Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/a24874-98d3-4734-8efa-8c253c459271/1/_PvMfBQqU6jjldV1ydf8UKmzB00.roa
File: _PvMfBQqU6jjldV1ydf8UKmzB00.roa (raw, json)
Hash identifier: 24OxToSBrVSS6AXxMxL0W6j/CNzWhFy38ZdtMKAbWe4=
Subject key identifier: FC:FB:CC:7C:14:2A:53:A8:E3:95:D5:75:C9:D7:FC:50:A9:B3:07:4D
Certificate issuer: /CN=b61a72bfa4caabcba4ec0484137a516f9f344346
Certificate serial: 019425FDEE3C8578D48EAC4B41083113EA15
Authority key identifier: B6:1A:72:BF:A4:CA:AB:CB:A4:EC:04:84:13:7A:51:6F:9F:34:43:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/thpyv6TKq8uk7ASEE3pRb580Q0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/a24874-98d3-4734-8efa-8c253c459271/1/_PvMfBQqU6jjldV1ydf8UKmzB00.roa
Signing time: Thu 02 Jan 2025 07:49:46 +0000
ROA not before: Thu 02 Jan 2025 07:49:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 56652
IP address blocks: 31.41.48.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:ee:3c:85:78:d4:8e:ac:4b:41:08:31:13:ea:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b61a72bfa4caabcba4ec0484137a516f9f344346
Validity
Not Before: Jan 2 07:49:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fcfbcc7c142a53a8e395d575c9d7fc50a9b3074d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:b5:42:9e:af:5e:f8:87:71:ef:97:ad:90:53:
42:2c:a5:a9:13:83:86:c5:88:22:2b:8a:38:61:f4:
fc:ff:4d:44:74:f9:4d:03:0d:3a:bb:ce:c5:bc:85:
9b:d3:cc:5c:7e:0b:f7:74:63:e0:03:47:c3:4b:72:
1d:c4:c4:70:72:03:c8:b7:6f:67:84:2f:d2:da:3e:
3a:5b:3a:8e:58:8b:65:34:26:33:a6:93:27:00:23:
54:59:fa:4e:a3:33:45:f1:ea:54:2f:f1:e6:e3:c2:
f0:71:da:a7:75:7d:43:a8:80:41:e1:b4:3b:b1:10:
55:84:71:74:49:09:72:b3:89:0c:6d:bc:41:73:37:
cc:76:a6:30:a2:da:c3:64:46:cc:33:53:65:a1:47:
bc:4e:b2:49:d7:46:da:95:b5:10:d9:12:03:eb:a1:
57:dc:71:f2:ff:cb:5d:8b:4f:b3:4d:a3:9e:f6:62:
00:0c:ce:4a:4e:f8:67:68:ec:7d:cb:80:73:b0:3b:
88:15:99:55:89:48:3f:f6:5f:23:c6:23:cd:3d:0a:
9d:c6:9b:fb:24:c9:0e:0f:2c:c3:fc:f1:1d:47:8f:
56:38:30:dc:8b:b4:1e:71:f5:b6:ce:cf:33:94:c4:
ad:a3:7c:01:b1:a4:1b:02:c9:57:7e:50:e8:f4:6c:
52:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:FB:CC:7C:14:2A:53:A8:E3:95:D5:75:C9:D7:FC:50:A9:B3:07:4D
X509v3 Authority Key Identifier:
keyid:B6:1A:72:BF:A4:CA:AB:CB:A4:EC:04:84:13:7A:51:6F:9F:34:43:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/thpyv6TKq8uk7ASEE3pRb580Q0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/a24874-98d3-4734-8efa-8c253c459271/1/_PvMfBQqU6jjldV1ydf8UKmzB00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/a24874-98d3-4734-8efa-8c253c459271/1/thpyv6TKq8uk7ASEE3pRb580Q0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.41.48.0/21
Signature Algorithm: sha256WithRSAEncryption
9c:81:56:f8:4d:52:42:40:ee:d4:80:da:c1:85:7d:99:bd:a2:
a1:c3:1c:14:e5:a8:14:00:e8:a2:48:e7:3f:d4:79:cd:fd:7d:
a1:8c:95:0f:03:34:27:6b:98:c5:82:5a:7b:47:c9:78:63:34:
60:9f:36:f8:40:da:40:33:cb:89:94:98:a7:9d:d8:93:87:c9:
74:37:40:f2:4a:07:47:40:f3:25:45:1e:3e:3a:d8:2d:25:d8:
f2:a2:69:be:b1:65:c0:09:24:21:91:5a:39:f2:d6:cf:45:51:
fc:18:65:04:7c:db:07:e8:f8:da:28:2f:9e:69:5b:ba:fb:61:
44:8f:db:0a:b7:58:2d:54:6c:6c:10:80:04:a9:89:53:b2:43:
7e:1e:90:e3:b3:12:7a:2c:72:ef:8f:b5:87:34:bb:a5:7b:04:
ec:7b:75:ee:3a:e2:f4:26:de:ca:c4:94:1b:cf:3a:ef:da:77:
8b:99:95:ca:48:b0:92:5a:75:aa:75:72:94:26:e8:c1:6f:a9:
56:ba:54:16:54:c0:c1:84:e8:74:af:4f:74:de:59:48:03:1f:
41:3a:7d:64:d5:20:35:d8:da:f3:86:86:26:fc:a1:d8:3f:72:
bc:08:f6:a8:8b:ee:90:3b:8c:4d:c7:bf:4c:48:c9:8d:13:b2:
cd:0f:6c:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 04:03:36 2025 by rpki-client