Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/H0ft3NgyuPAO9t9J1dzkNmTdZSE.roa
File: H0ft3NgyuPAO9t9J1dzkNmTdZSE.roa (raw, json)
Hash identifier: aH6xvbHnNIUJOR/UUIAx4dKGCJtPzkBt9blA+Qwee2o=
Subject key identifier: 1F:47:ED:DC:D8:32:B8:F0:0E:F6:DF:49:D5:DC:E4:36:64:DD:65:21
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0194258FEBE55DF46F2C0BF50AAA0815A829
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/H0ft3NgyuPAO9t9J1dzkNmTdZSE.roa
Signing time: Thu 02 Jan 2025 05:49:36 +0000
ROA not before: Thu 02 Jan 2025 05:49:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202353
IP address blocks: 31.148.168.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:eb:e5:5d:f4:6f:2c:0b:f5:0a:aa:08:15:a8:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 05:49:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1f47eddcd832b8f00ef6df49d5dce43664dd6521
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:41:7a:53:8f:c6:a4:c9:d4:e6:c8:44:58:0b:
cb:02:55:48:83:aa:f8:14:5c:02:77:4e:dc:ce:f8:
6f:26:63:78:99:13:c7:38:50:33:5c:63:4f:58:2f:
0a:fd:9f:0f:37:d5:14:5e:8e:47:86:a4:79:30:dd:
d0:7f:7f:24:ae:b6:cf:95:5d:4f:cb:42:ca:2b:ed:
04:d1:ba:1b:0b:a8:07:9c:8a:89:82:25:e2:4a:14:
32:1f:44:00:5f:f4:15:96:34:69:d4:b2:a7:f9:35:
f0:ec:91:e3:74:f8:a5:f6:f1:98:67:c9:69:9d:08:
7f:1e:e1:44:c4:7c:44:60:21:2c:51:af:c3:67:ca:
0e:73:f2:12:2d:39:28:84:c9:50:3f:e2:bc:fd:64:
71:8d:9d:ad:e2:c2:8b:45:30:67:30:7f:3b:3e:b8:
e9:b9:55:7e:13:9b:5d:4b:49:ee:98:01:46:eb:59:
36:db:40:58:21:fe:91:a7:72:dd:b5:19:ae:d9:b1:
3a:29:ab:5e:12:60:da:be:79:3e:2a:88:37:42:bb:
a2:a7:10:49:33:ad:25:5b:e6:8c:40:0b:ff:f3:b5:
c5:60:3d:c3:d7:63:31:77:86:78:38:85:63:b4:6a:
8e:bf:86:25:aa:62:ca:67:c1:d0:02:1b:33:d8:f0:
96:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:47:ED:DC:D8:32:B8:F0:0E:F6:DF:49:D5:DC:E4:36:64:DD:65:21
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/H0ft3NgyuPAO9t9J1dzkNmTdZSE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.168.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:1f:f0:e2:7e:26:33:18:39:ae:c1:e7:90:03:67:4f:b8:cf:
da:f7:6d:8c:5e:78:b9:66:79:46:e4:58:82:44:ab:67:5b:4a:
23:19:bc:0c:8a:39:1d:b9:18:4f:ec:60:f0:8d:d7:72:5f:28:
00:cb:68:67:28:d2:67:92:67:fb:d0:f9:e0:ea:76:c3:71:79:
c6:1e:8a:14:e0:ff:7e:06:bb:f8:e0:81:19:75:d9:c1:36:3f:
74:9e:e3:31:b5:de:59:6d:a0:c7:04:7b:7a:e4:43:27:77:92:
b6:e0:3e:e1:92:6f:03:32:47:c9:d3:20:b7:47:e9:14:3d:c1:
dc:4e:38:78:37:d6:b0:8b:e3:02:7e:b7:e9:1e:77:cf:b2:1b:
60:e5:c7:be:c5:d7:42:cd:5e:e4:89:cb:38:0e:95:59:82:f5:
65:1e:20:1e:92:2f:2a:79:97:b9:3c:5e:76:03:ad:47:6d:14:
9a:5b:7f:5f:61:f9:99:e4:31:d1:d4:9c:e8:46:94:8e:85:d5:
45:73:27:5a:d9:bb:80:a7:fd:ae:db:35:bf:64:0b:04:4a:59:
37:13:a0:e2:19:f6:0e:7f:c1:9a:d6:2b:91:2a:d7:2b:85:f8:
5f:fb:ab:38:8c:a0:b9:ba:6e:b6:72:01:1e:e8:0e:6f:83:01:
92:d7:a7:f3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQlj+vlXfRvLAv1CqoIFagpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh
YWVmNDIwHhcNMjUwMTAyMDU0OTM2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZjQ3ZWRkY2Q4MzJiOGYwMGVmNmRmNDlkNWRjZTQzNjY0ZGQ2NTIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoUF6U4/GpMnU5shEWAvLAlVIg6r4
FFwCd07czvhvJmN4mRPHOFAzXGNPWC8K/Z8PN9UUXo5HhqR5MN3Qf38krrbPlV1P
y0LKK+0E0bobC6gHnIqJgiXiShQyH0QAX/QVljRp1LKn+TXw7JHjdPil9vGYZ8lp
nQh/HuFExHxEYCEsUa/DZ8oOc/ISLTkohMlQP+K8/WRxjZ2t4sKLRTBnMH87Prjp
uVV+E5tdS0numAFG61k220BYIf6Rp3LdtRmu2bE6KateEmDavnk+Kog3QruipxBJ
M60lW+aMQAv/87XFYD3D12Mxd4Z4OIVjtGqOv4YlqmLKZ8HQAhsz2PCWqQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFB9H7dzYMrjwDvbfSdXc5DZk3WUhMB8GA1UdIwQY
MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt
MDYyYzY5MzNhYmVkLzEvSDBmdDNOZ3l1UEFPOXQ5SjFkemtObVRkWlNFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk
LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAH5SoMA0G
CSqGSIb3DQEBCwUAA4IBAQBtH/DifiYzGDmuweeQA2dPuM/a922MXni5ZnlG5FiC
RKtnW0ojGbwMijkduRhP7GDwjddyXygAy2hnKNJnkmf70Png6nbDcXnGHooU4P9+
Brv44IEZddnBNj90nuMxtd5ZbaDHBHt65EMnd5K24D7hkm8DMkfJ0yC3R+kUPcHc
Tjh4N9awi+MCfrfpHnfPshtg5ce+xddCzV7kics4DpVZgvVlHiAeki8qeZe5PF52
A61HbRSaW39fYfmZ5DHR1JzoRpSOhdVFcyda2buAp/2u2zW/ZAsESlk3E6DiGfYO
f8Ga1iuRKtcrhfhf+6s4jKC5um62cgEe6A5vgwGS16fz
-----END CERTIFICATE-----
Generated at Tue Apr 8 00:03:14 2025 by rpki-client