Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/27c928-02fe-4052-9d65-b1fc2083c906/1/QHm-ELioCU7VmYr3xnJI2hFroko.roa
File: QHm-ELioCU7VmYr3xnJI2hFroko.roa (raw, json)
Hash identifier: NmW3C8NKCGbqhRm0Xt94BQ/c4oqnG0YmYAOJMru4dYw=
Subject key identifier: 40:79:BE:10:B8:A8:09:4E:D5:99:8A:F7:C6:72:48:DA:11:6B:A2:4A
Certificate issuer: /CN=ffbe256565e1c27c4b26560190e9978286a82b52
Certificate serial: 019421B1C7E0F2961C2DDEFFBB64115CEC5B
Authority key identifier: FF:BE:25:65:65:E1:C2:7C:4B:26:56:01:90:E9:97:82:86:A8:2B:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_74lZWXhwnxLJlYBkOmXgoaoK1I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/27c928-02fe-4052-9d65-b1fc2083c906/1/QHm-ELioCU7VmYr3xnJI2hFroko.roa
Signing time: Wed 01 Jan 2025 11:48:06 +0000
ROA not before: Wed 01 Jan 2025 11:48:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201080
IP address blocks: 194.146.205.0/24 maxlen: 24
194.146.206.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:c7:e0:f2:96:1c:2d:de:ff:bb:64:11:5c:ec:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ffbe256565e1c27c4b26560190e9978286a82b52
Validity
Not Before: Jan 1 11:48:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4079be10b8a8094ed5998af7c67248da116ba24a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:b0:94:4e:cc:42:18:db:11:ff:51:4e:80:57:
ef:0e:e6:5e:1f:30:89:c2:07:42:05:2a:fb:c5:22:
54:7b:6b:20:17:a4:9a:ee:e9:9c:0d:37:34:d2:3b:
9a:0f:9b:05:86:ac:4c:32:fd:10:53:91:e4:49:0f:
cf:84:1d:5d:cf:07:a2:76:cf:c9:72:9a:da:63:ae:
80:6a:3d:e6:9a:58:85:63:3c:fc:20:8b:c4:bb:bf:
44:e1:4e:17:e6:92:57:61:23:d3:74:23:01:09:7e:
5e:1e:ce:4c:06:e9:22:e2:83:9a:b2:54:6d:3f:e9:
a0:6a:f8:eb:23:47:fe:cc:f3:a5:40:7a:3e:86:02:
ed:94:6b:cb:fe:99:2d:5c:75:3e:94:60:88:8a:95:
a2:21:47:12:80:4b:19:18:78:36:c3:78:0f:32:46:
ec:19:85:77:13:33:b1:8c:fd:e3:a6:0d:40:26:ea:
bf:be:87:df:99:fb:a3:48:b1:32:db:6a:ed:bb:ce:
1d:bc:29:c8:ac:86:d5:a3:bf:c0:6d:36:0c:a9:9a:
ad:ab:82:d7:44:94:1e:cc:6c:06:fc:5b:9a:ff:f6:
a0:c1:d9:87:09:65:a4:4b:9e:5b:86:50:57:fa:18:
43:7a:0e:34:0b:02:e7:31:58:7b:6b:c0:9a:27:35:
2b:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:79:BE:10:B8:A8:09:4E:D5:99:8A:F7:C6:72:48:DA:11:6B:A2:4A
X509v3 Authority Key Identifier:
keyid:FF:BE:25:65:65:E1:C2:7C:4B:26:56:01:90:E9:97:82:86:A8:2B:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_74lZWXhwnxLJlYBkOmXgoaoK1I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/27c928-02fe-4052-9d65-b1fc2083c906/1/QHm-ELioCU7VmYr3xnJI2hFroko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/27c928-02fe-4052-9d65-b1fc2083c906/1/_74lZWXhwnxLJlYBkOmXgoaoK1I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.146.205.0-194.146.207.255
Signature Algorithm: sha256WithRSAEncryption
81:64:b9:6c:2d:10:dd:18:c0:15:6e:ef:ae:1f:01:6f:67:63:
7c:ab:0f:73:ea:8c:a0:59:36:70:5a:0e:dc:e1:9a:7a:a4:35:
68:1c:42:e3:f9:32:4c:7d:b2:f2:a0:58:44:f6:b7:8b:89:0b:
4d:98:a4:c1:4b:ff:f5:97:eb:2a:1d:e5:3d:c5:c4:fe:d9:ce:
1d:03:d6:07:82:29:2f:5d:26:a4:b1:1d:98:9e:54:94:c8:a2:
44:2f:c1:90:95:7b:3a:e3:84:4b:57:ba:21:73:41:c4:09:7c:
34:16:31:33:6c:d8:03:f7:c1:48:5f:dc:9e:c7:92:da:aa:af:
bf:cd:10:d5:77:80:8c:35:8f:23:e5:e6:cf:a7:f9:26:70:8a:
90:2f:c0:f9:bc:d3:71:30:3d:28:30:fe:c0:c5:24:48:78:84:
40:c2:da:23:6b:70:53:f2:a7:15:ae:93:03:c0:44:76:1a:ca:
37:b4:e2:b2:09:dd:95:eb:3f:97:a2:5c:4d:04:8b:a2:9a:3a:
fc:33:82:e8:99:29:8c:af:dc:92:e4:05:bb:a6:11:ec:a3:55:
50:7b:07:d0:70:bb:6b:53:20:34:68:a2:3c:fc:0c:9b:fb:58:
07:5c:ca:6d:c3:bb:4f:d2:dd:73:5d:dc:13:a9:12:06:8f:2a:
1e:a2:65:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:26 2025 by rpki-client on console.sobornost.net