Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/FXvAAn7NyKXWEzgCbrbFrRIu1ms.roa
File: FXvAAn7NyKXWEzgCbrbFrRIu1ms.roa (raw, json)
Hash identifier: S/6mYweNk47GZ2xByXqahBCGNFochLn/uagsQ44CW5c=
Subject key identifier: 15:7B:C0:02:7E:CD:C8:A5:D6:13:38:02:6E:B6:C5:AD:12:2E:D6:6B
Certificate issuer: /CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Certificate serial: 0194266BAFFF132F190A1F9BD5784D72C3FF
Authority key identifier: E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/FXvAAn7NyKXWEzgCbrbFrRIu1ms.roa
Signing time: Thu 02 Jan 2025 09:49:39 +0000
ROA not before: Thu 02 Jan 2025 09:49:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 394896
IP address blocks: 31.40.195.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:af:ff:13:2f:19:0a:1f:9b:d5:78:4d:72:c3:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Validity
Not Before: Jan 2 09:49:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=157bc0027ecdc8a5d61338026eb6c5ad122ed66b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:25:57:68:df:96:26:dd:e2:24:97:75:50:33:
34:82:40:23:db:7c:a3:56:47:b6:22:a5:48:9f:6d:
46:9c:e9:4e:92:a1:a0:6f:e3:b6:fb:31:8b:b3:a8:
c9:5f:e7:69:44:f3:bb:9e:09:34:0b:08:f5:f4:7b:
44:42:ba:52:4f:36:3a:31:90:0e:e7:f2:d1:ea:9c:
70:8c:59:de:ad:9e:2f:bf:01:50:24:c1:7f:e2:1f:
44:ce:98:94:81:73:64:3a:fd:f6:00:dc:d5:24:03:
e2:4c:c3:42:1d:eb:ec:33:63:70:fa:23:95:f6:63:
6b:33:eb:59:30:37:5b:65:bc:09:12:ce:c8:92:19:
fa:72:06:c2:3d:1b:9c:a9:dc:02:44:e7:db:1c:d9:
e0:7b:ac:fb:50:cd:de:8e:fe:f9:63:04:89:b6:97:
10:7e:6d:48:5d:6f:b4:c5:fa:a7:ef:27:c2:0e:f1:
49:bd:d1:a7:96:c8:d5:75:15:b8:19:9e:a1:5e:0f:
dd:77:00:ba:94:8b:35:29:f7:c2:a9:54:87:d1:92:
27:4d:ab:a1:9c:56:24:0d:a4:2b:12:27:eb:62:fe:
4a:8d:09:50:42:7b:6d:54:42:1f:79:66:65:87:94:
7c:e3:7d:4c:40:d1:9c:65:5f:49:f6:2e:0c:ec:e2:
1b:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:7B:C0:02:7E:CD:C8:A5:D6:13:38:02:6E:B6:C5:AD:12:2E:D6:6B
X509v3 Authority Key Identifier:
keyid:E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/FXvAAn7NyKXWEzgCbrbFrRIu1ms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.195.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:4f:22:ee:a5:57:e8:2f:13:b8:80:99:ee:a2:d0:f6:f9:ff:
c5:c1:fe:42:d5:5d:83:c1:64:91:88:11:29:51:1e:17:ed:dd:
df:1d:9a:81:a0:6a:f4:f2:a2:e4:70:1f:c0:ef:a0:3c:6e:80:
a7:2b:1b:41:0b:83:e5:0e:5b:4e:ce:dd:11:b2:04:39:11:1c:
0a:c2:20:e6:51:45:a6:d9:a4:d8:14:90:dd:90:91:90:e1:a0:
19:26:f4:b9:82:a7:c4:67:e4:9d:79:a1:ab:37:32:c9:34:35:
fd:3b:d0:8a:91:3c:74:ba:46:89:5a:52:16:b2:c2:8c:23:12:
4c:22:0e:ef:b2:82:98:41:e8:61:a0:19:71:62:82:fc:fb:22:
1d:9f:61:e5:ee:41:83:ed:31:41:a1:b6:51:6e:f1:a5:df:9c:
dc:56:52:74:1c:2d:67:92:20:ca:4b:17:c4:7e:c4:7a:6b:35:
0a:34:10:03:67:33:7b:83:61:dd:bd:75:02:c2:56:6c:3b:2a:
d9:dd:dd:fd:e3:53:9c:03:2b:f4:a2:49:99:a1:25:b0:7d:db:
ff:ce:c3:ed:11:92:d1:3d:a5:0b:24:8f:19:31:cb:ed:76:9f:
b6:f2:c4:c9:67:25:15:52:e7:0c:79:06:41:89:60:1f:bd:e1:
4e:3e:00:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:31:58 2025 by rpki-client