Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/24587a-f619-45b5-91fb-71dd6f299a61/1/dT5Wl5bwc5oacK38x5RC6i86ROQ.roa
File: dT5Wl5bwc5oacK38x5RC6i86ROQ.roa (raw, json)
Hash identifier: eqfdK6VcNQKGG6gaYVbuELzFOWV7Sp/e1oMZMeToTwg=
Subject key identifier: 75:3E:56:97:96:F0:73:9A:1A:70:AD:FC:C7:94:42:EA:2F:3A:44:E4
Certificate issuer: /CN=41068161a132379cb86a3dd390f7e1f69d93c1f1
Certificate serial: 01896498F303C86D8711DC44EB4DE95D10C7
Authority key identifier: 41:06:81:61:A1:32:37:9C:B8:6A:3D:D3:90:F7:E1:F6:9D:93:C1:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QQaBYaEyN5y4aj3TkPfh9p2TwfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/24587a-f619-45b5-91fb-71dd6f299a61/1/dT5Wl5bwc5oacK38x5RC6i86ROQ.roa
Signing time: Mon 17 Jul 2023 16:04:52 +0000
ROA not before: Mon 17 Jul 2023 16:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204957
IP address blocks: 31.222.249.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:98:f3:03:c8:6d:87:11:dc:44:eb:4d:e9:5d:10:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41068161a132379cb86a3dd390f7e1f69d93c1f1
Validity
Not Before: Jul 17 16:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=753e569796f0739a1a70adfcc79442ea2f3a44e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:07:e7:e4:40:3e:77:3c:ae:cc:00:a9:61:0f:
2a:dd:24:27:4f:14:95:d2:af:28:ca:50:a0:d4:d9:
7f:55:3e:f7:e8:7a:6d:52:ba:b6:90:9a:3b:9f:3e:
cc:43:37:d8:e6:9f:9f:00:e9:ef:d6:15:47:b9:14:
dc:a9:b3:c8:3d:36:0b:f2:29:0f:02:49:65:ec:50:
48:e0:be:20:79:f4:1f:ed:4a:90:e4:39:ee:cf:30:
67:3b:48:09:d0:77:82:c4:31:9c:0e:e4:16:97:b3:
5a:33:2a:0a:00:5a:44:9b:48:7a:4d:5e:1f:42:9d:
90:b9:4e:e5:0c:f7:18:b7:62:2d:6d:16:f0:68:7b:
bb:9e:d4:6e:78:b0:85:de:c1:c5:b8:27:8c:67:01:
07:72:80:25:ff:78:f5:0b:57:fa:ab:d3:54:f4:7f:
3c:ce:72:2f:1f:06:b8:08:ce:db:cf:45:d2:be:a5:
70:c1:d6:01:af:9d:24:15:22:56:34:a5:32:ec:3d:
fe:c5:bc:7f:1c:3d:0c:3f:17:4d:78:87:ab:a2:2d:
50:9d:f7:18:52:a5:fc:d8:34:81:9d:52:ed:8f:3c:
7c:73:c3:48:d5:69:02:a7:b2:3d:c6:d1:31:91:38:
09:f5:6c:98:09:e9:93:bb:1c:5b:5a:f9:b3:b6:4e:
1a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:3E:56:97:96:F0:73:9A:1A:70:AD:FC:C7:94:42:EA:2F:3A:44:E4
X509v3 Authority Key Identifier:
keyid:41:06:81:61:A1:32:37:9C:B8:6A:3D:D3:90:F7:E1:F6:9D:93:C1:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QQaBYaEyN5y4aj3TkPfh9p2TwfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/24587a-f619-45b5-91fb-71dd6f299a61/1/dT5Wl5bwc5oacK38x5RC6i86ROQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/24587a-f619-45b5-91fb-71dd6f299a61/1/QQaBYaEyN5y4aj3TkPfh9p2TwfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.249.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:77:6f:8f:b8:0b:1c:84:eb:56:48:9f:d1:4a:bd:11:16:a6:
