Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/661070-b3a9-4e56-850d-659a1c282ebe/1/kpagvxwtvkQrJku1IKMSjP9tkFg.roa
File: kpagvxwtvkQrJku1IKMSjP9tkFg.roa (raw, json)
Hash identifier: Qrhw1PYPDSdTDS4FGi5jCJ3Wxhig417OfEXthOG/cOI=
Subject key identifier: 92:96:A0:BF:1C:2D:BE:44:2B:26:4B:B5:20:A3:12:8C:FF:6D:90:58
Certificate issuer: /CN=45923ad946ab80a947400e14db2e6c49620c3d8f
Certificate serial: B6C8DB
Authority key identifier: 45:92:3A:D9:46:AB:80:A9:47:40:0E:14:DB:2E:6C:49:62:0C:3D:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RZI62UargKlHQA4U2y5sSWIMPY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/661070-b3a9-4e56-850d-659a1c282ebe/1/kpagvxwtvkQrJku1IKMSjP9tkFg.roa
Signing time: Sat 01 Jan 2022 12:00:34 +0000
ROA not before: Sat 01 Jan 2022 12:00:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57271
IP address blocks: 31.222.242.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11978971 (0xb6c8db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45923ad946ab80a947400e14db2e6c49620c3d8f
Validity
Not Before: Jan 1 12:00:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9296a0bf1c2dbe442b264bb520a3128cff6d9058
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:b4:04:1a:c1:87:e8:cb:a9:88:1e:d7:8f:19:
19:3d:84:3c:46:54:3c:f9:9e:ab:7f:5e:06:5b:93:
8e:3b:3f:92:89:83:39:3e:9c:26:02:05:28:73:a8:
00:08:ac:74:94:71:c3:1c:d2:67:1f:cc:08:d8:4c:
4e:8b:7b:d9:0a:d3:5f:15:dd:5b:9e:97:9a:d3:9a:
ac:0f:f8:26:42:9d:59:b3:77:93:40:6c:66:3e:9c:
18:43:f6:df:f6:8a:81:ca:2a:9e:52:d2:3e:15:c6:
ca:51:bc:e2:f1:0f:20:5f:9b:e3:73:08:bd:23:c9:
c0:6b:ac:9e:ca:0f:1d:1e:79:87:42:2c:5a:16:80:
44:af:3a:70:83:5c:19:a9:05:02:09:e1:f7:92:14:
bb:26:5c:5f:f5:d0:cc:e2:ae:7c:fd:91:21:a6:cc:
20:96:96:29:d7:64:24:c3:71:e6:29:05:38:a7:aa:
2a:6b:25:d2:58:ca:24:0c:ed:f6:58:c3:27:b4:a1:
85:11:c1:45:dc:69:cf:e4:ca:b0:b1:9a:10:36:6b:
27:05:56:6f:20:83:23:7c:49:1d:bc:59:4a:d2:12:
43:13:2e:93:47:0c:3c:59:b2:8e:75:a8:90:47:78:
d3:3a:ac:ff:c2:84:11:17:af:fc:c8:da:73:1f:df:
46:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:96:A0:BF:1C:2D:BE:44:2B:26:4B:B5:20:A3:12:8C:FF:6D:90:58
X509v3 Authority Key Identifier:
keyid:45:92:3A:D9:46:AB:80:A9:47:40:0E:14:DB:2E:6C:49:62:0C:3D:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RZI62UargKlHQA4U2y5sSWIMPY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/661070-b3a9-4e56-850d-659a1c282ebe/1/kpagvxwtvkQrJku1IKMSjP9tkFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/661070-b3a9-4e56-850d-659a1c282ebe/1/RZI62UargKlHQA4U2y5sSWIMPY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.242.0/24
Signature Algorithm: sha256WithRSAEncryption
68:29:f7:39:3b:49:d4:10:f9:4a:59:74:79:60:1f:f9:da:48:
40:e8:fd:ad:eb:3d:6d:22:cb:53:de:ff:8c:d6:4b:68:0e:f5:
cf:83:d1:4b:c0:ef:0e:49:b6:a4:b5:cd:27:36:69:6f:9f:8d:
0e:f5:26:6c:66:a4:ef:df:e4:18:8c:68:5f:5f:d3:c5:ae:4b:
8a:e0:d6:ba:cc:89:db:2b:2b:14:21:a9:43:53:d3:95:6d:6a:
93:0a:cc:12:93:60:2f:ce:18:1c:cf:e7:39:23:b0:77:cb:bc:
75:a2:a2:ef:07:25:87:fa:ea:d0:c0:99:07:20:0a:9a:a8:c2:
97:cf:9f:11:a2:c1:b2:a6:b5:4c:90:b8:b8:99:d5:a1:1e:8b:
3c:1f:2b:1d:22:ca:ad:46:e1:56:4a:3a:4f:84:71:dc:9a:53:
c9:46:99:28:22:b5:89:a2:c2:7b:77:23:35:ea:07:d0:6d:bf:
86:6e:ec:75:88:ff:e7:61:1f:f9:c8:25:2c:13:97:f2:83:73:
c5:7e:81:a1:25:89:17:32:da:3a:18:46:0f:66:37:f9:9d:f1:
aa:54:6d:0b:be:ed:25:f3:4f:3d:1b:19:ee:31:4b:b2:34:af:
77:0b:21:04:7f:67:f5:13:4f:42:9d:47:a3:61:0e:05:26:fa:
17:b5:d8:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:34:58 2025 by rpki-client