Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/92d33c-8a69-4db3-b628-b62db772bbfa/1/c4TFBL4EL5IADMniHZ0GVJJb_4Q.roa
File: c4TFBL4EL5IADMniHZ0GVJJb_4Q.roa (raw, json)
Hash identifier: ZOFMhPaK+bFDPt6Ze8LlHlzvSqEu3m14aAhhA1S86RQ=
Subject key identifier: 73:84:C5:04:BE:04:2F:92:00:0C:C9:E2:1D:9D:06:54:92:5B:FF:84
Certificate issuer: /CN=078ed1a0153762a922e55e0f948cd1a5411c7a89
Certificate serial: 019427B59892134F33EB023A70DC909F9684
Authority key identifier: 07:8E:D1:A0:15:37:62:A9:22:E5:5E:0F:94:8C:D1:A5:41:1C:7A:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B47RoBU3Yqki5V4PlIzRpUEceok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/92d33c-8a69-4db3-b628-b62db772bbfa/1/c4TFBL4EL5IADMniHZ0GVJJb_4Q.roa
Signing time: Thu 02 Jan 2025 15:49:59 +0000
ROA not before: Thu 02 Jan 2025 15:49:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211741
IP address blocks: 31.43.188.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:98:92:13:4f:33:eb:02:3a:70:dc:90:9f:96:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=078ed1a0153762a922e55e0f948cd1a5411c7a89
Validity
Not Before: Jan 2 15:49:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7384c504be042f92000cc9e21d9d0654925bff84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:7c:fc:b4:f8:45:a1:d8:c8:90:6d:c5:7d:99:
47:4b:a6:a5:88:9a:80:52:a0:44:a5:18:a2:a3:f0:
32:2b:a6:dc:65:17:12:d6:3e:27:60:c5:cd:a3:9c:
a3:2c:ad:43:5f:b4:78:21:17:cd:d2:83:13:30:56:
aa:b7:0f:be:b5:a9:fa:a6:b3:c1:ca:43:ec:b1:b8:
01:d0:c8:85:95:2c:12:99:6c:54:72:32:13:1a:7e:
87:d0:2a:f5:99:f8:67:5a:32:78:e7:63:b9:76:d4:
85:a3:96:16:ef:61:bb:f3:3a:2c:89:66:0e:17:a4:
dd:77:f6:6e:e6:95:5a:f8:52:99:13:63:49:ff:d3:
68:37:b7:0f:f2:ed:29:be:6f:01:45:a3:8e:8a:46:
71:9e:2a:0e:b1:8a:f6:49:88:ad:48:95:b1:82:ad:
94:73:73:07:ee:38:2b:1f:30:f6:5f:c8:89:fc:a1:
70:9c:96:ef:30:85:26:fc:95:d8:3d:6e:e4:b6:ac:
41:5a:a8:aa:c5:64:69:89:f4:bf:d6:11:8b:75:43:
7b:98:40:b2:07:44:80:6b:f1:f6:3a:f0:52:e2:d3:
90:3c:f9:f6:e1:5a:c7:02:9f:55:ef:5f:bb:fd:05:
18:d3:67:e7:f0:6b:19:e8:be:75:4d:ea:c2:8b:05:
c5:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:84:C5:04:BE:04:2F:92:00:0C:C9:E2:1D:9D:06:54:92:5B:FF:84
X509v3 Authority Key Identifier:
keyid:07:8E:D1:A0:15:37:62:A9:22:E5:5E:0F:94:8C:D1:A5:41:1C:7A:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B47RoBU3Yqki5V4PlIzRpUEceok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/92d33c-8a69-4db3-b628-b62db772bbfa/1/c4TFBL4EL5IADMniHZ0GVJJb_4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/92d33c-8a69-4db3-b628-b62db772bbfa/1/B47RoBU3Yqki5V4PlIzRpUEceok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.43.188.0/23
Signature Algorithm: sha256WithRSAEncryption
65:a2:cf:bc:d9:ab:33:5d:41:ba:24:26:a0:79:e8:5f:c9:36:
50:dd:3e:b7:ef:31:1e:4a:72:66:01:b4:2b:e2:35:eb:3d:04:
71:4a:8b:a5:9a:53:45:55:66:41:d7:ab:2e:8c:6c:86:18:aa:
27:06:94:7a:cc:64:5b:fa:e6:d4:9d:2a:9e:52:4a:0e:2e:59:
5a:df:f7:ef:54:d8:54:4f:6c:f3:9f:8c:13:da:db:02:69:aa:
9e:6a:6c:50:4b:21:c5:f4:53:37:b8:ec:bd:cd:81:c9:d7:86:
e5:8f:1e:ec:0f:38:f3:56:ba:20:f5:df:f3:51:07:7e:a1:6b:
d4:16:89:ce:77:9d:33:da:cd:9c:b0:b6:50:4c:5d:7e:4c:22:
e7:16:95:d9:f2:9a:85:cf:12:c8:82:08:7a:9c:92:51:e6:48:
90:05:6d:15:31:6d:52:51:68:d8:3a:a4:0e:2d:4c:f4:84:7e:
50:02:46:5c:24:2f:c5:fb:5c:03:2a:8e:7e:cb:ef:6b:e8:11:
81:ca:7d:53:d0:5f:14:f4:89:27:0b:13:da:e2:80:1a:fb:6e:
47:4a:fe:4f:15:7f:8f:22:28:dd:f4:58:ef:51:b3:71:35:9c:
11:ff:a4:63:0c:9e:81:c5:49:d6:13:9b:fb:07:e2:a3:93:31:
02:09:98:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 18:02:40 2025 by rpki-client