Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/7ea00d-6047-4e12-a881-18940cb372bd/1/QvzIuDIPsfNvbsiu-OpMImndcj4.roa
File: QvzIuDIPsfNvbsiu-OpMImndcj4.roa (raw, json)
Hash identifier: Zd0Oz2LJKbUfeoowQWU8WhWLnHtXOXflOCBLaOBPWyw=
Subject key identifier: 42:FC:C8:B8:32:0F:B1:F3:6F:6E:C8:AE:F8:EA:4C:22:69:DD:72:3E
Certificate issuer: /CN=591338a61f6a0f548420a9392037f4811749508a
Certificate serial: 019423D763EC49A8665DF270232F3F12F2BF
Authority key identifier: 59:13:38:A6:1F:6A:0F:54:84:20:A9:39:20:37:F4:81:17:49:50:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WRM4ph9qD1SEIKk5IDf0gRdJUIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/7ea00d-6047-4e12-a881-18940cb372bd/1/QvzIuDIPsfNvbsiu-OpMImndcj4.roa
Signing time: Wed 01 Jan 2025 21:48:25 +0000
ROA not before: Wed 01 Jan 2025 21:48:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12552
IP address blocks: 185.18.84.0/22 maxlen: 22
2a03:f440::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:63:ec:49:a8:66:5d:f2:70:23:2f:3f:12:f2:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=591338a61f6a0f548420a9392037f4811749508a
Validity
Not Before: Jan 1 21:48:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=42fcc8b8320fb1f36f6ec8aef8ea4c2269dd723e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:fc:29:58:9f:cc:ef:12:64:42:0d:7b:33:05:
5f:c7:10:7b:02:39:9a:13:ae:06:04:2a:ec:df:2f:
08:57:50:b5:4f:e9:f3:bc:4a:e2:03:e3:4f:cf:b0:
86:b5:5e:f7:e9:88:dc:51:56:56:48:67:ac:14:a2:
4a:b1:f7:97:ac:5b:1e:ef:6f:bd:f5:0a:c2:dd:b4:
5b:e7:5a:af:14:a2:80:b0:17:09:b9:31:ea:3b:67:
5d:03:fb:10:97:0c:47:88:74:16:3d:4b:c8:a9:c9:
8a:0a:15:f3:68:b4:6d:23:44:87:a6:ec:99:55:36:
e6:2d:16:27:07:9f:64:37:bc:4d:9d:e6:f1:52:6f:
2f:09:15:9f:76:01:da:7e:20:28:40:74:36:a4:73:
51:cd:1a:0d:25:c1:bd:ab:ae:4f:17:29:e3:87:0a:
39:1e:07:4b:55:bb:49:ae:d1:4c:33:32:4c:8c:c0:
56:4a:42:2a:fd:8d:71:c7:20:95:eb:d3:a4:6c:39:
89:4e:ee:1e:2c:b9:c2:33:df:0a:41:22:68:5a:20:
2f:29:9e:d1:56:a1:6c:f5:0f:f3:2e:22:cf:f4:9e:
78:24:28:09:c6:c6:25:51:9c:1e:ac:91:e9:a5:a7:
07:67:80:c6:54:8e:49:a9:69:78:70:1c:2e:72:0f:
8f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:FC:C8:B8:32:0F:B1:F3:6F:6E:C8:AE:F8:EA:4C:22:69:DD:72:3E
X509v3 Authority Key Identifier:
keyid:59:13:38:A6:1F:6A:0F:54:84:20:A9:39:20:37:F4:81:17:49:50:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WRM4ph9qD1SEIKk5IDf0gRdJUIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/7ea00d-6047-4e12-a881-18940cb372bd/1/QvzIuDIPsfNvbsiu-OpMImndcj4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/7ea00d-6047-4e12-a881-18940cb372bd/1/WRM4ph9qD1SEIKk5IDf0gRdJUIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.18.84.0/22
IPv6:
2a03:f440::/32
Signature Algorithm: sha256WithRSAEncryption
bb:3e:6a:15:a4:d9:ab:96:a7:28:28:1d:22:e8:93:38:44:04:
3b:c8:2f:43:5f:22:65:ac:04:3a:62:c8:90:2e:ed:38:df:ff:
93:f6:c7:dc:82:a4:85:13:a4:d6:23:48:01:d7:c6:37:8e:25:
ad:d2:93:68:d4:da:98:43:e4:0c:b6:1d:c2:01:d9:04:31:d9:
07:fd:40:67:27:ea:0e:13:f1:61:c2:74:57:c1:bb:bc:73:21:
06:e1:ad:b0:2f:31:dc:0e:92:17:98:be:5d:c0:07:8f:ed:95:
1b:c8:b6:6a:18:2a:ad:da:36:56:c6:70:0b:79:20:40:b2:1d:
a9:5b:6b:ee:37:ff:f3:01:b2:3f:c3:f5:9b:02:db:e5:a8:9e:
84:1f:cf:dd:2f:da:94:ea:9a:60:2d:47:14:ca:50:64:cc:fc:
84:73:1a:07:08:f5:c7:90:9b:93:e3:bf:90:d5:e4:e7:57:a8:
d3:84:14:e6:14:8c:a1:c9:d9:67:52:d0:56:31:c9:a5:ad:03:
73:42:00:2a:3d:ca:8e:37:cb:52:e8:3a:a0:9d:75:ef:5b:d8:
8f:f2:4c:ce:ac:42:5e:5c:f1:52:d6:7a:b1:7f:42:eb:f9:dd:
cf:33:cf:ef:a6:78:d9:f5:29:9a:11:50:9f:7b:0c:02:5e:f9:
2f:75:b4:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:29 2025 by rpki-client on console.sobornost.net