Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/0ab167-3094-4103-8131-064414d0340f/1/t1EepmAv0dwDhiBnrHwtKtXN_Yc.roa
File: t1EepmAv0dwDhiBnrHwtKtXN_Yc.roa (raw, json)
Hash identifier: VYM0YIWjbegizmnVX9b/V1dVjXFx+63jBlM9wmcRlpQ=
Subject key identifier: B7:51:1E:A6:60:2F:D1:DC:03:86:20:67:AC:7C:2D:2A:D5:CD:FD:87
Certificate issuer: /CN=1232303d1638e0735240491aaa9e42b1887adaca
Certificate serial: 019426D9DC265BDFD064E17F64A20ECD3708
Authority key identifier: 12:32:30:3D:16:38:E0:73:52:40:49:1A:AA:9E:42:B1:88:7A:DA:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EjIwPRY44HNSQEkaqp5CsYh62so.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/0ab167-3094-4103-8131-064414d0340f/1/t1EepmAv0dwDhiBnrHwtKtXN_Yc.roa
Signing time: Thu 02 Jan 2025 11:49:59 +0000
ROA not before: Thu 02 Jan 2025 11:49:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50330
IP address blocks: 31.220.148.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:dc:26:5b:df:d0:64:e1:7f:64:a2:0e:cd:37:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1232303d1638e0735240491aaa9e42b1887adaca
Validity
Not Before: Jan 2 11:49:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b7511ea6602fd1dc03862067ac7c2d2ad5cdfd87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:45:9c:a8:c3:69:d7:e2:f0:a8:d4:e4:70:79:
e1:37:b0:36:c8:43:5c:c0:f3:92:e5:86:0c:38:c9:
f0:5d:ce:b2:51:e4:34:b9:1f:e9:1b:31:be:24:8e:
e2:91:21:54:c4:8e:ce:e2:23:3d:b3:14:15:c4:5f:
9b:8b:2e:97:32:95:da:e9:f6:13:56:1f:79:71:79:
8c:81:58:6e:11:12:0d:28:ea:8b:8f:d3:58:5c:23:
2c:13:a4:d4:44:8b:81:21:92:67:1c:8c:22:4e:2a:
a7:1b:34:29:f2:e1:89:de:fe:8a:83:d5:e8:b9:3e:
11:06:55:33:0b:9d:57:ef:0b:f5:ff:be:21:36:92:
27:95:bf:6d:18:f3:51:2e:20:58:c5:e6:f5:b1:a6:
5b:b5:ee:8e:90:1f:19:fe:85:f1:99:ab:af:17:a1:
8f:a6:91:c2:bb:65:73:e5:81:ac:cc:9f:7a:1f:f4:
ea:fe:ae:f5:11:85:ac:0b:f5:dd:af:0d:f4:7f:3b:
a8:a7:92:18:ea:24:be:43:24:5c:b0:a4:a2:8e:b9:
b4:73:df:d7:eb:06:e7:6b:b5:01:f6:e9:94:2f:ee:
3f:e8:d3:d4:0d:e5:64:b8:9f:79:fa:13:6f:a6:66:
24:cf:9d:33:c2:01:22:43:23:f0:8c:53:55:7d:88:
1d:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:51:1E:A6:60:2F:D1:DC:03:86:20:67:AC:7C:2D:2A:D5:CD:FD:87
X509v3 Authority Key Identifier:
keyid:12:32:30:3D:16:38:E0:73:52:40:49:1A:AA:9E:42:B1:88:7A:DA:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EjIwPRY44HNSQEkaqp5CsYh62so.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/0ab167-3094-4103-8131-064414d0340f/1/t1EepmAv0dwDhiBnrHwtKtXN_Yc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/0ab167-3094-4103-8131-064414d0340f/1/EjIwPRY44HNSQEkaqp5CsYh62so.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.220.148.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:ae:c9:1b:6e:b6:ae:b1:00:a1:c8:d8:2c:50:88:ab:2f:88:
b3:51:63:8b:98:b0:7d:0c:46:11:03:2a:97:b3:80:a0:94:ba:
47:18:00:b0:8a:f9:85:22:3a:ca:73:5f:f3:47:2c:60:09:7d:
e4:7a:e2:13:df:aa:0e:b7:5f:19:58:11:6a:1b:c6:a8:f3:66:
40:83:66:8e:97:ff:96:e0:4c:a8:f5:ae:f7:aa:a1:ae:21:60:
54:6a:ec:94:5c:ef:10:e4:d9:2b:4b:2b:8a:e4:48:51:d1:a5:
16:72:cb:2a:86:f4:4a:4f:8e:f2:81:d2:2e:7f:e8:e9:b9:39:
73:50:ae:94:1f:2a:21:8e:c1:29:ec:1d:47:ae:66:8e:16:ab:
fe:12:0f:11:19:05:a7:d2:97:71:cf:59:bd:a7:9e:c2:40:d7:
4f:17:db:1d:d6:7f:4b:ce:35:45:4a:52:23:93:a2:d3:6a:25:
4e:14:bc:fe:f4:97:5c:05:8f:59:d8:3c:4e:6b:c2:32:a2:20:
1d:8c:b2:b4:8f:65:bc:21:16:7c:4a:f3:28:c4:2c:7f:94:6a:
6b:08:73:6b:08:64:43:1a:0e:27:33:86:05:18:c1:1b:e4:5a:
60:ba:ec:5c:80:f1:e1:cd:b0:2e:f5:6a:50:3c:ac:a3:39:84:
ac:ad:77:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 04:17:19 2025 by rpki-client