Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/fc12ec-3eac-4455-91c9-f99c4e5c2953/1/QDWmx_ik_mzSmaKaFjMrEYPMK6E.roa
File: QDWmx_ik_mzSmaKaFjMrEYPMK6E.roa (raw, json)
Hash identifier: JZeZqTP/kJM8f2vw7vOLQj4DQbxRzuI8jkZc142sebw=
Subject key identifier: 40:35:A6:C7:F8:A4:FE:6C:D2:99:A2:9A:16:33:2B:11:83:CC:2B:A1
Certificate issuer: /CN=bfca53f0a587f36d89a9cab82bf5a5036c6140a2
Certificate serial: 019426D97F9F15934CB1FC022188153FC36A
Authority key identifier: BF:CA:53:F0:A5:87:F3:6D:89:A9:CA:B8:2B:F5:A5:03:6C:61:40:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v8pT8KWH822Jqcq4K_WlA2xhQKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/fc12ec-3eac-4455-91c9-f99c4e5c2953/1/QDWmx_ik_mzSmaKaFjMrEYPMK6E.roa
Signing time: Thu 02 Jan 2025 11:49:35 +0000
ROA not before: Thu 02 Jan 2025 11:49:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197751
IP address blocks: 195.149.117.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:7f:9f:15:93:4c:b1:fc:02:21:88:15:3f:c3:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfca53f0a587f36d89a9cab82bf5a5036c6140a2
Validity
Not Before: Jan 2 11:49:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4035a6c7f8a4fe6cd299a29a16332b1183cc2ba1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d5:3f:e8:ec:6c:60:24:35:5b:66:a4:9e:c4:
ab:c8:5d:10:20:92:df:75:6c:f7:41:7f:0d:33:15:
45:05:b6:03:83:a4:74:4b:4f:79:93:cc:3d:0a:28:
11:fc:34:b0:60:29:d9:9a:fe:0f:8b:8b:0e:8d:89:
ca:19:13:c1:50:86:19:81:c2:da:1b:9b:e5:62:ee:
0c:e0:dd:52:04:9b:41:89:9f:ee:e5:8e:1f:7e:a5:
e0:b3:5f:ac:10:64:ad:87:8c:ff:c6:b4:db:5d:95:
e3:24:8d:42:8b:86:e1:b7:10:0b:49:67:23:2f:1e:
32:55:ca:da:02:6a:d9:fd:18:b1:66:38:7d:cb:ea:
62:b3:bf:b7:fc:3d:8c:7a:60:7b:d7:bc:c7:8a:59:
9d:26:a9:bf:8b:f5:19:e4:fe:9e:b9:e8:a9:c7:e9:
13:75:0a:91:6d:8d:9a:14:b7:a4:1f:03:e8:a2:7c:
d4:24:8d:90:b5:b7:e8:dc:ef:6f:4d:f2:8e:85:59:
ed:9f:b8:51:be:15:43:e2:8d:4a:01:9a:d0:af:07:
9d:da:4f:b4:d4:3e:1f:6e:6a:ef:74:45:46:84:15:
94:6a:9c:37:cd:27:e3:f8:93:25:3c:41:9a:d6:ce:
a5:20:88:6e:4c:8f:28:5e:d5:1f:da:bc:14:05:4c:
1e:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:35:A6:C7:F8:A4:FE:6C:D2:99:A2:9A:16:33:2B:11:83:CC:2B:A1
X509v3 Authority Key Identifier:
keyid:BF:CA:53:F0:A5:87:F3:6D:89:A9:CA:B8:2B:F5:A5:03:6C:61:40:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v8pT8KWH822Jqcq4K_WlA2xhQKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/fc12ec-3eac-4455-91c9-f99c4e5c2953/1/QDWmx_ik_mzSmaKaFjMrEYPMK6E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/fc12ec-3eac-4455-91c9-f99c4e5c2953/1/v8pT8KWH822Jqcq4K_WlA2xhQKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.149.117.0/24
