Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/d048f6-341c-4c64-b3d9-15d5deb228dd/1/QLwaEaKn8Tf7StWNy4WpPVmEeBI.roa
File: QLwaEaKn8Tf7StWNy4WpPVmEeBI.roa (raw, json)
Hash identifier: f/BDrl1NjXGItLpeY7mHMzPXk+obCz96oNnjnGD6yJ8=
Subject key identifier: 40:BC:1A:11:A2:A7:F1:37:FB:4A:D5:8D:CB:85:A9:3D:59:84:78:12
Certificate issuer: /CN=1904ce28eae682c97acd2d862fee2897c3b096fd
Certificate serial: 0190E46248710E85FCFD5FEC8CC5D6C30830
Authority key identifier: 19:04:CE:28:EA:E6:82:C9:7A:CD:2D:86:2F:EE:28:97:C3:B0:96:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GQTOKOrmgsl6zS2GL-4ol8Owlv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/d048f6-341c-4c64-b3d9-15d5deb228dd/1/QLwaEaKn8Tf7StWNy4WpPVmEeBI.roa
Signing time: Wed 24 Jul 2024 10:56:04 +0000
ROA not before: Wed 24 Jul 2024 10:56:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44725
IP address blocks: 5.250.192.0/19 maxlen: 19
37.114.128.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e4:62:48:71:0e:85:fc:fd:5f:ec:8c:c5:d6:c3:08:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1904ce28eae682c97acd2d862fee2897c3b096fd
Validity
Not Before: Jul 24 10:56:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=40bc1a11a2a7f137fb4ad58dcb85a93d59847812
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d9:ba:1e:9e:81:86:61:58:a0:6a:2f:5b:50:
68:96:b3:2d:98:16:1c:27:b0:e8:dd:81:51:0e:92:
d0:21:01:ed:07:37:54:d5:63:0b:14:a7:5f:6a:a2:
6c:ad:c2:97:3a:34:a5:4c:9d:ba:c0:f5:e7:4d:68:
9c:ce:6e:61:b0:0b:3f:81:6a:34:44:01:a8:83:25:
de:d0:75:27:39:4c:9d:95:2e:c0:62:46:28:c3:51:
cf:28:10:80:15:ea:83:23:d1:14:b2:ee:d8:4e:ca:
ef:86:73:5c:0b:8a:1c:6a:03:74:bf:1d:e4:cc:84:
aa:fd:f7:d7:0c:be:17:fe:f4:da:99:d7:fd:bb:26:
9f:fa:d5:76:17:0e:82:4c:51:ac:49:27:ea:eb:63:
70:c3:51:5d:be:8b:ce:8d:63:19:f5:4e:ec:17:88:
f7:60:cd:4d:76:d4:0b:7b:ff:e7:6d:aa:18:cb:68:
db:88:2e:46:21:da:94:c0:c2:2b:bd:a0:eb:8f:87:
84:d6:0a:5f:5f:b1:8c:45:13:d0:4d:bf:9e:fd:fd:
6a:bb:36:75:19:95:2d:78:f3:38:f9:4e:48:70:d1:
9a:dd:a4:f5:fd:9c:b5:21:0b:98:e5:a0:7f:da:79:
7d:ec:cd:fe:8d:7e:82:38:7a:36:be:6e:19:4a:e6:
ec:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:BC:1A:11:A2:A7:F1:37:FB:4A:D5:8D:CB:85:A9:3D:59:84:78:12
X509v3 Authority Key Identifier:
keyid:19:04:CE:28:EA:E6:82:C9:7A:CD:2D:86:2F:EE:28:97:C3:B0:96:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GQTOKOrmgsl6zS2GL-4ol8Owlv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/d048f6-341c-4c64-b3d9-15d5deb228dd/1/QLwaEaKn8Tf7StWNy4WpPVmEeBI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/d048f6-341c-4c64-b3d9-15d5deb228dd/1/GQTOKOrmgsl6zS2GL-4ol8Owlv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.250.192.0/19
37.114.128.0/19
Signature Algorithm: sha256WithRSAEncryption
37:95:f8:d6:6b:94:b3:b1:da:d9:69:63:15:ce:03:36:6a:ae:
85:eb:cc:6b:63:65:51:f2:e5:21:55:59:39:4f:15:64:52:b2:
91:dc:ba:c6:f0:3a:5a:29:c7:9e:4e:95:0d:5a:1e:ba:5e:8e:
a9:17:51:73:25:a6:b0:ea:96:9b:a0:b5:a8:1d:b9:88:5c:d0:
90:aa:8e:2f:b1:64:7e:64:f6:1d:02:63:a4:7b:60:ed:6a:94:
ad:7e:da:2b:86:47:c9:bb:80:75:7c:a3:24:b6:15:db:b3:4c:
23:ec:bd:34:25:62:d9:9f:fe:da:30:33:57:40:4e:58:81:b1:
48:b7:ea:4c:2a:d4:25:0b:af:1a:d1:92:9a:cc:27:c9:fc:11:
1f:13:c6:15:41:7c:cf:b4:ef:c2:23:47:d6:df:65:68:8b:cd:
c7:5a:2b:83:68:b9:50:3f:52:c9:e3:dc:e8:d5:d1:14:e9:4c:
58:d1:7a:16:6a:37:1a:88:dd:8f:93:87:13:3d:44:54:92:99:
13:86:90:a6:6d:12:7e:5d:36:7e:a5:1b:b9:13:c0:8e:48:3e:
55:09:a9:8d:11:86:35:5e:c8:72:6b:67:11:b2:55:a1:b8:b2:
d0:4b:cb:2c:58:2f:00:6e:67:d4:89:38:5e:cd:7f:ae:77:64:
09:25:93:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:18 2024 by rpki-client on console.sobornost.net