Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/E9FRw_J6nlPxvjS3EGgxLHhCEn8.roa
File: E9FRw_J6nlPxvjS3EGgxLHhCEn8.roa (raw, json)
Hash identifier: tK8llvJRnqfw9TUJvaaUl5EVVMYrXJM79mKif4vsFqU=
Subject key identifier: 13:D1:51:C3:F2:7A:9E:53:F1:BE:34:B7:10:68:31:2C:78:42:12:7F
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018570956459941FE4CA1749823EF25672D4
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/E9FRw_J6nlPxvjS3EGgxLHhCEn8.roa
Signing time: Mon 02 Jan 2023 03:45:16 +0000
ROA not before: Mon 02 Jan 2023 03:45:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59679
IP address blocks: 31.148.223.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:64:59:94:1f:e4:ca:17:49:82:3e:f2:56:72:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=13d151c3f27a9e53f1be34b71068312c7842127f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:12:0c:78:58:f5:2e:86:5c:19:e7:d2:8b:ef:
c3:12:ba:ba:62:95:e2:23:ac:0f:54:8d:a8:8e:e5:
35:8b:f2:50:43:3e:b6:3a:db:61:f7:80:2c:e3:c6:
84:09:6d:da:4c:cd:48:22:15:2e:b7:ab:b9:78:45:
a9:2b:e2:55:82:14:bd:ca:f9:65:7a:1c:a0:df:e5:
29:8f:a0:91:f6:fc:6c:7d:29:ee:5d:cc:72:ed:b4:
b1:22:fc:27:e0:23:5e:8b:7b:29:62:11:be:b1:f1:
cf:e7:ee:38:3f:aa:97:e3:d4:96:55:b4:55:97:ac:
f1:62:f7:4c:37:23:e6:6d:97:8c:1f:bd:2a:7c:60:
2d:5c:f1:70:ca:1a:b3:b0:2e:be:07:67:4d:cf:85:
00:aa:10:d8:a6:d3:17:3c:3c:d2:c4:01:b2:23:02:
54:85:b5:23:55:e0:2c:90:db:e0:fe:f4:35:fd:9d:
42:a9:19:8d:76:63:1b:31:1e:a3:09:22:90:0f:b8:
ed:e2:04:2f:72:f7:bd:83:5b:18:f8:2c:c1:ca:3c:
ca:6f:cb:00:17:63:d7:13:ec:01:2a:4e:57:7c:67:
15:94:be:81:36:a4:a9:1a:5b:21:37:5b:39:98:17:
c7:e3:f4:4a:58:58:2a:9f:9f:c0:29:50:04:e7:b0:
26:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:D1:51:C3:F2:7A:9E:53:F1:BE:34:B7:10:68:31:2C:78:42:12:7F
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/E9FRw_J6nlPxvjS3EGgxLHhCEn8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.223.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:58:1b:97:7b:3e:33:c5:a7:91:ae:02:5c:0d:3a:f4:bb:6f:
e5:55:f3:df:5e:51:90:c9:d8:ae:63:8c:71:b5:71:34:25:ef:
51:da:02:98:e6:63:09:bd:42:2b:41:38:6d:bc:a1:92:45:ff:
eb:59:76:3e:da:08:f6:af:50:f1:c4:06:01:1a:f5:bd:c9:83:
2c:e9:a9:98:3d:3b:a6:c3:c4:a7:b9:cc:42:c1:48:d9:4f:52:
6b:54:78:e5:1b:11:02:02:a6:36:11:db:c4:98:25:d3:83:f7:
28:61:e2:d1:08:e2:c8:28:23:74:1a:72:7f:01:08:15:fe:39:
3e:19:98:3e:c1:cb:bd:9d:d1:47:4d:8e:ec:74:9a:67:7a:16:
b1:43:2b:54:1e:85:47:6d:6c:8c:5e:36:45:14:a1:9b:c9:f6:
87:5d:60:b8:86:4c:2e:74:af:ec:69:5d:85:59:14:1a:b4:70:
0a:62:c3:e0:bf:7a:fc:5a:1a:b0:af:e8:e0:42:f6:ba:bc:71:
89:3f:1b:80:f9:db:c6:2e:bf:c9:82:ef:8c:47:de:6d:65:c9:
b7:16:26:30:11:a3:65:a0:4a:ab:f7:2c:f0:15:0d:2b:aa:ad:
2c:cd:42:81:3c:c5:44:77:04:ee:df:f6:58:bd:1d:cf:d5:d8:
47:48:cc:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:55:58 2025 by rpki-client