Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/ir-ES6mAZ9rXsKsLqaeazCkh3E4.roa
File: ir-ES6mAZ9rXsKsLqaeazCkh3E4.roa (raw, json)
Hash identifier: X0PWasBxoti/oyZLOj1LLxKrTJUWcq1ZLu0tHlQiNKo=
Subject key identifier: 8A:BF:84:4B:A9:80:67:DA:D7:B0:AB:0B:A9:A7:9A:CC:29:21:DC:4E
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018570955496C660585C1EFF7095EEAB7408
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/ir-ES6mAZ9rXsKsLqaeazCkh3E4.roa
Signing time: Mon 02 Jan 2023 03:45:12 +0000
ROA not before: Mon 02 Jan 2023 03:45:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51841
IP address blocks: 31.148.201.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:54:96:c6:60:58:5c:1e:ff:70:95:ee:ab:74:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8abf844ba98067dad7b0ab0ba9a79acc2921dc4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d3:37:fb:e6:62:5d:07:5a:13:75:a0:1f:12:
e2:22:47:f0:c7:b1:1e:a3:c1:92:cf:17:0f:a5:72:
90:e7:62:e4:88:8a:44:6a:25:fe:99:c5:b7:c6:13:
4b:1b:29:97:ae:c6:fb:a9:8a:a8:6b:b8:e7:d6:c5:
71:a3:93:ba:4a:96:f8:2c:a6:80:2a:3b:50:e7:40:
1b:9e:48:8d:f4:03:43:a5:d7:ae:7c:f4:37:3e:1f:
e9:75:6a:9a:e8:0d:76:c4:87:02:f6:53:bd:cb:ab:
fb:7b:cd:c2:2e:71:af:8b:ee:c0:22:40:3a:af:a0:
d2:7c:83:12:9f:c5:6d:24:cc:36:2d:f4:2a:86:ad:
1f:be:86:73:1e:e4:34:00:09:6f:26:32:11:1f:a3:
38:f3:54:e7:2c:ad:8b:31:eb:8d:45:64:2e:0a:4d:
18:cf:31:0b:a4:1f:dd:45:28:64:4c:50:85:f4:7b:
21:d8:fd:f6:e2:8c:79:7d:19:4c:8e:c8:e3:c7:7f:
c2:80:1f:e3:bc:3f:87:e1:a3:75:05:8c:e6:58:05:
e7:59:0f:8f:95:8e:b4:27:d9:bd:42:73:87:68:e9:
d0:cb:f5:04:55:a3:de:00:96:52:02:99:d1:a6:83:
94:7f:2d:b3:c2:0b:5a:a4:78:81:78:2c:e4:2c:a7:
62:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:BF:84:4B:A9:80:67:DA:D7:B0:AB:0B:A9:A7:9A:CC:29:21:DC:4E
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/ir-ES6mAZ9rXsKsLqaeazCkh3E4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.201.0/24
Signature Algorithm: sha256WithRSAEncryption
41:1f:d2:5f:d3:94:cd:26:ae:fb:9a:e7:0f:0a:fd:55:8a:52:
82:b8:64:d7:34:05:36:1f:1e:b3:e5:5f:b4:43:d3:00:7a:a5:
1e:e2:fd:1c:21:48:d4:df:e1:a3:cd:e2:c7:03:c6:fb:30:53:
79:1f:08:a4:d5:3a:40:47:c4:c0:35:90:1e:27:9a:02:54:88:
a7:95:44:6c:ad:0e:6b:84:b6:54:47:e8:d4:15:24:0d:47:cd:
e7:ef:c4:c9:e3:06:c3:fb:db:53:8e:66:3d:80:ac:ce:43:84:
7c:42:92:72:4c:57:71:4a:02:12:8e:96:26:e0:a0:d9:b2:d6:
e7:4c:f1:cf:52:33:31:d1:e4:2c:3d:61:bf:11:cb:62:79:e4:
92:2b:23:eb:1c:2d:da:ae:74:d9:75:36:b4:c6:93:af:5a:df:
a5:6d:8c:24:84:32:88:b4:93:38:c1:c7:c3:83:a7:e1:9e:59:
4f:99:1f:60:cc:c3:fc:1e:ce:4a:a1:0b:28:48:c6:62:e1:97:
75:a4:bf:d0:ae:00:9a:51:d5:b4:ee:d3:b0:5d:6f:a0:0d:b3:
55:b6:3c:b8:8f:aa:e9:1f:83:36:2e:bd:01:60:db:4f:c3:6c:
b3:e3:38:78:6f:5e:f6:cd:63:5e:2b:d1:69:43:57:c1:bc:2d:
88:62:95:31
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwlVSWxmBYXB7/cJXuq3QIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh
YWVmNDIwHhcNMjMwMTAyMDM0NTEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YWJmODQ0YmE5ODA2N2RhZDdiMGFiMGJhOWE3OWFjYzI5MjFkYzRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAodM3++ZiXQdaE3WgHxLiIkfwx7Ee
o8GSzxcPpXKQ52LkiIpEaiX+mcW3xhNLGymXrsb7qYqoa7jn1sVxo5O6Spb4LKaA
KjtQ50AbnkiN9ANDpdeufPQ3Ph/pdWqa6A12xIcC9lO9y6v7e83CLnGvi+7AIkA6
r6DSfIMSn8VtJMw2LfQqhq0fvoZzHuQ0AAlvJjIRH6M481TnLK2LMeuNRWQuCk0Y
zzELpB/dRShkTFCF9Hsh2P324ox5fRlMjsjjx3/CgB/jvD+H4aN1BYzmWAXnWQ+P
lY60J9m9QnOHaOnQy/UEVaPeAJZSApnRpoOUfy2zwgtapHiBeCzkLKdiNwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIq/hEupgGfa17CrC6mnmswpIdxOMB8GA1UdIwQY
MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt
MDYyYzY5MzNhYmVkLzEvaXItRVM2bUFaOXJYc0tzTHFhZWF6Q2toM0U0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk
LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAH5TJMA0G
CSqGSIb3DQEBCwUAA4IBAQBBH9Jf05TNJq77mucPCv1VilKCuGTXNAU2Hx6z5V+0
Q9MAeqUe4v0cIUjU3+GjzeLHA8b7MFN5Hwik1TpAR8TANZAeJ5oCVIinlURsrQ5r
hLZUR+jUFSQNR83n78TJ4wbD+9tTjmY9gKzOQ4R8QpJyTFdxSgISjpYm4KDZstbn
TPHPUjMx0eQsPWG/EctieeSSKyPrHC3arnTZdTa0xpOvWt+lbYwkhDKItJM4wcfD
g6fhnllPmR9gzMP8Hs5KoQsoSMZi4Zd1pL/QrgCaUdW07tOwXW+gDbNVtjy4j6rp
H4M2Lr0BYNtPw2yz4zh4b172zWNeK9FpQ1fBvC2IYpUx
-----END CERTIFICATE-----
Generated at Mon Apr 7 23:39:05 2025 by rpki-client