Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/5562a1-e1a4-4174-9918-baa05c8190de/1/M58q90VZFeP3jvyPYnq7UDFhR3E.roa
File: M58q90VZFeP3jvyPYnq7UDFhR3E.roa (raw, json)
Hash identifier: pfDDAToaRStBIBYW01WrjbiSm0zCrXjT/V6YwQttWeY=
Subject key identifier: 33:9F:2A:F7:45:59:15:E3:F7:8E:FC:8F:62:7A:BB:50:31:61:47:71
Certificate issuer: /CN=feedf2140674ae6ff3e464560c4956ab6e21adee
Certificate serial: 019424B2B16AAF0E58525C12260C92DA35CF
Authority key identifier: FE:ED:F2:14:06:74:AE:6F:F3:E4:64:56:0C:49:56:AB:6E:21:AD:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_u3yFAZ0rm_z5GRWDElWq24hre4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/5562a1-e1a4-4174-9918-baa05c8190de/1/M58q90VZFeP3jvyPYnq7UDFhR3E.roa
Signing time: Thu 02 Jan 2025 01:47:58 +0000
ROA not before: Thu 02 Jan 2025 01:47:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201285
IP address blocks: 185.196.31.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:b1:6a:af:0e:58:52:5c:12:26:0c:92:da:35:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=feedf2140674ae6ff3e464560c4956ab6e21adee
Validity
Not Before: Jan 2 01:47:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=339f2af7455915e3f78efc8f627abb5031614771
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:62:f2:a2:c6:95:ee:44:a2:8a:7a:9b:a7:3d:
66:8d:ac:ef:a8:17:89:7c:21:7e:45:90:30:40:47:
45:fb:c8:88:0d:1b:8a:fb:76:f9:e2:c2:e7:8b:57:
4a:52:15:95:88:65:bc:c3:2a:32:d5:f0:bd:2e:d8:
57:f2:46:f9:78:ed:88:13:1f:18:dc:88:b6:9d:e3:
b9:6e:35:14:3f:a6:5a:b1:38:2e:0f:5f:45:5e:8d:
1f:38:63:26:a9:be:89:73:5f:f2:f1:12:ff:bf:e8:
ca:d5:23:bc:7a:74:d3:b3:4a:94:9c:64:e7:78:23:
7e:5c:e0:ef:38:73:34:6a:a6:10:9b:7c:1f:d9:89:
6d:61:a1:97:57:24:16:c0:64:36:79:6c:45:ec:3d:
d9:ce:bc:eb:f8:73:be:4b:16:6e:6f:cd:00:07:0b:
f8:a6:53:62:3d:ac:45:87:90:3e:9a:90:d1:e7:cf:
85:0c:ee:77:89:c2:51:9a:0b:96:3b:ad:38:22:bd:
68:d9:e2:1a:1e:fb:c8:65:9a:fc:55:f9:08:97:21:
48:4b:9a:6b:d6:3c:ae:a3:55:8d:d7:9e:05:2e:3d:
b2:ce:74:2f:b9:30:97:30:53:5d:43:fb:48:2b:0e:
39:b7:55:cd:3c:13:28:8b:8b:17:13:78:4c:aa:42:
e0:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:9F:2A:F7:45:59:15:E3:F7:8E:FC:8F:62:7A:BB:50:31:61:47:71
X509v3 Authority Key Identifier:
keyid:FE:ED:F2:14:06:74:AE:6F:F3:E4:64:56:0C:49:56:AB:6E:21:AD:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_u3yFAZ0rm_z5GRWDElWq24hre4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/5562a1-e1a4-4174-9918-baa05c8190de/1/M58q90VZFeP3jvyPYnq7UDFhR3E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/5562a1-e1a4-4174-9918-baa05c8190de/1/_u3yFAZ0rm_z5GRWDElWq24hre4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.196.31.0/24
Signature Algorithm: sha256WithRSAEncryption
68:03:02:4d:73:01:19:ad:a1:67:33:9e:ac:a9:fd:da:71:ea:
62:5b:2e:f0:a4:25:54:06:f3:a3:4e:00:ad:6e:be:d1:ee:51:
79:c7:66:cf:8c:f4:86:38:ae:12:e3:09:07:d9:b1:73:f4:fa:
92:43:3e:01:1d:e0:b9:ea:8d:f0:95:21:89:e3:ca:45:34:d2:
20:88:e0:66:c5:1b:37:5c:55:82:c9:96:54:a9:e0:9a:13:c1:
a3:97:63:75:b8:bd:97:a5:6a:ae:19:bf:88:18:8a:99:4c:1c:
56:7e:e6:4a:16:80:0f:95:b5:09:03:67:b5:be:95:cd:88:b9:
d6:ee:48:a8:33:76:97:16:5b:c8:40:71:b7:69:e4:34:54:9c:
b8:57:8d:25:97:63:80:a4:6d:4c:21:12:93:d4:2d:9d:f1:81:
ce:6f:fd:af:20:9a:80:e7:d6:6f:42:08:73:a4:1d:d4:df:9c:
0c:a3:64:5b:74:79:66:a3:e0:9f:64:e3:94:0a:b3:87:6f:6b:
8b:ea:01:1a:ba:79:e0:86:42:cb:6e:20:53:22:06:07:59:87:
81:6b:6b:50:13:2b:c5:58:73:1a:ba:09:3f:0f:30:46:59:a8:
55:94:0f:6c:b7:31:e2:c0:bb:d0:2b:cf:bf:d1:22:39:73:e2:
18:fe:0d:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 02:27:35 2025 by rpki-client