Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PO28b84Fwgrcv1l74Guqr6l2m8M.roa
File: PO28b84Fwgrcv1l74Guqr6l2m8M.roa (raw, json)
Hash identifier: RZAJ+qOBVgQpY78iXhIvgPgQdcc7fynPdEBI8uXWWHQ=
Subject key identifier: 3C:ED:BC:6F:CE:05:C2:0A:DC:BF:59:7B:E0:6B:AA:AF:A9:76:9B:C3
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0194CB5A6565835E9C9227EEF09F1C3DB3E6
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PO28b84Fwgrcv1l74Guqr6l2m8M.roa
Signing time: Mon 03 Feb 2025 10:28:06 +0000
ROA not before: Mon 03 Feb 2025 10:28:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 31530
IP address blocks: 5.231.37.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:cb:5a:65:65:83:5e:9c:92:27:ee:f0:9f:1c:3d:b3:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Feb 3 10:28:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3cedbc6fce05c20adcbf597be06baaafa9769bc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:4b:09:d7:38:cb:3b:4f:2b:2e:b7:1a:62:97:
ba:40:a3:aa:25:d8:d8:c5:7a:57:c3:f7:03:c6:8a:
9e:9f:c0:1d:62:48:64:b4:0f:10:50:52:62:b9:e4:
18:f2:ac:a6:22:cc:26:52:43:91:31:0f:5d:dc:f0:
66:48:d6:84:a4:05:bc:f9:25:ab:67:2c:83:cc:db:
83:85:fe:43:f4:9a:8a:d5:73:17:32:f7:33:42:66:
b9:5b:e9:9d:58:76:a2:3c:71:6f:c3:66:af:d3:1a:
92:0e:bf:7e:99:d9:ec:dd:8e:e5:21:49:db:a5:f0:
ca:1f:14:4e:b4:e9:da:5d:ec:ec:f8:26:2d:98:8a:
13:82:18:57:91:bd:5f:80:ed:7c:36:0b:19:b7:43:
bd:19:cb:2a:e3:a3:5c:fa:dd:95:c0:70:c8:aa:34:
fd:59:01:a3:7d:da:e5:e7:6a:df:9b:75:79:3d:dc:
25:f3:b3:30:eb:38:24:c8:5e:d2:49:d8:01:2b:bb:
c7:1f:03:b6:eb:1e:b4:00:2e:ea:54:37:32:65:00:
53:82:3a:42:e3:2d:89:6c:b4:c9:b2:80:9c:f7:dc:
41:31:e6:67:ff:72:44:cc:d5:a9:52:62:07:2f:41:
f0:3b:a3:f7:75:7a:9c:ec:91:7d:3c:81:a7:63:e8:
13:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:ED:BC:6F:CE:05:C2:0A:DC:BF:59:7B:E0:6B:AA:AF:A9:76:9B:C3
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PO28b84Fwgrcv1l74Guqr6l2m8M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.231.37.0/24
Signature Algorithm: sha256WithRSAEncryption
33:6e:4c:05:f8:c1:0b:72:f2:65:b1:62:9a:83:2f:fd:d9:34:
c2:8f:46:e0:ce:2e:36:ab:e3:f8:d8:9b:57:88:87:f6:c6:2f:
b2:05:ba:1c:be:4b:52:72:b9:6e:28:08:5f:4c:21:5e:0c:c4:
6a:22:00:f9:34:3b:7f:9f:10:ae:3b:02:94:28:a3:8c:e7:6f:
7c:77:94:1b:82:50:e0:7c:bc:3b:69:ba:a6:f6:f8:46:df:44:
f4:c0:57:e1:82:83:7b:a9:25:83:7b:7d:94:47:7c:2f:61:dc:
84:9f:96:2f:3f:4e:44:59:93:21:18:f4:32:3d:a3:3a:56:62:
7c:f9:e8:81:cb:ad:24:3a:ab:49:57:10:7c:42:89:d6:0c:e1:
50:72:3a:4e:2f:42:7e:5c:b5:3c:f9:ef:7d:9b:de:95:28:5b:
68:9b:f0:b9:10:36:1f:4d:d3:17:2e:f3:35:20:ed:8a:a3:0b:
bb:28:3c:82:5b:3c:11:ab:39:55:29:80:95:75:31:f0:da:b5:
8d:40:e0:b4:39:6d:ba:cb:4f:02:05:8a:9b:fb:80:93:59:a7:
ee:cc:61:e5:00:41:7e:55:ee:0a:25:b3:e5:e7:d5:83:0f:11:
ed:d0:d8:66:9b:a1:66:48:5a:5f:0e:17:b8:33:b5:4a:57:d4:
d0:7c:b8:92
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZTLWmVlg16ckifu8J8cPbPmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjUwMjAzMTAyODA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzY2VkYmM2ZmNlMDVjMjBhZGNiZjU5N2JlMDZiYWFhZmE5NzY5YmMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjksJ1zjLO08rLrcaYpe6QKOqJdjY
xXpXw/cDxoqen8AdYkhktA8QUFJiueQY8qymIswmUkORMQ9d3PBmSNaEpAW8+SWr
ZyyDzNuDhf5D9JqK1XMXMvczQma5W+mdWHaiPHFvw2av0xqSDr9+mdns3Y7lIUnb
pfDKHxROtOnaXezs+CYtmIoTghhXkb1fgO18NgsZt0O9Gcsq46Nc+t2VwHDIqjT9
WQGjfdrl52rfm3V5Pdwl87Mw6zgkyF7SSdgBK7vHHwO26x60AC7qVDcyZQBTgjpC
4y2JbLTJsoCc99xBMeZn/3JEzNWpUmIHL0HwO6P3dXqc7JF9PIGnY+gT9wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDztvG/OBcIK3L9Ze+Brqq+pdpvDMB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvUE8yOGI4NEZ3Z3JjdjFsNzRHdXFyNmwybThNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABeclMA0G
CSqGSIb3DQEBCwUAA4IBAQAzbkwF+MELcvJlsWKagy/92TTCj0bgzi42q+P42JtX
iIf2xi+yBbocvktScrluKAhfTCFeDMRqIgD5NDt/nxCuOwKUKKOM5298d5QbglDg
fLw7abqm9vhG30T0wFfhgoN7qSWDe32UR3wvYdyEn5YvP05EWZMhGPQyPaM6VmJ8
+eiBy60kOqtJVxB8QonWDOFQcjpOL0J+XLU8+e99m96VKFtom/C5EDYfTdMXLvM1
IO2Kowu7KDyCWzwRqzlVKYCVdTHw2rWNQOC0OW26y08CBYqb+4CTWafuzGHlAEF+
Ve4KJbPl59WDDxHt0Nhmm6FmSFpfDhe4M7VKV9TQfLiS
-----END CERTIFICATE-----
Generated at Sat Apr 12 02:34:37 2025 by rpki-client