Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/35064b-7a5a-4c74-8743-fd8660c4fd6e/1/15Cc0rkgOAAGUx8rhsWE0wocji4.roa
File: 15Cc0rkgOAAGUx8rhsWE0wocji4.roa (raw, json)
Hash identifier: w5RcK6dKOaSgSCjKMtRrWFYt+lmDT9Fb/OPGmzxAWAs=
Subject key identifier: D7:90:9C:D2:B9:20:38:00:06:53:1F:2B:86:C5:84:D3:0A:1C:8E:2E
Certificate issuer: /CN=83bce35561f541bda97e777e6879a1d704e7b42f
Certificate serial: 0194266BB4435F5B5865C5074A6E16754625
Authority key identifier: 83:BC:E3:55:61:F5:41:BD:A9:7E:77:7E:68:79:A1:D7:04:E7:B4:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g7zjVWH1Qb2pfnd-aHmh1wTntC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/35064b-7a5a-4c74-8743-fd8660c4fd6e/1/15Cc0rkgOAAGUx8rhsWE0wocji4.roa
Signing time: Thu 02 Jan 2025 09:49:40 +0000
ROA not before: Thu 02 Jan 2025 09:49:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 3259
IP address blocks: 31.44.208.0/24 maxlen: 24
31.44.209.0/24 maxlen: 24
31.44.210.0/24 maxlen: 24
31.44.212.0/24 maxlen: 24
31.44.213.0/24 maxlen: 24
31.44.216.0/24 maxlen: 24
31.44.217.0/24 maxlen: 24
31.44.218.0/24 maxlen: 24
31.44.219.0/24 maxlen: 24
31.44.220.0/22 maxlen: 22
45.156.132.0/22 maxlen: 22
194.5.108.0/22 maxlen: 24
194.5.108.0/24 maxlen: 24
194.5.109.0/24 maxlen: 24
194.5.110.0/24 maxlen: 24
194.5.111.0/24 maxlen: 24
194.5.112.0/24 maxlen: 24
194.5.113.0/24 maxlen: 24
194.5.114.0/24 maxlen: 24
194.5.115.0/24 maxlen: 24
194.5.116.0/24 maxlen: 24
194.5.117.0/24 maxlen: 24
194.5.118.0/24 maxlen: 24
194.5.119.0/24 maxlen: 24
194.5.120.0/24 maxlen: 24
194.5.121.0/24 maxlen: 24
194.5.122.0/24 maxlen: 24
194.5.123.0/24 maxlen: 24
194.5.124.0/24 maxlen: 24
194.5.125.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:b4:43:5f:5b:58:65:c5:07:4a:6e:16:75:46:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83bce35561f541bda97e777e6879a1d704e7b42f
Validity
Not Before: Jan 2 09:49:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d7909cd2b920380006531f2b86c584d30a1c8e2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ce:f2:7b:99:a3:a3:94:c2:1c:31:bc:73:b5:
bc:8a:a6:13:33:94:4c:a8:d2:d7:78:2b:b3:05:38:
6d:ef:69:a4:cf:97:80:f3:87:be:62:54:37:2c:84:
65:1a:f6:ac:13:78:00:67:ee:a8:bc:1a:3d:26:91:
20:fe:55:e6:b4:99:19:fc:28:c5:9b:12:90:04:c0:
f3:2e:e8:6e:96:47:88:35:3e:6d:b9:d4:06:6c:ba:
60:1e:08:d3:7e:c3:a6:8e:4e:cb:1d:1c:53:3c:db:
f1:be:b5:bc:51:5d:3b:ad:00:b8:d4:c8:2f:cc:25:
2b:da:d9:c3:b3:65:3f:b9:e0:95:2a:01:03:41:29:
07:73:be:28:63:97:55:4e:b7:c0:12:73:3d:ad:ba:
ae:dc:ba:a4:4b:9a:8e:af:27:15:b3:11:a8:3d:ff:
9b:ef:f3:b1:22:17:07:0f:28:35:f8:b5:e7:33:50:
d3:fb:34:f5:ce:dd:10:bc:30:40:af:da:c1:b3:1a:
38:35:9c:d0:d0:26:a8:9f:12:59:0b:88:13:87:3d:
ed:b5:db:db:28:20:ff:9f:3f:67:ad:11:d1:09:50:
2c:89:f3:72:8e:3c:8b:07:e0:19:c6:3f:58:ef:49:
2e:d2:1c:91:70:4f:70:c5:50:6a:c7:2e:70:c9:12:
be:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:90:9C:D2:B9:20:38:00:06:53:1F:2B:86:C5:84:D3:0A:1C:8E:2E
X509v3 Authority Key Identifier:
keyid:83:BC:E3:55:61:F5:41:BD:A9:7E:77:7E:68:79:A1:D7:04:E7:B4:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g7zjVWH1Qb2pfnd-aHmh1wTntC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/35064b-7a5a-4c74-8743-fd8660c4fd6e/1/15Cc0rkgOAAGUx8rhsWE0wocji4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/35064b-7a5a-4c74-8743-fd8660c4fd6e/1/g7zjVWH1Qb2pfnd-aHmh1wTntC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.44.208.0-31.44.210.255
31.44.212.0/23
31.44.216.0/21
45.156.132.0/22
194.5.108.0-194.5.125.255
Signature Algorithm: sha256WithRSAEncryption
04:d6:c5:35:a1:78:72:80:54:8d:96:13:b2:bc:f3:24:49:79:
9b:d3:f4:91:c9:0b:52:21:1b:fd:e6:1d:0b:09:92:7f:f7:8b:
03:95:bf:9e:70:93:bc:48:b6:92:cd:00:e5:26:e4:fa:f8:06:
92:93:f3:11:df:07:27:be:67:6f:c4:e8:1e:c5:8e:93:90:26:
af:4d:27:eb:86:47:23:6a:01:b7:e9:c2:0a:0e:e2:5e:de:06:
16:ab:82:46:3a:b9:d3:93:ec:3f:5b:56:85:e2:c1:22:3b:cc:
d0:35:ea:5a:68:3f:c4:1c:90:60:0a:3e:20:25:f6:75:5f:34:
76:27:2f:2b:74:c8:e4:46:7b:2e:a8:99:bb:d2:4b:20:45:da:
9e:cc:62:dd:44:f3:18:f3:a1:88:11:d2:ab:bd:11:6e:d4:e8:
00:72:75:f0:91:29:6a:c2:71:32:64:53:93:d0:4e:2a:fc:b9:
7f:df:a3:85:32:44:3c:e4:aa:34:a1:9e:c6:37:fc:e9:a3:08:
bc:aa:34:c4:5b:64:25:bc:11:ba:bc:29:4a:6f:84:22:ae:50:
74:97:af:22:82:37:eb:fe:91:41:9d:84:0e:7b:4f:5b:11:aa:
e2:54:ef:6a:78:3f:15:ec:67:30:f5:2b:a2:8c:3a:5b:5e:50:
36:d5:38:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:11:44 2025 by rpki-client