Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/5e753d-c33d-47a3-8e82-a52862b44563/1/qnzJlov9IfHa6-JIDhU1P8n2pxc.roa
File: qnzJlov9IfHa6-JIDhU1P8n2pxc.roa (raw, json)
Hash identifier: hqsVesAuwoplFvP+6XnZFOJ9zgaV+J5/eniIwX7ChVM=
Subject key identifier: AA:7C:C9:96:8B:FD:21:F1:DA:EB:E2:48:0E:15:35:3F:C9:F6:A7:17
Certificate issuer: /CN=fc55e0533efaa5624f538b92ed1a973feff89751
Certificate serial: 019619726FFA124A10B9C5B011BB1D66C354
Authority key identifier: FC:55:E0:53:3E:FA:A5:62:4F:53:8B:92:ED:1A:97:3F:EF:F8:97:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_FXgUz76pWJPU4uS7RqXP-_4l1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/5e753d-c33d-47a3-8e82-a52862b44563/1/qnzJlov9IfHa6-JIDhU1P8n2pxc.roa
Signing time: Wed 09 Apr 2025 07:27:32 +0000
ROA not before: Wed 09 Apr 2025 07:27:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20473
IP address blocks: 185.84.116.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:19:72:6f:fa:12:4a:10:b9:c5:b0:11:bb:1d:66:c3:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc55e0533efaa5624f538b92ed1a973feff89751
Validity
Not Before: Apr 9 07:27:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=aa7cc9968bfd21f1daebe2480e15353fc9f6a717
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:47:61:76:d8:8c:32:96:cf:54:dd:d1:92:92:
3f:d9:2a:67:e8:a0:df:0a:f8:c8:50:ec:34:35:71:
99:26:e3:f8:e4:08:74:1c:52:e0:b8:25:c9:d2:b7:
3b:78:b9:ce:49:93:d4:be:4a:7b:27:31:f6:0e:f7:
be:7f:1f:af:81:85:04:fb:ec:b9:4a:b6:f5:ef:5b:
17:14:ba:bd:b6:cf:86:df:b0:f5:ac:54:9a:14:d8:
63:0d:9b:3d:93:20:82:0f:e8:3e:c1:fd:0f:d8:e4:
49:c9:6c:d9:30:5f:13:92:a7:b0:6e:6a:f3:65:74:
c3:0b:7a:59:d0:3f:86:a6:c1:ed:fc:d1:e0:11:3c:
a3:c3:bf:8d:3d:3a:b4:eb:82:cc:99:81:68:a2:c8:
56:10:cb:8d:27:59:fe:40:cb:b4:48:4f:56:4f:f5:
92:26:3b:db:a4:51:a7:16:4f:31:52:78:bd:43:d5:
4d:74:d9:38:fe:4c:ef:c7:e5:5c:02:2a:3a:ca:94:
11:30:82:33:46:e8:4d:d3:6c:cc:59:65:05:80:fc:
c8:09:4b:7e:b0:67:8a:50:a9:cb:f9:29:86:b0:d0:
88:8b:94:3d:80:98:ab:c9:9a:48:f2:b4:ec:2a:56:
37:e7:20:b8:11:1e:a8:b7:e9:77:d3:22:8a:a9:b8:
f8:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:7C:C9:96:8B:FD:21:F1:DA:EB:E2:48:0E:15:35:3F:C9:F6:A7:17
X509v3 Authority Key Identifier:
keyid:FC:55:E0:53:3E:FA:A5:62:4F:53:8B:92:ED:1A:97:3F:EF:F8:97:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_FXgUz76pWJPU4uS7RqXP-_4l1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/5e753d-c33d-47a3-8e82-a52862b44563/1/qnzJlov9IfHa6-JIDhU1P8n2pxc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/5e753d-c33d-47a3-8e82-a52862b44563/1/_FXgUz76pWJPU4uS7RqXP-_4l1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.84.116.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:fb:e6:58:9b:60:ae:7f:e4:70:2e:07:cf:fb:fc:a9:1c:35:
53:0c:31:36:e5:f3:e2:17:ed:d7:41:c9:71:a7:2c:89:83:83:
6f:94:cd:cf:af:cf:99:7e:6e:39:6c:2c:64:2b:4f:e1:43:28:
8e:36:39:89:6d:cf:9b:69:be:71:5e:91:5a:52:fb:ad:5b:50:
e5:a7:87:1e:8b:59:21:9f:db:b9:71:67:a3:15:3b:9d:a3:ae:
c7:95:84:bf:23:ce:9b:3e:c8:26:16:76:ca:dc:51:d4:56:20:
40:63:79:ea:2f:f2:ef:1b:67:4c:e2:86:78:a6:ef:aa:b9:f2:
54:65:12:c8:2b:bf:ec:5c:e0:68:14:92:40:71:60:4f:15:f2:
c7:05:90:bb:7e:2a:42:3e:69:0c:28:b3:07:59:04:22:97:6b:
69:2a:93:78:6d:14:a5:6e:67:3a:60:b1:de:ae:a2:49:8b:96:
3c:cd:99:d3:53:bb:b5:c8:95:26:21:9e:7c:b9:ca:4e:b6:59:
f3:b0:9a:8d:5b:8d:c3:2e:46:d3:f0:7c:38:02:d8:ab:73:cd:
a3:86:08:96:39:4b:2c:13:13:23:53:e6:73:12:4f:c5:f5:f7:
24:f0:c4:cd:8e:44:50:1e:d2:64:03:ae:e7:79:ed:65:73:31:
9f:58:9a:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:59 2025 by rpki-client on console.sobornost.net