9d:62:65:1f:ae:79:59:e6:d4:2f:9c:80:1a:af:71:46:eb:2c:
25:cc:95:e1:c7:06:30:45:87:cf:c1:29:da:21:4f:f6:e5:97:
1a:9f:f1:be:a8:6e:4d:d6:c6:5d:8b:ee:5e:86:e1:41:e7:66:
d2:22:fe:87:b9:ca:7e:63:56:59:e7:6b:7f:af:2c:e5:46:e2:
55:b9:cd:ef:c9:6f:db:20:ac:1b:e8:24:9e:52:8d:88:cf:db:
34:58:75:4b:5b:df:22:37:92:39:86:66:36:4b:c0:da:4b:fb:
6e:30:91:c8:0a:28:39:3d:84:85:76:a2:6e:1e:a6:54:35:87:
82:95:34:03:e1:e9:7a:1a:4c:97:38:a5:44:b4:7e:a4:5b:51:
39:db:1f:74:78:d5:6c:65:65:11:b8:6f:0c:e5:bb:4e:59:96:
23:1d:8f:2d:a1:95:f6:bb:b1:40:c0:0b:19:70:a1:24:45:b2:
db:c7:62:a3:cf:95:d8:47:89:14:50:14:b3:aa:92:b7:e2:28:
9c:d2:b4:ca:82:10:82:51:36:01:19:c0:e3:2e:14:e0:2c:ae:
41:f2:27:b8:53:28:ed:0b:5f:3f:02:cb:64:da:b8:97:2d:f3:
34:8f:2f:8e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYlkmPMDyG2HEdxE603pXRDHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxMDY4MTYxYTEzMjM3OWNiODZhM2RkMzkwZjdlMWY2OWQ5
M2MxZjEwHhcNMjMwNzE3MTYwNDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NTNlNTY5Nzk2ZjA3MzlhMWE3MGFkZmNjNzk0NDJlYTJmM2E0NGU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnwfn5EA+dzyuzACpYQ8q3SQnTxSV
0q8oylCg1Nl/VT736HptUrq2kJo7nz7MQzfY5p+fAOnv1hVHuRTcqbPIPTYL8ikP
Akll7FBI4L4gefQf7UqQ5DnuzzBnO0gJ0HeCxDGcDuQWl7NaMyoKAFpEm0h6TV4f
Qp2QuU7lDPcYt2ItbRbwaHu7ntRueLCF3sHFuCeMZwEHcoAl/3j1C1f6q9NU9H88
znIvHwa4CM7bz0XSvqVwwdYBr50kFSJWNKUy7D3+xbx/HD0MPxdNeIeroi1QnfcY
UqX82DSBnVLtjzx8c8NI1WkCp7I9xtExkTgJ9WyYCemTuxxbWvmztk4aswIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHU+VpeW8HOaGnCt/MeUQuovOkTkMB8GA1UdIwQY
MBaAFEEGgWGhMjecuGo905D34fadk8HxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUVFhQllhRXlONXk0YWozVGtQZmg5cDJUd2ZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC8yNDU4N2EtZjYxOS00NWI1LTkxZmIt
NzFkZDZmMjk5YTYxLzEvZFQ1V2w1YndjNW9hY0szOHg1UkM2aTg2Uk9RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC8yNDU4N2EtZjYxOS00NWI1LTkxZmItNzFkZDZmMjk5YTYx
LzEvUVFhQllhRXlONXk0YWozVGtQZmg5cDJUd2ZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAH975MA0G
CSqGSIb3DQEBCwUAA4IBAQBOd2+PuAschOtWSJ/RSr0RFqadYmUfrnlZ5tQvnIAa
r3FG6ywlzJXhxwYwRYfPwSnaIU/25Zcan/G+qG5N1sZdi+5ehuFB52bSIv6Hucp+
Y1ZZ52t/ryzlRuJVuc3vyW/bIKwb6CSeUo2Iz9s0WHVLW98iN5I5hmY2S8DaS/tu
MJHICig5PYSFdqJuHqZUNYeClTQD4el6GkyXOKVEtH6kW1E52x90eNVsZWURuG8M
5btOWZYjHY8toZX2u7FAwAsZcKEkRbLbx2Kjz5XYR4kUUBSzqpK34iic0rTKghCC
UTYBGcDjLhTgLK5B8ie4UyjtC18/Astk2riXLfM0jy+O
-----END CERTIFICATE-----
Generated at Tue Oct 24 08:34:49 2023 by rpki-client on console-ams.rpki-client.org