Signature Algorithm: sha256WithRSAEncryption
96:ef:69:16:7f:52:ff:e0:73:06:ac:16:34:d1:8e:f1:81:6d:
24:d6:5f:ef:cf:80:34:87:5c:7e:38:b0:b3:80:3b:bd:56:0b:
ec:c8:68:ad:2d:5a:cb:58:39:8e:9f:8d:74:0c:6a:f3:31:02:
ad:c0:cc:fd:fe:f6:24:87:83:3d:10:35:05:ce:2d:95:ad:46:
90:c0:09:84:6d:fc:4b:4c:20:d1:10:70:b7:94:1f:56:07:25:
ca:09:ed:c6:d4:79:bb:ab:59:6a:47:35:05:95:1e:2b:4a:c1:
52:d3:2e:1b:ae:de:a1:ea:b5:20:8b:99:f4:68:c5:df:6b:42:
67:8d:45:12:30:14:f7:c2:ae:90:30:15:3b:ec:30:8a:69:ea:
ff:fe:12:d6:97:e4:74:54:c1:79:6e:ca:00:6e:75:72:65:aa:
03:08:2c:47:11:60:61:f0:08:26:17:25:b6:1a:3d:19:03:d1:
e7:6e:98:1f:67:64:65:51:11:af:17:de:c1:dd:42:4d:c0:2f:
1e:2d:61:1b:c5:94:75:68:46:2d:6c:ff:72:52:07:aa:34:42:
ae:b0:f3:82:8d:77:18:6b:f2:17:21:08:86:ea:fd:0a:0f:f3:
4c:5a:b1:d4:3e:20:24:95:60:e8:be:cc:51:3b:b6:33:cc:0a:
38:f2:f6:6f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQm2X+fFZNMsfwCIYgVP8NqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmY2E1M2YwYTU4N2YzNmQ4OWE5Y2FiODJiZjVhNTAzNmM2
MTQwYTIwHhcNMjUwMTAyMTE0OTM1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MDM1YTZjN2Y4YTRmZTZjZDI5OWEyOWExNjMzMmIxMTgzY2MyYmExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAydU/6OxsYCQ1W2aknsSryF0QIJLf
dWz3QX8NMxVFBbYDg6R0S095k8w9CigR/DSwYCnZmv4Pi4sOjYnKGRPBUIYZgcLa
G5vlYu4M4N1SBJtBiZ/u5Y4ffqXgs1+sEGSth4z/xrTbXZXjJI1Ci4bhtxALSWcj
Lx4yVcraAmrZ/RixZjh9y+pis7+3/D2MemB717zHilmdJqm/i/UZ5P6eueipx+kT
dQqRbY2aFLekHwPoonzUJI2Qtbfo3O9vTfKOhVntn7hRvhVD4o1KAZrQrwed2k+0
1D4fbmrvdEVGhBWUapw3zSfj+JMlPEGa1s6lIIhuTI8oXtUf2rwUBUweBQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEA1psf4pP5s0pmimhYzKxGDzCuhMB8GA1UdIwQY
MBaAFL/KU/Clh/NtianKuCv1pQNsYUCiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdjhwVDhLV0g4MjJKcWNxNEtfV2xBMnhoUUtJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi9mYzEyZWMtM2VhYy00NDU1LTkxYzkt
Zjk5YzRlNWMyOTUzLzEvUURXbXhfaWtfbXpTbWFLYUZqTXJFWVBNSzZFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi9mYzEyZWMtM2VhYy00NDU1LTkxYzktZjk5YzRlNWMyOTUz
LzEvdjhwVDhLV0g4MjJKcWNxNEtfV2xBMnhoUUtJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw5V1MA0G
CSqGSIb3DQEBCwUAA4IBAQCW72kWf1L/4HMGrBY00Y7xgW0k1l/vz4A0h1x+OLCz
gDu9VgvsyGitLVrLWDmOn410DGrzMQKtwMz9/vYkh4M9EDUFzi2VrUaQwAmEbfxL
TCDREHC3lB9WByXKCe3G1Hm7q1lqRzUFlR4rSsFS0y4brt6h6rUgi5n0aMXfa0Jn
jUUSMBT3wq6QMBU77DCKaer//hLWl+R0VMF5bsoAbnVyZaoDCCxHEWBh8AgmFyW2
Gj0ZA9HnbpgfZ2RlURGvF97B3UJNwC8eLWEbxZR1aEYtbP9yUgeqNEKusPOCjXcY
a/IXIQiG6v0KD/NMWrHUPiAklWDovsxRO7YzzAo48vZv
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:30 2025 by rpki-client on console.sobornost.net