Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/p__LVqJ2chVeom3PI1jcxPsQDzM.roa
File: p__LVqJ2chVeom3PI1jcxPsQDzM.roa (raw, json)
Hash identifier: bq+CFuS9IGKOeYhV6pl6fGqvfKwhJUkAMiVSwT2+oLQ=
Subject key identifier: A7:FF:CB:56:A2:76:72:15:5E:A2:6D:CF:23:58:DC:C4:FB:10:0F:33
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018570952C827A52338A8E88B067786E7346
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/p__LVqJ2chVeom3PI1jcxPsQDzM.roa
Signing time: Mon 02 Jan 2023 03:45:02 +0000
ROA not before: Mon 02 Jan 2023 03:45:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44343
IP address blocks: 31.148.30.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:2c:82:7a:52:33:8a:8e:88:b0:67:78:6e:73:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a7ffcb56a27672155ea26dcf2358dcc4fb100f33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:0e:5e:dc:d6:50:86:01:16:f2:8d:d1:af:74:
32:18:fc:a3:85:d3:cf:1b:be:27:a2:4c:7a:46:b6:
a2:51:eb:bc:7d:db:11:28:7b:8b:19:61:ce:96:b6:
5f:ca:64:ae:2b:ad:dc:5f:89:95:15:ff:dc:69:5a:
c0:8f:08:a6:95:d6:e4:81:85:fb:76:2e:bc:85:0d:
02:a3:6e:ea:06:41:05:58:13:bd:43:99:8e:18:72:
4d:f6:13:cc:9d:27:d9:4a:40:b9:32:5f:de:91:1d:
f4:68:01:65:06:14:58:0a:4a:67:39:be:ec:db:23:
32:90:63:72:68:5d:18:22:e5:cd:00:7e:21:5a:e3:
14:da:db:7f:fe:2c:19:b4:8f:ac:17:93:4b:5b:4b:
8d:14:a0:3d:92:b2:d3:a9:cd:a4:95:06:4f:c0:75:
80:30:a2:d0:52:86:f0:c7:20:aa:46:79:86:c0:13:
6b:16:f1:3a:28:da:bd:cb:e7:ff:30:6b:8f:fd:47:
dc:34:1d:a6:2c:d3:ee:ce:f6:10:f3:2a:5a:69:1d:
af:39:bd:c2:69:e7:02:96:4a:d7:61:f0:a5:64:79:
e9:2d:1d:3b:f5:6e:ca:63:65:ca:52:68:4f:aa:c0:
8b:25:cb:fc:dc:9e:78:10:c9:4f:5d:04:c8:54:f4:
72:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:FF:CB:56:A2:76:72:15:5E:A2:6D:CF:23:58:DC:C4:FB:10:0F:33
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/p__LVqJ2chVeom3PI1jcxPsQDzM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.30.0/24
Signature Algorithm: sha256WithRSAEncryption
43:22:a3:22:45:76:63:5a:f0:89:1c:4e:bc:42:e1:53:46:2e:
25:27:77:5e:63:eb:11:b9:83:bf:bb:5b:1c:88:10:ef:81:6f:
0b:af:ce:bd:7c:15:85:cc:53:92:ff:7a:7b:c9:aa:2b:75:23:
99:7c:3f:7f:ac:5d:07:82:61:4b:4a:65:9e:31:68:27:d8:3f:
54:10:45:64:73:b9:71:97:5c:05:d4:3b:d5:13:d2:3c:55:60:
08:60:82:42:48:c4:c6:27:f5:d0:7f:9c:d5:67:68:17:af:bc:
0f:98:01:8b:64:0d:3f:1b:77:22:fe:a5:a6:62:49:5e:30:df:
c3:ae:08:0b:73:fd:b0:2c:4e:1a:cb:5c:04:2e:b2:6b:99:2d:
d3:42:9e:d5:58:5c:73:7b:8c:07:d1:ac:0d:cd:36:aa:bf:6c:
a3:21:81:dc:ab:15:0d:cf:f5:05:87:37:77:aa:b3:16:9b:83:
6b:44:e2:98:79:43:28:ea:24:3d:33:8e:8e:76:cd:cf:12:85:
df:63:12:5a:9c:5c:9a:86:76:f6:17:2f:3e:06:9f:c3:da:3c:
7b:3c:93:91:ce:5b:23:09:0b:cb:ec:5e:d6:b7:09:8e:22:9c:
1e:29:c5:2d:95:bb:9a:d2:95:6f:28:69:de:06:f1:9e:ac:79:
d3:9f:56:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:17:49 2025 by rpki-client