Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/bc6892-1779-457c-9214-0aa9d97c8c98/1/wqLf4HxTBxblmV7dYjywZ9LSO_g.roa
File: wqLf4HxTBxblmV7dYjywZ9LSO_g.roa (raw, json)
Hash identifier: xrazM8n3J2DoAIHJJglhb+L4RSIj7Z+1Mi/FtQpdckQ=
Subject key identifier: C2:A2:DF:E0:7C:53:07:16:E5:99:5E:DD:62:3C:B0:67:D2:D2:3B:F8
Certificate issuer: /CN=429196310a7f7dd9999ec43e938fd906985a3f87
Certificate serial: 019422FC0106B042A8F6260F0C22406525B9
Authority key identifier: 42:91:96:31:0A:7F:7D:D9:99:9E:C4:3E:93:8F:D9:06:98:5A:3F:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpGWMQp_fdmZnsQ-k4_ZBphaP4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/bc6892-1779-457c-9214-0aa9d97c8c98/1/wqLf4HxTBxblmV7dYjywZ9LSO_g.roa
Signing time: Wed 01 Jan 2025 17:48:48 +0000
ROA not before: Wed 01 Jan 2025 17:48:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203109
IP address blocks: 185.144.124.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fc:01:06:b0:42:a8:f6:26:0f:0c:22:40:65:25:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=429196310a7f7dd9999ec43e938fd906985a3f87
Validity
Not Before: Jan 1 17:48:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c2a2dfe07c530716e5995edd623cb067d2d23bf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:91:74:d6:78:fe:b2:bd:39:4a:56:d9:69:b7:
16:ab:04:2c:cd:56:b1:ec:23:cb:6f:d8:25:dc:30:
42:4c:c3:57:fa:a4:24:17:e9:a4:5d:9f:36:49:cb:
58:39:d0:66:7c:ad:97:ee:9c:a9:aa:71:91:f4:0d:
2a:1b:89:13:5b:fa:02:44:d1:00:b7:c7:53:dd:e6:
a9:79:17:b8:ba:08:b6:f8:5c:b9:c1:2f:a2:47:32:
00:3b:c8:80:b8:90:73:5e:92:90:7e:b0:ec:9b:b8:
79:b3:a3:49:96:18:08:7c:61:db:9d:ea:a8:ff:3a:
f8:97:d1:e8:31:98:0b:4a:9d:e1:ce:47:cc:51:e5:
07:82:40:e2:e5:6c:75:46:43:b2:22:27:60:e4:b9:
31:1b:58:49:c6:28:c1:4c:65:c0:86:f5:33:0e:37:
2a:64:97:5a:a4:8c:33:7b:9e:f8:33:fe:74:bf:07:
45:be:5c:9e:ce:10:0b:48:c4:5e:70:49:17:d0:19:
1b:cb:1f:23:98:92:81:e1:db:66:ad:1b:64:de:15:
e1:50:13:f8:bf:26:33:64:d1:b9:bf:c4:d2:f9:38:
23:02:f9:4f:d4:33:ff:60:bd:2a:9f:0f:3a:1a:c0:
b7:07:bf:c6:1a:57:e1:05:f6:21:08:2b:4c:3f:0f:
2f:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:A2:DF:E0:7C:53:07:16:E5:99:5E:DD:62:3C:B0:67:D2:D2:3B:F8
X509v3 Authority Key Identifier:
keyid:42:91:96:31:0A:7F:7D:D9:99:9E:C4:3E:93:8F:D9:06:98:5A:3F:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpGWMQp_fdmZnsQ-k4_ZBphaP4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/bc6892-1779-457c-9214-0aa9d97c8c98/1/wqLf4HxTBxblmV7dYjywZ9LSO_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/bc6892-1779-457c-9214-0aa9d97c8c98/1/QpGWMQp_fdmZnsQ-k4_ZBphaP4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.124.0/22
Signature Algorithm: sha256WithRSAEncryption
b9:93:47:fc:b7:e1:03:83:af:92:58:78:a8:84:c2:e5:70:d6:
37:cb:23:b7:e7:9a:1e:fa:b9:01:66:67:41:a2:f4:27:e6:7b:
73:8e:69:ff:5a:d9:2c:44:b9:2c:d0:ae:f5:d9:82:d3:5b:ba:
4c:18:1c:8e:cf:fa:78:ba:d0:88:97:66:69:fb:84:f6:7a:18:
19:af:73:6f:32:8b:ba:49:59:73:19:45:e7:e7:86:d5:da:5e:
bd:d8:ee:77:ed:24:1f:7c:95:b1:ac:5a:28:14:46:f7:ed:da:
d7:25:03:fe:c7:5f:30:1c:f4:6d:6a:7f:4f:92:af:da:86:3d:
94:3d:f3:fa:84:e2:1c:c4:4f:70:e3:07:26:b5:5a:00:99:00:
fb:88:af:08:27:8b:b2:ad:3c:d9:59:62:d0:c0:b7:b1:12:a9:
2a:c3:de:81:03:b5:20:e4:82:a3:9e:4f:0c:dd:89:5d:fc:76:
ca:0e:4a:84:c6:96:e7:0c:ba:1b:96:53:d5:27:0f:4b:11:34:
92:6c:bc:30:3c:5a:98:41:eb:2a:38:a3:21:ab:a6:b3:b7:07:
1b:46:8e:c4:a0:8f:a8:6a:0a:48:0e:f4:b6:69:82:ab:d2:a7:
e5:75:e9:5d:4f:ed:1e:3f:f1:b1:e4:6a:7b:aa:c5:20:c1:59:
52:7f:ec:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:47 2025 by rpki-client on console.sobornost.net