Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/vaR7uHCSgZgJBPzbcdNeSmGAvL0.roa
File: vaR7uHCSgZgJBPzbcdNeSmGAvL0.roa (raw, json)
Hash identifier: Bl1NtWnoKeahEmnlU7EoYOuFBpfLn6NHbdHBuh0aIpI=
Subject key identifier: BD:A4:7B:B8:70:92:81:98:09:04:FC:DB:71:D3:5E:4A:61:80:BC:BD
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01942824AF16C2ED03D72EA73BDE20A9F5FB
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/vaR7uHCSgZgJBPzbcdNeSmGAvL0.roa
Signing time: Thu 02 Jan 2025 17:51:20 +0000
ROA not before: Thu 02 Jan 2025 17:51:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204469
IP address blocks: 31.13.240.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:24:af:16:c2:ed:03:d7:2e:a7:3b:de:20:a9:f5:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 2 17:51:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bda47bb8709281980904fcdb71d35e4a6180bcbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:0e:de:cf:5c:bd:e6:55:c0:8f:2e:4b:59:c3:
24:d5:89:d0:61:73:8a:1a:5d:ab:1d:c5:d7:82:c2:
11:fb:a0:26:0e:b5:21:08:56:f7:e1:7e:49:ee:b6:
c8:6f:62:b6:ad:0f:9f:4d:9d:bd:80:92:2e:96:ab:
08:29:26:e8:92:1b:c1:c5:b3:27:52:11:77:98:0e:
dc:d0:17:8a:5f:a5:12:9d:4b:2c:8f:c3:7a:f7:c7:
78:a7:96:19:39:9c:c5:f9:46:83:34:4f:6f:1d:08:
27:96:27:1d:16:17:f0:11:e7:45:5f:91:c4:59:d0:
ce:12:cd:90:1c:65:47:6e:08:00:e3:c0:de:4f:e9:
2b:33:e8:0c:53:d6:e4:16:49:d6:26:a9:41:d4:99:
9c:b2:01:8e:65:c5:3d:89:3b:fe:a1:a9:8e:8c:32:
d4:1b:89:67:75:75:86:bc:e7:5a:89:fb:3a:9b:fc:
e3:7b:4f:6d:e2:a2:ae:a4:2f:42:47:03:15:79:2c:
c2:b4:25:b8:05:9c:45:72:d4:27:24:d2:d4:69:e7:
02:f1:1d:a1:62:4f:af:89:3a:ee:a4:97:e4:d3:98:
87:fa:dc:48:87:84:59:25:7a:80:48:4e:e7:38:26:
e8:90:64:c8:a9:81:6d:96:76:22:e5:1e:89:34:5b:
6c:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:A4:7B:B8:70:92:81:98:09:04:FC:DB:71:D3:5E:4A:61:80:BC:BD
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/vaR7uHCSgZgJBPzbcdNeSmGAvL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.240.0/24
Signature Algorithm: sha256WithRSAEncryption
21:38:31:84:d8:8d:b2:ac:8f:9b:91:93:7e:0b:7a:24:a8:0e:
ed:67:81:13:af:11:b4:a8:27:d7:d0:ce:4e:c2:7a:e6:5f:3f:
a1:39:50:79:5c:22:5c:54:42:0c:33:ef:b5:3a:c5:e7:e1:da:
b8:6e:c0:35:7e:02:cf:dc:68:32:c1:a4:9d:cf:be:48:f5:aa:
fd:6a:67:a5:6e:f4:b0:48:cf:9b:8a:28:cd:e5:7f:62:ac:dd:
f0:7a:f3:6d:d6:bb:9c:1a:62:a9:7d:6a:c7:44:0c:e0:f4:cf:
96:e0:00:cd:da:c9:10:7a:cd:71:69:03:f2:17:a2:c8:f7:d7:
cb:02:dd:31:49:de:28:d6:80:5c:64:5a:c4:f8:cd:dd:56:f5:
2c:88:42:e1:7d:47:bc:0b:de:2c:c2:79:ec:42:8e:28:37:8e:
38:90:28:9a:90:2d:a7:40:be:ac:ac:ca:c3:3b:fe:b9:49:92:
d6:e4:ac:a6:36:a1:33:ab:06:05:31:04:40:9c:29:48:68:d3:
4d:18:d4:8e:9f:4f:b3:22:8b:b4:28:8a:05:9e:bd:7f:9a:1d:
91:fd:0d:7b:41:b6:d1:2c:cf:3b:db:78:ec:6e:fc:95:54:ab:
56:76:32:f8:37:70:4c:27:3e:32:48:c0:59:64:c7:f4:3a:3d:
0c:a5:ed:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:53:24 2025 by rpki-client