Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/QDfmG8i5Vt4ei5mcoJiW94vl0KY.roa
File: QDfmG8i5Vt4ei5mcoJiW94vl0KY.roa (raw, json)
Hash identifier: TEjaqLR5cX93B9yWTMO6FIHSEJ3LEXONYJJ/qyyDdac=
Subject key identifier: 40:37:E6:1B:C8:B9:56:DE:1E:8B:99:9C:A0:98:96:F7:8B:E5:D0:A6
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 0194266C82D3C9B5E08003063388CBC38624
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/QDfmG8i5Vt4ei5mcoJiW94vl0KY.roa
Signing time: Thu 02 Jan 2025 09:50:33 +0000
ROA not before: Thu 02 Jan 2025 09:50:33 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62133
IP address blocks: 85.30.254.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6c:82:d3:c9:b5:e0:80:03:06:33:88:cb:c3:86:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 2 09:50:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4037e61bc8b956de1e8b999ca09896f78be5d0a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:a4:0f:85:d0:5f:ef:eb:c6:f6:6e:36:8d:2f:
e1:7a:18:be:18:ec:e5:e1:0f:0e:d8:cb:1a:58:26:
af:59:35:5e:cb:0e:0d:05:a2:65:61:dd:14:18:73:
af:14:90:10:2e:ba:42:75:d5:ac:e0:d6:5b:90:ed:
f4:8c:0f:7f:4b:b5:69:6b:43:b1:1c:fe:98:9c:7f:
87:73:07:37:58:4d:8a:44:0e:2a:d0:0a:1a:c4:ed:
76:51:30:17:3c:d7:46:61:0f:4d:76:ab:b0:eb:bf:
51:42:ae:46:11:ea:0e:ef:02:58:4a:68:b7:9e:66:
76:1f:d3:a9:aa:1c:18:cd:aa:b9:94:e9:30:61:4e:
8d:6b:8d:7f:fd:73:a3:b8:49:12:a0:2f:a9:2c:66:
66:86:fa:a1:5e:c5:2a:5f:af:b8:75:55:c0:3b:e4:
c3:ad:2a:2c:2b:45:47:3e:41:89:b3:36:c8:ac:e2:
bf:9f:93:21:f4:43:55:9e:fc:42:6e:87:cc:6f:3e:
ba:3c:a7:18:20:af:2f:f3:0e:cc:ee:d6:f7:f6:f5:
dd:eb:cb:96:37:c4:20:da:a6:81:07:69:a4:c5:f8:
c3:e3:5f:f4:6d:33:15:df:81:46:ee:f6:cd:f5:9f:
1c:54:11:35:ff:de:e2:38:d3:1f:2d:20:7c:57:be:
35:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:37:E6:1B:C8:B9:56:DE:1E:8B:99:9C:A0:98:96:F7:8B:E5:D0:A6
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/QDfmG8i5Vt4ei5mcoJiW94vl0KY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.30.254.0/24
Signature Algorithm: sha256WithRSAEncryption
54:b9:15:16:6c:21:6e:8d:b9:1a:68:ad:89:bf:eb:6f:81:65:
99:5d:84:c9:b4:13:6a:d6:dc:51:aa:86:ed:1e:39:31:3b:b5:
a3:ef:69:0a:d7:8c:89:a9:de:fb:1f:bc:1f:3f:9c:fc:f7:19:
c5:c9:fe:28:e6:c5:da:a9:6b:db:a6:bc:e9:97:af:cc:28:fd:
b0:72:d9:55:1e:ff:03:26:e4:8a:5b:3b:ba:47:76:65:af:a6:
1c:cd:9f:e8:8a:d4:32:29:15:48:38:5b:f6:36:b1:e4:99:51:
e3:08:82:fd:23:dc:f6:06:7e:08:ce:69:0c:68:36:c5:60:a7:
9d:cd:08:6e:05:b3:26:bf:5c:55:4a:2f:fe:bb:9a:cb:b4:08:
d8:32:c8:92:d8:98:26:a3:4a:1d:a3:7f:ff:3f:0f:9a:e5:18:
15:b8:07:39:97:ed:9f:ab:8e:63:b3:dc:3f:64:48:a3:60:67:
ae:51:ca:1e:8f:b2:ad:cf:69:96:e9:d1:9b:90:05:af:a0:33:
d2:e6:95:2d:19:f5:86:01:c2:bc:bb:54:e2:8d:37:64:be:6e:
bf:80:82:64:06:36:91:ca:e5:2d:5f:17:da:67:cc:17:94:50:
fe:6b:ba:21:58:94:cc:63:ab:a2:eb:82:65:ba:43:64:34:28:
fe:24:01:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:07 2025 by rpki-client on console.sobornost.net