Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/FGjHxsshZBgOQJQEDnSVztx9VTk.roa
File: FGjHxsshZBgOQJQEDnSVztx9VTk.roa (raw, json)
Hash identifier: x6epfbqPiqVZ7OSLF/OvoIwTLqzbnEtIfFwi0egVWaw=
Subject key identifier: 14:68:C7:C6:CB:21:64:18:0E:40:94:04:0E:74:95:CE:DC:7D:55:39
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27792930
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/FGjHxsshZBgOQJQEDnSVztx9VTk.roa
Signing time: Sat 01 Jan 2022 16:08:07 +0000
ROA not before: Sat 01 Jan 2022 16:08:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41712
IP address blocks: 31.148.132.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 662251824 (0x27792930)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1468c7c6cb2164180e4094040e7495cedc7d5539
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c2:46:19:be:98:b8:e2:1f:88:bf:c3:7e:6a:
2a:66:91:78:63:e0:c5:aa:5f:bf:59:da:87:9c:81:
79:e9:57:37:ce:f3:fe:19:ed:28:a2:fc:e8:0e:51:
31:8c:44:4a:cc:2e:bd:9e:9a:da:04:8e:08:fb:46:
d4:6c:dd:69:86:ad:d0:4c:46:34:20:24:a5:ea:2e:
b2:33:55:9e:c4:b9:f7:be:f5:ca:18:fd:ee:a6:ba:
d6:bc:b2:60:40:c3:42:ce:65:38:a4:aa:46:0e:c0:
b4:68:15:c5:87:00:28:3b:f4:d2:d2:3f:6a:8f:c9:
9f:98:7a:72:46:b9:67:e3:ab:19:6b:2e:50:c9:fe:
c6:02:27:c3:08:18:9a:c0:df:1e:75:6c:92:58:44:
8c:d2:87:3e:8c:b5:24:f8:70:26:5d:7d:bb:0f:70:
aa:8b:98:e2:01:cd:e0:a6:02:b1:17:e3:5f:76:49:
87:45:b9:de:e7:66:83:0b:64:f6:ad:53:11:f5:7a:
30:98:dc:07:5b:83:ea:8a:03:66:ea:67:5b:ec:9c:
e4:9c:51:2d:29:69:b4:14:2e:44:65:94:7d:cb:41:
55:e1:74:c2:d8:6b:8f:eb:76:fd:b2:54:66:90:b9:
64:2e:48:88:dd:58:65:e2:e5:21:16:ee:48:de:87:
85:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:68:C7:C6:CB:21:64:18:0E:40:94:04:0E:74:95:CE:DC:7D:55:39
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/FGjHxsshZBgOQJQEDnSVztx9VTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.132.0/23
Signature Algorithm: sha256WithRSAEncryption
a6:8b:cd:51:34:df:38:ca:1e:24:4e:fd:75:43:5e:a3:6f:04:
19:71:03:c4:90:b9:7f:e2:33:f1:c2:4c:9b:9b:27:da:0b:ef:
c2:71:81:b3:d7:c2:14:8b:09:eb:d1:8c:06:23:f4:06:48:f0:
63:e1:88:df:bb:18:cb:b0:27:ff:63:5f:52:fd:83:4d:04:a1:
bd:ee:77:b3:52:78:fe:50:4c:d1:18:62:bb:ae:a0:44:5a:f3:
1f:91:b7:4f:8c:01:d8:94:0b:0d:58:c5:48:04:68:34:e0:a1:
f5:3a:b9:94:d6:e8:84:00:22:1c:12:f2:cf:e7:18:ea:95:79:
2d:8b:9d:25:bf:be:77:ac:11:d5:3c:f1:73:22:ce:d9:79:88:
88:18:4c:40:e0:2e:19:24:4c:15:60:17:20:ac:1c:1b:d8:3f:
6e:09:81:42:0e:1a:d5:ca:12:e4:2d:c2:03:2a:db:99:59:65:
79:07:53:09:75:17:35:e3:31:b2:d3:5e:c1:21:1a:bd:51:a6:
93:c8:f5:8e:5a:2f:c3:3e:20:94:88:d3:22:2b:af:ad:01:98:
91:c7:34:be:41:23:6d:5c:af:13:46:ef:66:e0:83:7a:03:20:
59:dc:b1:d8:7e:85:f1:12:ee:50:c1:10:22:70:ed:79:e7:8d:
1c:89:c3:84
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEJ3kpMDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NDkxMjJjMzU0MzhhNGViMjYyMzNmZGM2ZTRiYjFkZjJkYWFlZjQyMB4XDTIyMDEw
MTE2MDgwN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTQ2OGM3YzZjYjIx
NjQxODBlNDA5NDA0MGU3NDk1Y2VkYzdkNTUzOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALrCRhm+mLjiH4i/w35qKmaReGPgxapfv1nah5yBeelXN87z
/hntKKL86A5RMYxESswuvZ6a2gSOCPtG1GzdaYat0ExGNCAkpeousjNVnsS59771
yhj97qa61ryyYEDDQs5lOKSqRg7AtGgVxYcAKDv00tI/ao/Jn5h6cka5Z+OrGWsu
UMn+xgInwwgYmsDfHnVsklhEjNKHPoy1JPhwJl19uw9wqouY4gHN4KYCsRfjX3ZJ
h0W53udmgwtk9q1TEfV6MJjcB1uD6ooDZupnW+yc5JxRLSlptBQuRGWUfctBVeF0
wthrj+t2/bJUZpC5ZC5IiN1YZeLlIRbuSN6HhTMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQUaMfGyyFkGA5AlAQOdJXO3H1VOTAfBgNVHSMEGDAWgBR0kSLDVDik6yYj
P9xuS7HfLarvQjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RKRWl3MVE0cE9zbUl6X2Nia3V4M3kycTcwSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTgvMThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8x
L0ZHakh4c3NoWkJnT1FKUUVEblNWenR4OVZUay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTgv
MThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8xL2RKRWl3MVE0cE9z
bUl6X2Nia3V4M3kycTcwSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAR+UhDANBgkqhkiG9w0BAQsFAAOC
AQEApovNUTTfOMoeJE79dUNeo28EGXEDxJC5f+Iz8cJMm5sn2gvvwnGBs9fCFIsJ
69GMBiP0BkjwY+GI37sYy7An/2NfUv2DTQShve53s1J4/lBM0Rhiu66gRFrzH5G3
T4wB2JQLDVjFSARoNOCh9Tq5lNbohAAiHBLyz+cY6pV5LYudJb++d6wR1TzxcyLO
2XmIiBhMQOAuGSRMFWAXIKwcG9g/bgmBQg4a1coS5C3CAyrbmVlleQdTCXUXNeMx
stNewSEavVGmk8j1jlovwz4glIjTIiuvrQGYkcc0vkEjbVyvE0bvZuCDegMgWdyx
2H6F8RLuUMEQInDteeeNHInDhA==
-----END CERTIFICATE-----
Generated at Mon Apr 7 23:39:10 2025 by rpki-client