Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/b245de-c700-4206-9ff7-6d8bd97a11a1/1/4FJWx3NDQ-Z_8uRwm1uVH5PFyoA.roa
File: 4FJWx3NDQ-Z_8uRwm1uVH5PFyoA.roa (raw, json)
Hash identifier: MOHIS4vmQa1C+agn4XU0glE7JXoJH+lOioFGK9fpY+M=
Subject key identifier: E0:52:56:C7:73:43:43:E6:7F:F2:E4:70:9B:5B:95:1F:93:C5:CA:80
Certificate issuer: /CN=0550b345d9ce66e312cc294912a2b4160dfe560a
Certificate serial: 019198200BB8C473BA6586D7110C7418DD56
Authority key identifier: 05:50:B3:45:D9:CE:66:E3:12:CC:29:49:12:A2:B4:16:0D:FE:56:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BVCzRdnOZuMSzClJEqK0Fg3-Vgo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/b245de-c700-4206-9ff7-6d8bd97a11a1/1/4FJWx3NDQ-Z_8uRwm1uVH5PFyoA.roa
Signing time: Wed 28 Aug 2024 08:35:22 +0000
ROA not before: Wed 28 Aug 2024 08:35:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39521
IP address blocks: 31.193.190.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:98:20:0b:b8:c4:73:ba:65:86:d7:11:0c:74:18:dd:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0550b345d9ce66e312cc294912a2b4160dfe560a
Validity
Not Before: Aug 28 08:35:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e05256c7734343e67ff2e4709b5b951f93c5ca80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:12:4d:c7:a1:a6:78:53:7c:95:63:07:87:d2:
6e:f5:2a:6d:80:f3:c2:04:86:31:61:98:08:72:81:
f0:8f:fe:31:c0:55:49:00:21:2b:c0:7e:3b:e5:a9:
a3:38:4e:ef:eb:9b:fd:22:b0:0e:24:40:30:b8:01:
f4:46:91:d0:00:85:76:12:07:90:de:67:ac:d0:9d:
da:ea:55:f4:48:b1:d0:85:e2:89:85:e8:5f:c3:c3:
ae:90:2c:d3:4c:3f:49:d0:7e:0c:ea:58:6c:7f:e8:
c6:c0:1d:77:47:f0:69:97:f3:c5:f0:8d:68:2f:ab:
8d:8f:54:8d:b1:57:1a:78:1d:84:18:d5:1a:a8:b5:
70:49:f3:a9:c1:db:44:7b:6e:e7:ec:3a:7b:4b:50:
d1:c5:3d:8e:0c:f0:3b:4e:9e:7a:1f:a8:15:11:48:
23:c4:b6:95:e7:bb:c5:3d:11:f3:a9:6d:b2:ae:e9:
a5:7a:87:86:3b:07:81:09:d9:0a:72:b5:77:18:a8:
94:b9:14:e7:38:7c:39:14:9f:4b:a7:58:17:59:14:
01:e3:24:a4:b2:6b:c3:e1:b5:7d:c3:27:c2:e6:56:
84:fd:b2:bc:ed:70:17:6b:42:7f:05:64:e3:bc:3a:
bb:95:2b:ec:9a:66:96:23:b4:0d:c9:a9:df:e6:dd:
64:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:52:56:C7:73:43:43:E6:7F:F2:E4:70:9B:5B:95:1F:93:C5:CA:80
X509v3 Authority Key Identifier:
keyid:05:50:B3:45:D9:CE:66:E3:12:CC:29:49:12:A2:B4:16:0D:FE:56:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BVCzRdnOZuMSzClJEqK0Fg3-Vgo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/b245de-c700-4206-9ff7-6d8bd97a11a1/1/4FJWx3NDQ-Z_8uRwm1uVH5PFyoA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/b245de-c700-4206-9ff7-6d8bd97a11a1/1/BVCzRdnOZuMSzClJEqK0Fg3-Vgo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.193.190.0/24
Signature Algorithm: sha256WithRSAEncryption
47:43:c9:03:60:bc:f0:56:59:dd:9e:d3:ca:de:34:24:a1:c8:
d7:1c:b3:ad:7d:73:4b:e8:88:9d:10:0a:7f:5a:3d:0d:d6:b1:
8b:bc:ad:35:53:cc:02:db:dd:56:79:c0:18:d8:c2:aa:62:06:
b8:bf:4f:3e:05:3a:be:58:6d:48:9e:90:5e:15:90:8f:e8:22:
ae:79:d6:28:73:68:83:44:c8:6b:fd:e3:9e:12:d8:52:3f:55:
b0:2f:31:7a:17:a0:01:55:b5:3b:f4:d3:b0:59:f3:cd:54:ec:
4e:10:77:02:ee:66:44:c4:41:0c:ba:7a:86:dd:e8:f9:8e:cf:
d2:b1:9f:5c:3a:34:a8:32:97:a0:b9:f9:a1:59:2a:5b:d6:99:
45:f2:a4:7c:d5:29:92:4c:83:51:87:4a:f6:4d:22:fd:5c:4f:
ac:ba:9b:55:53:6b:cf:d5:bc:09:0d:13:2f:a3:15:8c:85:23:
24:9a:b6:52:a7:65:23:72:d0:06:df:44:0d:f9:18:23:55:e8:
ff:d4:09:38:a1:5d:84:6b:ab:8f:1b:65:c8:3b:86:33:b2:74:
30:e7:84:db:c5:b7:db:3c:ba:00:64:a5:2b:5b:05:d5:eb:fe:
08:93:3d:7d:dc:85:dc:45:26:47:ee:24:d4:41:82:60:25:34:
1d:ce:78:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:42:19 2025 by rpki-client