Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/b4aa63-4259-44e6-ac29-4fa53bf0e155/1/QXyQtT8qy7cZkdePrzNkoMkFsLI.roa
File: QXyQtT8qy7cZkdePrzNkoMkFsLI.roa (raw, json)
Hash identifier: p4NnT1oNWa0lNXGn9ql046BScEcNjINqPaeSDpvSus0=
Subject key identifier: 41:7C:90:B5:3F:2A:CB:B7:19:91:D7:8F:AF:33:64:A0:C9:05:B0:B2
Certificate issuer: /CN=b0d62d1666c5c4d192183531584afd72bed08485
Certificate serial: 01941FFA8CBB767B9C8F67CFC24E86999082
Authority key identifier: B0:D6:2D:16:66:C5:C4:D1:92:18:35:31:58:4A:FD:72:BE:D0:84:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sNYtFmbFxNGSGDUxWEr9cr7QhIU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/b4aa63-4259-44e6-ac29-4fa53bf0e155/1/QXyQtT8qy7cZkdePrzNkoMkFsLI.roa
Signing time: Wed 01 Jan 2025 03:48:21 +0000
ROA not before: Wed 01 Jan 2025 03:48:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8248
IP address blocks: 81.186.0.0/17 maxlen: 24
81.186.128.0/18 maxlen: 18
81.186.192.0/19 maxlen: 19
194.63.160.0/19 maxlen: 19
194.63.192.0/19 maxlen: 19
194.63.224.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:8c:bb:76:7b:9c:8f:67:cf:c2:4e:86:99:90:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0d62d1666c5c4d192183531584afd72bed08485
Validity
Not Before: Jan 1 03:48:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=417c90b53f2acbb71991d78faf3364a0c905b0b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:18:8f:9f:66:d5:77:e5:ee:8a:40:50:8e:f2:
07:b8:9c:e5:09:fe:e0:fd:5f:54:7a:aa:07:ca:e5:
fa:bd:dc:5f:e2:a5:cf:18:80:1a:84:cc:57:c1:80:
8b:3a:1a:60:64:b0:9e:1c:c8:9d:69:f4:02:a5:8d:
f9:03:62:dc:7d:bd:1a:96:ed:da:14:f5:4d:23:f3:
d7:5c:7b:b3:1f:00:08:ab:a6:94:66:2e:d9:50:e3:
85:41:e1:24:28:e7:b1:fa:9b:08:7e:4f:8e:b9:98:
93:7f:f4:b0:62:31:6e:f8:3d:15:0a:1b:f3:1e:98:
1b:13:c0:4e:8b:b9:c6:29:c9:5d:84:2a:35:13:89:
37:26:d9:0c:a4:1c:be:c1:fe:20:fd:e5:73:1d:f6:
f5:43:61:4a:cb:4d:2e:fa:ba:fb:bb:87:5b:d7:c7:
bd:a8:6a:c3:1f:54:c4:ff:18:12:49:1c:ec:1d:c8:
d6:71:33:9c:31:c7:1c:a8:de:9c:47:c9:6b:4f:b1:
73:39:c2:e0:e9:11:18:d6:f1:7e:79:08:11:2c:e6:
ed:4a:2a:c7:c7:f5:d4:83:3f:1b:01:bb:ab:f3:5a:
9b:3d:51:a9:cf:d5:2f:ef:d1:4e:ec:2c:d5:56:3b:
1e:e7:18:f4:4e:0b:67:06:da:1b:61:30:aa:f1:d4:
b7:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:7C:90:B5:3F:2A:CB:B7:19:91:D7:8F:AF:33:64:A0:C9:05:B0:B2
X509v3 Authority Key Identifier:
keyid:B0:D6:2D:16:66:C5:C4:D1:92:18:35:31:58:4A:FD:72:BE:D0:84:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sNYtFmbFxNGSGDUxWEr9cr7QhIU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/b4aa63-4259-44e6-ac29-4fa53bf0e155/1/QXyQtT8qy7cZkdePrzNkoMkFsLI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/b4aa63-4259-44e6-ac29-4fa53bf0e155/1/sNYtFmbFxNGSGDUxWEr9cr7QhIU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.186.0.0-81.186.223.255
194.63.160.0-194.63.239.255
Signature Algorithm: sha256WithRSAEncryption
6c:55:55:76:e5:85:20:1f:31:92:5c:44:19:b2:63:63:dd:3e:
f1:eb:e4:98:30:5a:55:58:81:bc:47:37:b8:59:9b:57:88:ab:
39:ad:18:a4:64:74:8a:f3:ef:fd:be:f3:93:05:fe:99:13:2a:
f3:42:ee:90:19:0c:c6:4b:24:f3:c1:66:d7:0b:23:d7:5d:1c:
26:fa:c8:39:c3:b2:8e:b6:5b:03:87:51:d0:2a:61:af:3d:db:
db:a9:7d:ad:b7:c9:16:4e:2a:77:7f:2e:df:3a:21:71:a2:b2:
6a:c3:63:ac:0c:0b:b8:7b:55:b2:a7:84:5e:a2:f6:4f:23:03:
25:d5:0f:8d:7a:60:b4:be:34:b9:86:59:07:f0:75:71:b7:ab:
a5:ec:95:ca:df:4a:2e:fb:5d:8d:fa:28:85:1a:f1:60:b3:ef:
7b:49:c4:f7:3b:12:0e:29:53:36:fa:04:71:f1:9a:3f:c0:a6:
ce:91:21:15:5d:69:88:f7:45:19:ff:e3:4e:62:fb:85:36:d1:
db:3a:2a:5e:ec:b3:87:38:c9:94:50:75:13:b4:c2:31:55:b2:
db:e0:b5:bc:24:8f:17:a9:f1:a9:78:06:c8:c4:cc:1a:38:98:
da:ac:3e:21:3e:df:bd:76:e1:b2:91:c9:56:12:be:09:b9:f4:
b5:b8:99:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:57 2025 by rpki-client on console.sobornost.net