Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/c4HmIj9D11wA7xXjvHSj0lkxURc.roa
File: c4HmIj9D11wA7xXjvHSj0lkxURc.roa (raw, json)
Hash identifier: m6nDxUhHFdXSt0QRbcmMFks6ngvZP+Mc92W+VJmSrqs=
Subject key identifier: 73:81:E6:22:3F:43:D7:5C:00:EF:15:E3:BC:74:A3:D2:59:31:51:17
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27E201C1
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/c4HmIj9D11wA7xXjvHSj0lkxURc.roa
Signing time: Sat 01 Jan 2022 16:09:03 +0000
ROA not before: Sat 01 Jan 2022 16:09:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59679
IP address blocks: 31.148.223.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 669123009 (0x27e201c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7381e6223f43d75c00ef15e3bc74a3d259315117
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:3d:35:83:5e:46:e8:1e:53:01:b2:fb:26:19:
33:2b:0f:cd:fb:3e:a3:f8:ce:57:12:c3:4d:fe:22:
63:68:ca:2f:f4:09:0d:6a:6b:9c:c7:66:be:1f:d9:
1d:7b:c7:e7:6a:04:60:29:fb:5c:b0:d0:dc:ae:92:
c2:7e:7c:67:79:c9:a8:11:26:19:8e:79:97:b1:2c:
24:24:0d:d5:42:5a:99:48:f1:47:97:83:08:d1:df:
a7:53:91:fc:fb:db:69:1d:d9:eb:2b:82:19:e5:79:
76:bc:24:e9:01:31:b5:6a:19:b3:68:98:ae:ee:a1:
86:01:fa:cf:95:5c:62:28:4f:df:c7:1b:38:85:ca:
2e:1b:be:f5:91:55:98:e2:a1:c1:d3:87:b3:40:11:
7f:95:de:05:06:b9:31:8c:99:05:1f:3a:d2:a9:4b:
68:66:02:ca:b1:06:3f:2d:88:7c:ff:2f:30:e7:9d:
1d:26:0b:a8:b5:09:c6:db:21:b2:61:d0:7f:70:ac:
17:e3:4b:81:37:ea:27:df:7e:3d:9b:df:fb:35:0f:
10:dd:0f:a5:49:fc:5e:20:53:a8:d1:6c:93:61:ab:
2a:2f:b6:c0:8c:bd:c6:d8:fc:f1:da:c0:19:94:3d:
8c:5e:8a:15:b1:78:3c:26:9e:86:4f:37:b0:0d:bc:
d6:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:81:E6:22:3F:43:D7:5C:00:EF:15:E3:BC:74:A3:D2:59:31:51:17
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/c4HmIj9D11wA7xXjvHSj0lkxURc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.223.0/24
Signature Algorithm: sha256WithRSAEncryption
58:f7:54:f9:ed:91:6b:db:46:8b:97:91:da:74:5a:43:db:47:
dd:c1:92:3a:6e:7d:9b:8e:5c:35:9f:76:da:ec:9b:59:2d:13:
47:86:55:e9:7d:d8:62:80:9d:72:d0:2a:f4:8c:c0:db:c1:f6:
5a:d0:02:f2:4c:66:1b:f9:4f:34:37:03:b9:20:b8:4d:f2:c7:
3a:84:7c:7f:51:b8:92:0c:b1:df:bc:ec:aa:40:ab:07:e4:37:
18:69:5e:4a:0a:50:c8:1e:bb:22:a5:3f:d4:6f:3f:58:69:84:
96:a4:5b:0a:da:e1:40:06:f0:80:5c:66:96:7b:d2:4b:df:a9:
86:fc:c6:df:68:84:57:89:7c:12:22:23:be:29:6c:f2:d5:53:
e0:49:03:bb:dc:f9:62:15:da:cb:5a:17:d4:22:da:ae:22:c6:
04:f2:c4:f6:ea:a4:ea:61:99:ad:4a:56:e1:b7:8e:94:ee:d5:
99:37:66:ec:f3:20:48:12:0f:a6:d6:99:1b:db:aa:10:18:38:
89:92:49:e8:f9:26:19:4f:0f:9d:6d:54:41:7b:fc:27:60:86:
5f:e3:61:7e:7d:dd:8c:de:89:26:61:84:ff:fd:9e:ac:1c:07:
58:eb:95:66:a2:9e:1b:1a:e5:03:d2:2b:78:9a:99:d1:a9:d5:
c2:ae:83:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:00:36 2025 by rpki-client