Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/zoOJEdKGZ13FXitQlw133CU5fpE.roa
File: zoOJEdKGZ13FXitQlw133CU5fpE.roa (raw, json)
Hash identifier: 1RS5LllRIEPqI6HRWO/oz/+KZOUfoieIQTcg685V08E=
Subject key identifier: CE:83:89:11:D2:86:67:5D:C5:5E:2B:50:97:0D:77:DC:25:39:7E:91
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 279997D2
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/zoOJEdKGZ13FXitQlw133CU5fpE.roa
Signing time: Sat 01 Jan 2022 16:08:24 +0000
ROA not before: Sat 01 Jan 2022 16:08:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47441
IP address blocks: 31.148.0.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 664377298 (0x279997d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ce838911d286675dc55e2b50970d77dc25397e91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:49:7f:af:d0:11:f9:24:0d:78:0e:da:be:ce:
5e:ec:b9:8a:22:52:ac:19:e2:9d:0a:49:59:96:ad:
e4:d8:f7:f0:49:9f:83:22:27:d2:11:c1:14:60:5f:
33:ea:0e:e4:b1:7d:57:c9:bf:f7:9a:57:ae:80:43:
f2:5a:60:2d:2c:5b:b4:93:86:7d:fd:08:c4:09:32:
29:74:2a:a5:f1:db:a8:90:95:32:8b:76:45:0f:a9:
04:0b:3e:ce:75:f5:e5:e6:ca:d4:71:ec:2d:cc:c7:
ae:e5:88:63:e0:36:24:70:82:94:1c:6e:ec:9e:44:
0c:6c:9e:11:6d:d0:14:9d:20:35:65:14:b7:7f:9c:
eb:df:bc:35:e7:c7:0f:84:5e:d3:dc:5a:4c:e0:6f:
05:f9:41:21:c1:1d:da:59:26:42:8f:d6:c3:de:28:
b3:f7:3b:8f:cb:03:e6:14:9a:29:1b:75:94:8c:b4:
f1:45:b7:9d:55:d0:40:69:ce:b1:a3:2b:f6:33:60:
00:dc:d2:ee:cc:8f:84:1d:a7:f3:6c:fa:d6:ef:87:
45:17:8d:fd:dd:06:23:96:6e:b7:e5:6a:1f:18:8f:
a7:10:7d:85:bb:27:f8:f9:d1:76:e0:18:10:1e:40:
16:b0:ed:64:19:fd:52:46:b7:0c:36:55:c6:74:17:
5f:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:83:89:11:D2:86:67:5D:C5:5E:2B:50:97:0D:77:DC:25:39:7E:91
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/zoOJEdKGZ13FXitQlw133CU5fpE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.0.0/24
Signature Algorithm: sha256WithRSAEncryption
69:f8:a1:99:6c:27:ce:92:0f:39:51:bc:5a:00:25:67:ec:2a:
4c:f1:18:26:95:60:3f:6e:d4:52:44:7c:c7:33:37:a9:6c:0b:
ee:03:8d:90:c7:af:23:85:c1:40:d0:af:2b:2b:50:39:d8:de:
b4:f8:cb:00:ac:00:15:40:b7:5e:51:d5:d6:6d:ad:9e:e6:67:
d5:1c:13:2f:30:d2:49:38:f1:93:af:fa:eb:33:8f:eb:07:e9:
5b:9b:6f:b6:3e:50:d0:72:ff:43:4e:0a:1a:47:8b:91:f5:a4:
ce:12:d1:b9:cb:ea:d5:26:3f:47:fb:53:11:a7:52:c3:39:0c:
ee:ec:41:da:d5:6b:91:35:96:0c:fb:1d:64:f6:b5:06:41:c2:
a3:09:c8:b7:5c:57:4b:44:f6:54:d1:15:f4:71:5a:f4:2c:f1:
db:d0:79:56:b1:ed:0d:fe:0e:ce:31:a9:f7:d0:9c:af:de:a0:
94:da:dd:a0:36:bc:82:2c:18:9f:87:7e:da:2b:9f:7c:fc:a0:
1f:f4:53:7f:63:a8:b9:7a:27:95:dc:d7:a2:30:4e:6c:25:10:
5d:46:53:9c:32:80:62:91:61:4d:59:28:07:bd:09:21:e0:36:
24:bb:68:5a:fa:69:14:67:8c:c2:70:ce:fb:6d:ac:98:25:8c:
cb:fd:72:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:34:32 2025 by rpki-client