Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/c81669-2519-4da5-bd5d-1c2626590d28/1/jVVs7t0Dp4cIWyirWmkE4tBC2QI.roa
File: jVVs7t0Dp4cIWyirWmkE4tBC2QI.roa (raw, json)
Hash identifier: ANwjdbfsBJlnO8akfsjtgUIb4sni+fO3aOUhsCa1tVA=
Subject key identifier: 8D:55:6C:EE:DD:03:A7:87:08:5B:28:AB:5A:69:04:E2:D0:42:D9:02
Certificate issuer: /CN=d53ece71ef6ebf55bb7b87e50665ba11fdc77f08
Certificate serial: 0182C63E6B62C08F0E5F57F4AA42E34144ED
Authority key identifier: D5:3E:CE:71:EF:6E:BF:55:BB:7B:87:E5:06:65:BA:11:FD:C7:7F:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1T7Oce9uv1W7e4flBmW6Ef3Hfwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/c81669-2519-4da5-bd5d-1c2626590d28/1/jVVs7t0Dp4cIWyirWmkE4tBC2QI.roa
Signing time: Mon 22 Aug 2022 15:49:15 +0000
ROA not before: Mon 22 Aug 2022 15:49:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 31.6.31.0/24 maxlen: 24
31.6.37.0/24 maxlen: 24
31.6.36.0/24 maxlen: 24
31.6.38.0/24 maxlen: 24
31.6.34.0/24 maxlen: 24
31.6.33.0/24 maxlen: 24
31.6.35.0/24 maxlen: 24
31.6.32.0/24 maxlen: 24
31.6.39.0/24 maxlen: 24
31.6.40.0/24 maxlen: 24
31.6.20.0/24 maxlen: 24
178.208.186.0/24 maxlen: 24
178.208.189.0/24 maxlen: 24
178.208.191.0/24 maxlen: 24
178.208.190.0/24 maxlen: 24
178.208.188.0/24 maxlen: 24
178.208.187.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:c6:3e:6b:62:c0:8f:0e:5f:57:f4:aa:42:e3:41:44:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d53ece71ef6ebf55bb7b87e50665ba11fdc77f08
Validity
Not Before: Aug 22 15:49:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d556ceedd03a787085b28ab5a6904e2d042d902
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:20:65:7b:74:4a:d8:27:b4:6f:3a:ea:62:2c:
48:b6:15:ee:32:8a:09:b7:9e:a8:3b:a1:76:5e:9c:
fe:51:17:95:35:22:05:cf:11:ab:8a:02:b7:dc:94:
19:5d:ac:37:38:5d:07:f0:f0:d8:69:5f:c0:49:dd:
7c:59:e0:60:88:0a:5f:9a:67:49:95:59:db:81:99:
de:bf:8e:ca:52:58:ef:5b:08:ea:6f:85:4a:b8:31:
00:80:c6:f2:62:a3:3e:c9:59:02:24:27:b5:76:85:
f7:61:2f:1f:2a:e7:ba:67:20:96:9a:24:5c:9f:4b:
d4:e0:29:53:bd:2e:0d:46:48:46:18:f3:66:a5:05:
8f:40:49:23:54:f2:11:15:7d:ce:10:ed:3b:18:45:
39:80:2d:64:88:5d:d7:5c:d3:4b:41:bb:14:84:ee:
7c:a4:db:f1:ff:cd:57:32:5e:99:25:a0:a6:3b:d5:
2f:60:c6:53:71:0f:46:98:c9:1a:22:c1:f2:a3:95:
bd:d4:c9:e2:ea:4d:75:13:c7:db:89:96:6a:15:db:
ab:a1:29:7e:3d:ac:51:0e:f6:9f:46:15:63:40:15:
b3:d5:a1:85:da:aa:08:24:8e:2b:f4:8c:2d:f9:34:
e3:c1:c0:3a:df:a6:f6:0d:21:d7:22:e2:5d:6b:4f:
5c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:55:6C:EE:DD:03:A7:87:08:5B:28:AB:5A:69:04:E2:D0:42:D9:02
X509v3 Authority Key Identifier:
keyid:D5:3E:CE:71:EF:6E:BF:55:BB:7B:87:E5:06:65:BA:11:FD:C7:7F:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1T7Oce9uv1W7e4flBmW6Ef3Hfwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/c81669-2519-4da5-bd5d-1c2626590d28/1/jVVs7t0Dp4cIWyirWmkE4tBC2QI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/c81669-2519-4da5-bd5d-1c2626590d28/1/1T7Oce9uv1W7e4flBmW6Ef3Hfwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.6.20.0/24
31.6.31.0-31.6.40.255
178.208.186.0-178.208.191.255
Signature Algorithm: sha256WithRSAEncryption
65:92:45:64:25:61:17:45:09:d3:f2:d4:62:57:b4:e6:2e:01:
82:cd:ac:c9:5b:0d:bf:37:79:2b:e7:ff:9a:b3:55:3a:fc:41:
d4:aa:fb:92:e0:89:94:71:30:ee:c5:cf:6a:ee:a0:99:1c:2b:
bb:fe:cd:38:a3:5c:16:8a:3e:63:e5:e2:79:ed:45:b2:1f:9d:
fc:12:6b:22:16:67:b9:f2:3b:97:ed:69:7e:87:87:81:16:5e:
86:f6:46:ed:6a:39:c5:97:0e:ec:3f:dc:15:b0:b2:e0:18:58:
48:bd:36:7b:97:14:b3:78:d3:69:2f:cc:60:8b:9b:7c:67:f1:
23:67:a0:f7:98:5b:b7:33:13:95:3e:a6:fa:98:c0:0e:9c:94:
75:39:f9:d3:e1:ed:8f:be:d2:de:fc:fb:85:ee:6b:ff:26:4b:
e2:df:cc:c5:da:e3:c9:8b:cc:e7:f9:96:8b:b2:f7:d1:eb:e4:
71:c8:61:07:e2:10:63:88:8c:42:de:a8:37:b4:f3:f7:f0:1a:
7e:87:d7:88:0c:d1:7c:f3:0f:8a:2c:3e:5a:64:29:bd:12:9f:
32:ad:43:32:4d:8c:29:3c:ac:5f:8a:ab:ab:af:a1:6c:c5:fe:
bd:41:ac:aa:3d:7c:3f:61:3d:6d:49:fe:a4:c4:4c:60:7f:c2:
6a:30:81:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:34:39 2025 by rpki-client