAYI7FBieNHQeyvDTQuOHgmwju6zxcZnDnV9q7QpkZL9
2Yawgm7woVDChBrbCVH6IrFLz390eEfk9f1iBThCPperpIasRbPMMkQ8mvQ9WxJl
77GnykmyrDNczvolDXnbd5vooiEkn0TAR+Lm+sxp/VY80mckd7Fu22rxoTyQB//k
ZgHmkdwyWcjOcx4revYaFJPE6v4UGytP4xb5wwSy8WuODnQRM7VCCKtksqazglev
mx38lBe7J72mMIhUk+2MY+n4mJktZZmUHC/IGVrd83kWWt7uGX+3ln6ZewIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKapbJgMRG+rt+0Mcxeqgs6UOEgZMB8GA1UdIwQY
MBaAFEADNQvMe1QPreqVHgRggdjaBsFFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUFNMUM4eDdWQS10NnBVZUJHQ0IyTm9Hd1VVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS9kZDg4NzctZDA4Mi00MWVhLTlmODUt
Njk2YjYxNWNiZWMzLzEvcHFsc21BeEViNnUzN1F4ekY2cUN6cFE0U0JrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMS9kZDg4NzctZDA4Mi00MWVhLTlmODUtNjk2YjYxNWNiZWMz
LzEvUUFNMUM4eDdWQS10NnBVZUJHQ0IyTm9Hd1VVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuQevMA0G
CSqGSIb3DQEBCwUAA4IBAQAfu1kMN7TAgJ+7FxreAlgspj7/nsnIqryFSsEiUXu7
6jIfyqtaSQCPQ5OwDY3dwEfdRkibc6nrB0o9ZohjZunyoBuI2N2gyLPUY5aJrOJ1
90fgAfatVCgxiEqWzHAt+9SI6pNNbFgVp35HQI7lwtKf6tEYXuvLv43ZlAk8dBov
Gabe32pWrWfqyW8OqnIyJNAITc6zVMqz0vatrclaHuRE1MGTcq/2+BLiM+su/jpi
QdJ2zimWcbjZ2eFlzgme2WsiP/3+cSWPOHNtyF0LKrYLMd8qP2AD+gotxnaotWVZ
eEUC+DlwOUMKdIYX9HzUySMpaPRYcfFGoZeQ9Xe0QVeN
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:39 2025 by rpki-client on console.sobornost.net