Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/5ac21d-7616-4eef-85d7-63b52aa7f8da/1/sGGZndDmRMx-w7J8U5J6G3BFVOk.roa
File: sGGZndDmRMx-w7J8U5J6G3BFVOk.roa (raw, json)
Hash identifier: uF6jgyxh4ugT/l6V+mIZvN4IJ+X7IddAc7QQehPWZsY=
Subject key identifier: B0:61:99:9D:D0:E6:44:CC:7E:C3:B2:7C:53:92:7A:1B:70:45:54:E9
Certificate issuer: /CN=b732762a5e861e976de53d14786f39e3a669681b
Certificate serial: 0194AD574A75797EF664CE09E7E6FC19E936
Authority key identifier: B7:32:76:2A:5E:86:1E:97:6D:E5:3D:14:78:6F:39:E3:A6:69:68:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tzJ2Kl6GHpdt5T0UeG8546ZpaBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/5ac21d-7616-4eef-85d7-63b52aa7f8da/1/sGGZndDmRMx-w7J8U5J6G3BFVOk.roa
Signing time: Tue 28 Jan 2025 14:36:06 +0000
ROA not before: Tue 28 Jan 2025 14:36:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211661
IP address blocks: 31.185.97.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ad:57:4a:75:79:7e:f6:64:ce:09:e7:e6:fc:19:e9:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b732762a5e861e976de53d14786f39e3a669681b
Validity
Not Before: Jan 28 14:36:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b061999dd0e644cc7ec3b27c53927a1b704554e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:cd:06:0d:a7:d4:c0:dc:23:ea:67:ba:3f:9f:
c9:01:c8:14:3f:c7:30:fd:f0:78:72:5c:92:59:55:
0b:5f:18:f2:f5:ed:77:63:40:b5:e6:f1:1e:f6:a6:
af:35:10:a3:30:26:72:89:dd:9a:5b:2d:b4:43:4c:
bf:2e:45:0d:5b:1c:06:2c:95:7d:05:1d:8d:84:1b:
b1:63:66:68:c1:97:ea:1b:76:8a:cc:6e:1b:8e:e1:
15:32:9a:97:fb:5a:95:d4:ad:3c:be:db:c6:9b:50:
51:a4:3e:eb:02:33:c7:4b:ab:57:45:2b:b6:6f:a8:
85:43:ef:93:00:36:8c:98:cf:93:b4:1c:28:ff:4b:
39:a8:d0:f4:1c:6d:e1:21:cf:ec:5e:b7:4b:42:79:
05:96:55:42:da:c8:8e:5a:e2:2c:b6:54:da:05:04:
7d:fc:98:f4:1b:8f:40:9e:97:7c:95:08:5a:9a:1d:
8f:62:21:b8:62:76:f8:66:a0:5b:56:6c:96:bd:81:
c4:40:06:7f:d6:25:c0:b8:a6:a0:03:d6:53:a9:a9:
c1:82:ee:2d:c3:58:51:82:b1:89:e4:4b:f8:fe:a9:
a5:94:bb:a8:30:cd:12:41:c7:82:bb:c3:8a:67:eb:
03:2e:e4:f1:77:13:9b:69:ad:75:f0:57:8e:ee:4e:
2b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:61:99:9D:D0:E6:44:CC:7E:C3:B2:7C:53:92:7A:1B:70:45:54:E9
X509v3 Authority Key Identifier:
keyid:B7:32:76:2A:5E:86:1E:97:6D:E5:3D:14:78:6F:39:E3:A6:69:68:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tzJ2Kl6GHpdt5T0UeG8546ZpaBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/5ac21d-7616-4eef-85d7-63b52aa7f8da/1/sGGZndDmRMx-w7J8U5J6G3BFVOk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/5ac21d-7616-4eef-85d7-63b52aa7f8da/1/tzJ2Kl6GHpdt5T0UeG8546ZpaBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.185.97.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:75:95:f8:ed:41:ad:17:d1:80:15:d5:3b:dc:69:e0:cf:90:
d7:4f:b8:28:84:ba:b5:b4:e9:e1:d2:da:26:ca:43:d4:ff:90:
98:28:2e:c6:7e:0e:f3:65:2f:e8:c4:c1:44:b2:f0:88:1b:e5:
d5:aa:a5:4b:be:4f:ce:76:6e:52:65:7f:b4:28:ef:32:26:ce:
4c:d4:8c:d6:0c:27:27:b7:d9:20:bd:7b:2d:88:cb:e8:26:72:
e1:b2:3b:a9:f4:d7:e9:6a:68:ee:51:21:91:9d:0d:f0:3f:e8:
27:ca:62:a3:97:8b:b3:e0:22:37:e9:04:28:78:8b:b3:ff:e6:
64:27:d1:5b:1e:01:8e:ce:8c:bb:25:c1:4a:76:84:1f:a0:98:
4d:89:16:f1:8c:9f:02:06:73:21:e3:fa:df:9e:49:70:00:b6:
a0:e6:e2:f1:b4:8e:41:d8:79:49:67:87:8c:e6:6c:79:aa:a4:
33:ee:9c:c3:bf:3b:c8:8e:a0:d3:44:22:20:c2:69:da:6c:c0:
22:61:bf:cd:f3:16:75:2b:fb:65:35:b6:50:d3:f8:99:ce:e6:
f9:cd:ef:5b:8f:fc:26:3e:d2:fe:8b:8b:2d:be:05:d0:e1:27:
87:bb:19:1f:08:25:f3:4f:29:58:38:10:27:fb:a2:22:cb:0a:
17:c9:c4:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 12:03:51 2025 by rpki-client