Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/c81669-2519-4da5-bd5d-1c2626590d28/1/TwCJU_Oiu5uWnB-U7yjru0xtLwo.roa
File: TwCJU_Oiu5uWnB-U7yjru0xtLwo.roa (raw, json)
Hash identifier: w414hYets9dYkOE+1XWIKXPdyB59NqjN7OLAKAb9rC4=
Subject key identifier: 4F:00:89:53:F3:A2:BB:9B:96:9C:1F:94:EF:28:EB:BB:4C:6D:2F:0A
Certificate issuer: /CN=d53ece71ef6ebf55bb7b87e50665ba11fdc77f08
Certificate serial: 033F850E
Authority key identifier: D5:3E:CE:71:EF:6E:BF:55:BB:7B:87:E5:06:65:BA:11:FD:C7:7F:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1T7Oce9uv1W7e4flBmW6Ef3Hfwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/c81669-2519-4da5-bd5d-1c2626590d28/1/TwCJU_Oiu5uWnB-U7yjru0xtLwo.roa
Signing time: Mon 13 Jun 2022 22:34:46 +0000
ROA not before: Mon 13 Jun 2022 22:34:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 31.6.43.0/24 maxlen: 24
31.6.61.0/24 maxlen: 24
31.6.2.0/24 maxlen: 24
31.6.20.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54494478 (0x33f850e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d53ece71ef6ebf55bb7b87e50665ba11fdc77f08
Validity
Not Before: Jun 13 22:34:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4f008953f3a2bb9b969c1f94ef28ebbb4c6d2f0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:4c:c5:64:8f:89:3a:14:fa:60:11:01:d6:b0:
ba:04:ab:8e:61:41:0f:06:0e:b0:55:40:31:7e:3e:
a7:dd:4f:c3:b9:21:53:e8:cd:a1:d4:80:e8:d2:42:
c7:25:0d:e5:bb:d9:df:31:06:3b:af:a5:07:b2:a0:
c4:8e:51:f9:f7:53:ef:38:5f:1c:45:6a:99:e5:b4:
2a:85:16:56:a1:8c:5f:9c:2d:c0:ef:e9:80:8e:13:
2a:ce:51:8b:53:d8:00:4f:d3:a7:f2:a8:d0:d4:f7:
e2:f1:5c:e7:fc:03:0e:d5:7c:63:3b:0f:09:45:33:
11:ca:d4:9a:32:28:25:d4:71:25:21:e2:50:fd:9b:
4f:f6:aa:2b:0e:08:ed:c2:9d:78:70:3d:96:4d:9e:
23:2b:c3:aa:ef:3c:a6:c9:7b:bc:e6:a2:06:01:01:
d6:29:13:06:5a:df:92:6c:c3:a0:65:19:df:30:da:
42:4b:99:07:72:60:88:c4:9d:af:25:f4:e3:62:ca:
f4:a4:81:f3:a8:3e:b9:1e:cc:2f:03:21:8a:86:25:
c3:79:f5:da:08:f6:b8:22:79:d0:7d:49:cc:73:1e:
df:a1:df:fc:17:cc:19:ab:6f:91:35:63:90:b2:fb:
c8:95:17:cd:a9:35:a0:33:66:cb:df:55:19:93:d6:
84:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:00:89:53:F3:A2:BB:9B:96:9C:1F:94:EF:28:EB:BB:4C:6D:2F:0A
X509v3 Authority Key Identifier:
keyid:D5:3E:CE:71:EF:6E:BF:55:BB:7B:87:E5:06:65:BA:11:FD:C7:7F:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1T7Oce9uv1W7e4flBmW6Ef3Hfwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/c81669-2519-4da5-bd5d-1c2626590d28/1/TwCJU_Oiu5uWnB-U7yjru0xtLwo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/c81669-2519-4da5-bd5d-1c2626590d28/1/1T7Oce9uv1W7e4flBmW6Ef3Hfwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.6.2.0/24
31.6.20.0/24
31.6.43.0/24
31.6.61.0/24
Signature Algorithm: sha256WithRSAEncryption
35:82:8d:0d:d5:db:20:7e:ca:15:3c:90:0d:0a:6e:10:60:91:
28:e5:02:79:02:3c:dd:5f:8b:36:68:d1:85:f3:15:4b:c7:b3:
4b:0f:6e:c4:04:24:66:17:74:cb:98:2a:ad:f0:1f:22:81:d0:
38:80:b6:2c:e9:34:b1:dc:b1:fb:ce:ad:52:1d:62:9b:9f:46:
42:a4:61:7b:13:37:4b:f2:6b:e7:df:b4:31:39:00:a6:87:9c:
ec:75:58:a7:26:ba:0d:9f:a5:93:ae:21:65:41:16:60:42:64:
3b:92:22:ce:e8:a1:c5:52:18:13:36:84:47:96:41:16:61:4f:
50:5c:4f:37:63:96:ab:9c:60:26:36:a3:e1:81:28:53:c4:fc:
b4:f8:08:42:fe:3d:8d:51:e5:41:1d:73:23:95:23:4f:f2:1d:
c2:23:2e:7f:34:6c:1d:4f:fd:e6:d1:b5:79:66:0e:19:c2:8e:
8e:1b:81:82:9b:60:c0:50:36:d2:30:fc:9f:28:c1:04:38:7c:
a8:00:21:0a:ad:66:ba:ce:3a:a9:18:2d:20:5e:a0:b7:fb:e8:
45:44:f3:6a:b2:71:d4:ad:69:b9:16:44:dc:13:75:a8:f3:3d:
b9:92:16:08:3e:d9:5d:41:1c:3d:f7:ce:e2:9f:16:f7:2c:cf:
8f:c4:10:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:53:52 2025 by rpki-client