Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/P13C2obUXAuh96uPawjDob2vdfQ.roa
File: P13C2obUXAuh96uPawjDob2vdfQ.roa (raw, json)
Hash identifier: vavbz0tQVoH5Wxyu9ZT3rAcsN8R6HnJ9jJuJ3hb4/GI=
Subject key identifier: 3F:5D:C2:DA:86:D4:5C:0B:A1:F7:AB:8F:6B:08:C3:A1:BD:AF:75:F4
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 019492F65D69DF3BCD5D94A953D18C415789
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/P13C2obUXAuh96uPawjDob2vdfQ.roa
Signing time: Thu 23 Jan 2025 11:40:06 +0000
ROA not before: Thu 23 Jan 2025 11:40:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 174
IP address blocks: 31.13.193.0/24 maxlen: 24
31.13.225.0/24 maxlen: 24
37.60.141.0/24 maxlen: 24
87.120.107.0/24 maxlen: 24
87.120.191.0/24 maxlen: 24
87.121.70.0/23 maxlen: 24
87.121.88.0/24 maxlen: 24
87.121.144.0/23 maxlen: 24
93.123.45.0/24 maxlen: 24
93.123.46.0/24 maxlen: 24
93.123.47.0/24 maxlen: 24
94.156.11.0/24 maxlen: 24
94.156.61.0/24 maxlen: 24
94.156.92.0/24 maxlen: 24
94.156.162.0/23 maxlen: 24
94.156.164.0/23 maxlen: 24
141.98.1.0/24 maxlen: 24
212.73.149.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:92:f6:5d:69:df:3b:cd:5d:94:a9:53:d1:8c:41:57:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 23 11:40:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3f5dc2da86d45c0ba1f7ab8f6b08c3a1bdaf75f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:2a:31:d3:12:32:1b:87:de:b3:ac:a4:96:45:
46:66:b7:3a:5a:01:ad:b6:c6:3c:0e:9c:6b:15:25:
9c:a8:12:9a:09:02:08:e8:1a:12:b0:79:41:3a:9e:
ae:a1:57:9b:e2:7a:18:d2:da:6a:12:dc:ae:23:fa:
62:db:34:14:2d:87:b2:ec:fe:d3:84:4e:8d:05:95:
e9:85:0c:b2:7e:9c:bd:7f:d8:a7:20:08:ea:80:75:
b1:6a:c7:70:77:9d:9f:25:ce:50:0c:51:fa:0b:b6:
42:0c:65:ff:37:e9:51:86:2f:e7:59:8f:f5:e6:af:
0d:65:72:e8:05:eb:85:d6:e6:35:8c:e6:f6:61:2d:
ca:2d:8e:a9:51:cc:3c:52:7c:70:67:e5:75:e9:b4:
ce:0a:61:72:7a:9b:6f:3a:98:72:2e:bd:8b:a3:71:
e2:e0:6a:82:96:1c:18:b9:d3:36:39:ab:e7:fb:0b:
a2:ff:b1:11:f3:3f:61:c9:c7:00:52:41:40:16:18:
2f:2c:bb:a2:00:c3:47:9c:56:f9:c2:84:71:2b:c1:
8a:4a:d4:d0:d0:72:f0:ea:78:b7:06:04:cf:ed:2b:
e6:c8:81:48:72:06:77:12:00:69:f7:c9:ed:36:3d:
95:6d:37:ab:ad:99:e0:0e:f8:d0:a1:31:e0:22:41:
9f:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:5D:C2:DA:86:D4:5C:0B:A1:F7:AB:8F:6B:08:C3:A1:BD:AF:75:F4
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/P13C2obUXAuh96uPawjDob2vdfQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.193.0/24
31.13.225.0/24
37.60.141.0/24
87.120.107.0/24
87.120.191.0/24
87.121.70.0/23
87.121.88.0/24
87.121.144.0/23
93.123.45.0-93.123.47.255
94.156.11.0/24
94.156.61.0/24
94.156.92.0/24
94.156.162.0-94.156.165.255
141.98.1.0/24
212.73.149.0/24
Signature Algorithm: sha256WithRSAEncryption
24:98:cc:5d:29:90:09:cc:30:eb:d1:14:67:fc:e1:ee:7f:24:
79:34:ab:af:87:1d:ff:d1:6f:08:5d:0b:65:d0:91:01:17:de:
83:4c:28:a1:da:75:81:be:b0:4d:8a:7e:55:8f:6b:24:e0:9a:
39:ab:f3:48:ca:05:bd:d1:5b:6f:f7:54:6a:3c:77:20:6f:a0:
fa:81:da:59:73:db:9b:41:ca:6b:ff:03:fc:fa:7e:29:b1:75:
a9:5d:c3:c0:50:a0:a9:df:fa:29:7a:38:17:d3:14:37:17:3c:
27:8a:b8:8b:43:90:79:0f:eb:0e:22:e0:dd:48:96:c5:8b:52:
a4:e6:15:fa:f5:55:dd:8f:ed:75:63:95:a6:f8:5a:b3:eb:66:
fc:2e:5c:8d:88:b6:c5:8b:13:e6:8f:22:60:52:7a:49:26:71:
ec:ce:f8:d6:f1:71:5e:58:77:70:d6:a4:f6:d3:75:5b:5b:55:
74:dd:b4:21:5f:57:80:a7:65:13:b5:46:0b:dd:f5:f4:e3:db:
98:0c:70:19:7e:29:3a:a2:2b:fd:26:d3:e3:2a:1d:ea:36:77:
2d:24:4b:cc:1b:ab:43:44:ea:12:41:2c:5f:5d:a2:75:11:c7:
b1:5b:5a:91:5f:df:bc:f0:bb:2f:8e:76:75:db:a8:24:c4:c5:
a2:0a:2a:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 08:54:15 2025 by rpki-client