Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/cF1MDGikg6glw2l17uQVoVCswIw.roa
File: cF1MDGikg6glw2l17uQVoVCswIw.roa (raw, json)
Hash identifier: 2oG57jZSHEcZ2gqfOvs4EvUFJ5jWJ+bEksjCAozF+KA=
Subject key identifier: 70:5D:4C:0C:68:A4:83:A8:25:C3:69:75:EE:E4:15:A1:50:AC:C0:8C
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 279D0FEA
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/cF1MDGikg6glw2l17uQVoVCswIw.roa
Signing time: Sat 01 Jan 2022 16:08:26 +0000
ROA not before: Sat 01 Jan 2022 16:08:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47673
IP address blocks: 31.148.28.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 664604650 (0x279d0fea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=705d4c0c68a483a825c36975eee415a150acc08c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:fe:3a:46:dc:d2:ec:2f:27:05:42:b4:28:9b:
4e:b2:fe:f2:9c:bf:29:1f:27:7b:ee:ec:95:ae:a5:
30:7c:17:cb:2e:3c:18:eb:be:9d:b7:c5:33:5e:d6:
0f:16:2c:8a:aa:78:39:09:6a:2d:13:47:3e:a6:1c:
94:dd:e2:43:aa:fb:1b:a1:c4:f4:f9:81:1c:c2:bf:
f5:a9:4d:e2:be:94:35:a1:f3:ff:7a:fd:5b:b7:74:
f5:0f:5f:45:a5:6f:81:2f:bf:f8:8f:bb:06:1a:9c:
f7:42:55:7b:d9:59:8f:68:0d:c8:38:3c:38:6c:ce:
51:26:b6:0f:3a:37:45:bb:f8:1c:1e:6d:4b:72:8e:
09:0a:41:0a:e6:96:75:d2:33:1a:94:13:28:9a:69:
bb:04:48:73:1c:5f:16:09:da:7c:38:c4:1a:00:84:
52:65:5a:9b:4b:27:0e:a4:63:0a:b6:fd:b9:d6:7b:
0a:eb:30:27:86:17:df:9c:c8:a8:40:a0:1d:b2:82:
2f:53:d6:21:d9:a4:8d:64:3b:95:85:6c:f6:9a:70:
be:10:60:4a:0f:51:a1:7f:89:ea:68:e6:1a:3a:25:
6c:28:09:5a:1d:34:c9:5d:83:1d:1d:c6:c2:88:1e:
17:ad:ab:7e:c1:e4:e2:b2:f1:b6:9a:dc:c4:51:49:
a3:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:5D:4C:0C:68:A4:83:A8:25:C3:69:75:EE:E4:15:A1:50:AC:C0:8C
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/cF1MDGikg6glw2l17uQVoVCswIw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.28.0/23
Signature Algorithm: sha256WithRSAEncryption
68:c5:f8:ba:e9:d3:f7:09:31:90:ec:13:85:bc:1c:3c:60:2b:
cf:55:64:ba:57:3d:a2:7c:f2:3b:85:e1:17:dd:eb:10:ec:ad:
0d:60:f6:2f:b8:33:84:8e:42:75:f8:61:f5:6a:34:f6:39:57:
2a:bb:43:eb:de:81:43:fb:84:7f:09:96:2d:ab:5c:29:ee:3b:
94:0b:10:bb:67:fd:93:cd:f5:6a:a2:96:cd:7c:25:49:51:cf:
2e:ee:69:15:6f:76:9a:c4:41:be:95:ae:5c:79:ab:e5:f1:c3:
2a:b4:26:db:79:69:c7:3e:7c:6f:07:8c:06:0c:e7:4f:e3:13:
68:2c:39:3a:0f:9a:79:a0:2b:06:12:e9:2d:38:3e:9e:8b:93:
3c:db:3a:05:ea:12:a4:fa:2c:24:b7:20:34:77:5c:1d:20:4f:
2c:4a:d5:85:4b:05:28:6c:af:80:eb:c2:10:a9:b8:0e:f8:21:
c6:f6:9e:ef:73:dc:19:b9:26:0c:91:1f:de:b0:10:e0:4a:aa:
e1:45:13:bc:ec:ac:64:a9:bb:d7:6c:24:4c:60:f8:48:b5:93:
f6:bb:71:b9:de:dc:58:00:0d:d6:c5:72:14:d3:11:e8:ca:36:
6a:34:11:37:0d:84:5c:cf:86:77:bb:d3:8d:73:69:13:46:57:
d6:f4:42:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:39:10 2025 by rpki-client