Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/URdTEKxi4jFMpUQUrW6yHYDpY7o.roa
File: URdTEKxi4jFMpUQUrW6yHYDpY7o.roa (raw, json)
Hash identifier: VL6lKSEkjpF/1ibA16HHn4SWVTdbZw8YxawR+o/46Cs=
Subject key identifier: 51:17:53:10:AC:62:E2:31:4C:A5:44:14:AD:6E:B2:1D:80:E9:63:BA
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0194282368F0D860E5C9B1B7B835EAE99536
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/URdTEKxi4jFMpUQUrW6yHYDpY7o.roa
Signing time: Thu 02 Jan 2025 17:49:56 +0000
ROA not before: Thu 02 Jan 2025 17:49:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212238
IP address blocks: 31.57.206.0/24 maxlen: 24
31.58.90.0/24 maxlen: 24
31.58.168.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:23:68:f0:d8:60:e5:c9:b1:b7:b8:35:ea:e9:95:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jan 2 17:49:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=51175310ac62e2314ca54414ad6eb21d80e963ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:22:55:8d:94:ce:24:36:eb:f2:2c:3a:ce:1a:
d6:1a:fc:6a:db:8b:07:fe:ff:cd:50:73:bd:f5:02:
40:48:43:ca:90:20:e4:2c:24:e5:73:90:12:52:b0:
bb:03:41:00:e4:20:20:85:2b:9c:84:1e:4c:7d:ea:
f0:25:28:d0:2e:bf:64:03:9b:9b:19:1d:51:b8:26:
9b:d5:b5:e5:28:71:ff:4b:0d:75:3c:df:93:e7:5e:
fc:3a:31:c3:55:bc:54:32:7b:83:ce:3f:41:40:f6:
a7:f3:db:b1:56:10:98:cf:21:46:aa:9e:68:d3:7d:
94:d2:3e:c7:ec:71:8c:38:fb:bc:ea:6b:c3:d8:0a:
26:83:e0:d1:36:cb:0b:2c:22:80:f3:90:84:78:ab:
60:01:f0:fb:a3:02:03:f6:42:ed:f5:ff:2a:fc:f7:
e6:9a:6f:78:e7:78:81:e5:4f:9c:49:74:dd:8d:83:
15:7a:39:50:dd:a3:8b:87:57:fd:d4:ab:06:ca:ee:
a7:e6:18:64:27:97:28:5e:17:8e:ab:f3:af:2a:f7:
97:bc:2b:6c:fe:e5:fd:3b:79:f9:8a:1a:f2:e9:13:
b7:a1:ce:13:28:93:bb:8d:de:3b:5f:84:2d:63:62:
35:fb:c0:3c:99:da:3c:3e:74:04:78:ba:3d:8d:16:
45:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:17:53:10:AC:62:E2:31:4C:A5:44:14:AD:6E:B2:1D:80:E9:63:BA
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/URdTEKxi4jFMpUQUrW6yHYDpY7o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.57.206.0/24
31.58.90.0/24
31.58.168.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:a1:59:12:ab:f4:7d:04:dc:3c:4e:78:25:37:7c:ea:1f:52:
6c:87:21:cc:1d:4d:da:75:c2:63:6d:eb:b8:35:16:4b:18:04:
0d:25:47:56:13:d6:94:4e:4b:22:51:76:10:e3:e0:92:e5:35:
38:16:82:9d:e6:21:89:b3:25:39:11:42:5c:12:27:77:02:a9:
ab:3f:cc:27:7f:06:fd:5b:02:13:9e:d1:f3:ae:13:57:9e:93:
1a:7e:e8:96:6c:0f:9b:f3:20:16:63:fa:12:fe:27:93:3c:a8:
f9:a0:2c:41:47:8f:b9:01:f0:5d:73:69:73:da:3c:6b:d9:84:
fd:f6:d3:31:63:7f:fa:e3:ce:b2:10:a9:80:36:2d:8d:f5:bc:
5d:1f:be:95:f6:44:99:1f:b1:6b:03:4e:64:b6:62:bb:48:b2:
6e:e2:e2:5e:f9:be:59:c0:c0:4e:2f:b9:db:f4:65:02:1f:50:
9e:b9:01:b0:70:33:59:75:1f:23:bd:57:9f:89:29:da:35:4d:
43:3c:eb:03:9f:f2:95:dc:a4:dd:43:d2:f5:a0:01:8a:0f:1d:
c6:1f:02:4d:86:20:1a:36:4f:e9:a7:c6:9b:a7:a0:dc:06:3c:
97:dd:c6:10:15:2a:ab:08:31:ed:ba:c5:fb:03:d9:7b:6b:c6:
26:69:3d:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 08:46:42 2025 by rpki-client