Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/4SdJi3BPt8-RDec3IP7ET9slx0Q.roa
File: 4SdJi3BPt8-RDec3IP7ET9slx0Q.roa (raw, json)
Hash identifier: QGo99RDwnHzRGoxgfvvtNisf3X6cgnQ851GWbQCaLvs=
Subject key identifier: E1:27:49:8B:70:4F:B7:CF:91:0D:E7:37:20:FE:C4:4F:DB:25:C7:44
Certificate issuer: /CN=aedaeea9117a1d5ccc320222955a09faa0798fd9
Certificate serial: 019423D71C9E1422C6528503EC2A1F57CEF5
Authority key identifier: AE:DA:EE:A9:11:7A:1D:5C:CC:32:02:22:95:5A:09:FA:A0:79:8F:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rtruqRF6HVzMMgIilVoJ-qB5j9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/4SdJi3BPt8-RDec3IP7ET9slx0Q.roa
Signing time: Wed 01 Jan 2025 21:48:07 +0000
ROA not before: Wed 01 Jan 2025 21:48:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 55096
IP address blocks: 31.186.245.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:1c:9e:14:22:c6:52:85:03:ec:2a:1f:57:ce:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aedaeea9117a1d5ccc320222955a09faa0798fd9
Validity
Not Before: Jan 1 21:48:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e127498b704fb7cf910de73720fec44fdb25c744
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:8a:82:96:70:25:f6:18:cf:5a:04:2c:d8:35:
32:9b:5e:28:a8:93:d2:e3:b9:c0:32:da:fb:e6:fd:
14:c1:76:bc:01:86:04:b5:c0:c2:a1:55:a9:8f:ee:
06:93:50:67:a0:9b:7c:48:6c:6c:1a:7a:f9:d8:3b:
07:7b:8e:77:b7:4d:c9:39:3c:6b:84:24:f5:7f:cf:
a3:b4:15:3f:e0:24:46:c5:cc:ba:12:3b:f6:0d:86:
c9:3f:71:71:be:49:98:ec:d8:ba:73:fe:ac:5a:e0:
15:75:31:57:08:95:b2:03:57:a8:ae:62:19:c7:4e:
c5:cb:8a:df:a2:ea:ce:91:c6:3a:ad:ed:b6:24:99:
70:a4:b9:02:de:b1:69:50:24:92:fb:5b:7e:fe:ca:
2f:91:fe:b8:13:49:86:c6:d5:e7:ef:58:71:8e:ce:
53:c0:52:99:7c:3b:82:da:f4:8a:a2:8e:f1:f0:67:
5f:c2:fd:25:7a:af:dc:6d:2b:ee:9b:a8:eb:bf:64:
61:9c:0f:ca:8a:f8:d1:e8:54:00:28:6e:f2:94:af:
b6:0c:0e:db:0d:e1:4a:0a:7b:0e:36:1d:d2:4b:b4:
b7:39:0a:aa:4a:e2:d1:f8:ed:99:33:bf:30:3f:44:
2c:ae:09:d5:89:d2:76:84:77:63:e9:d7:33:de:95:
41:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:27:49:8B:70:4F:B7:CF:91:0D:E7:37:20:FE:C4:4F:DB:25:C7:44
X509v3 Authority Key Identifier:
keyid:AE:DA:EE:A9:11:7A:1D:5C:CC:32:02:22:95:5A:09:FA:A0:79:8F:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rtruqRF6HVzMMgIilVoJ-qB5j9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/4SdJi3BPt8-RDec3IP7ET9slx0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/rtruqRF6HVzMMgIilVoJ-qB5j9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.186.245.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:5d:37:72:9d:f8:69:41:38:67:d5:a9:85:44:06:c6:bb:ce:
46:1c:9e:54:cc:c2:9e:0b:35:63:d5:9e:91:a3:0e:72:bb:79:
44:d2:5e:28:47:5b:50:c6:b3:a5:eb:de:aa:3b:08:5b:67:12:
de:27:9f:bf:ad:2a:fa:4d:4b:4c:d2:f1:43:2a:0b:0c:21:ab:
f2:4e:3b:53:c6:46:00:7c:ea:9a:22:23:2b:ac:d0:a0:a3:b0:
68:2d:bd:08:60:55:80:8c:27:c9:bd:de:e3:f9:dc:14:6c:47:
d2:79:74:50:e6:2f:3c:1a:7c:b4:1e:23:14:ff:07:c9:0a:fc:
ed:37:2a:30:60:77:28:6e:f7:3e:88:d3:3b:64:51:bb:49:68:
62:cd:20:89:d1:f9:83:8a:63:44:8d:a9:1d:07:3c:42:6c:42:
44:4d:c8:1c:59:23:97:5e:2a:d7:73:68:f4:5a:5d:96:1d:3b:
3b:0b:2e:27:19:ff:11:36:f6:30:09:d3:20:35:62:8a:99:41:
7a:c7:2b:de:ec:32:70:a4:c6:f4:46:c4:1d:76:cc:28:4e:e3:
1c:b2:6c:96:67:b3:9d:11:f3:9a:5f:38:61:eb:23:e0:f7:da:
bf:0b:73:aa:7f:10:31:69:13:26:a0:fc:9e:62:83:61:c0:1e:
2c:e3:02:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 13:11:46 2025 by rpki-client