Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/zq4FwQfIV6K3oE3d4a3GSyfZzuQ.roa
File: zq4FwQfIV6K3oE3d4a3GSyfZzuQ.roa (raw, json)
Hash identifier: 8Ekc34eETeA0eqs77/LBpq/DYLN1F9iQMgS4pgBSzbU=
Subject key identifier: CE:AE:05:C1:07:C8:57:A2:B7:A0:4D:DD:E1:AD:C6:4B:27:D9:CE:E4
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0194258FB70F2701A0D58E43EBB690679731
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/zq4FwQfIV6K3oE3d4a3GSyfZzuQ.roa
Signing time: Thu 02 Jan 2025 05:49:22 +0000
ROA not before: Thu 02 Jan 2025 05:49:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50334
IP address blocks: 31.148.250.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:b7:0f:27:01:a0:d5:8e:43:eb:b6:90:67:97:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 05:49:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ceae05c107c857a2b7a04ddde1adc64b27d9cee4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:11:36:08:d7:74:78:e9:2f:a9:3c:0d:7e:83:
98:10:98:d9:ed:50:9d:d1:f5:dd:df:32:0d:6e:24:
8a:91:25:b0:05:e3:0d:47:87:1f:6c:e3:2d:56:37:
e0:98:ac:fc:08:c8:fc:cb:07:a1:69:43:09:6f:16:
f1:aa:23:4e:4f:6b:a6:66:5a:a2:b4:63:14:3f:b5:
70:8b:70:9d:ed:36:26:70:2a:21:5a:a8:7c:42:b6:
8b:a1:fe:c1:23:8b:d9:8f:46:92:a1:c5:2d:7c:ef:
d3:88:d2:7c:7f:b6:af:ba:67:c8:63:94:53:fe:9f:
8c:bf:f8:e5:dd:3a:ee:6d:08:0c:a4:1e:eb:cb:b5:
8d:8e:f7:e5:2d:b9:dc:d9:bd:ae:0c:b3:5b:20:00:
d5:46:89:7c:16:6f:90:d5:2e:4a:79:26:8a:13:4e:
29:b7:fa:dd:7c:49:9f:4c:97:4c:83:41:cf:c3:b3:
df:eb:13:39:d5:bb:a5:a1:e4:d0:88:bd:eb:bc:21:
e7:0d:fc:e1:34:a6:99:bc:ac:b1:df:15:d5:d0:b1:
f5:6b:3a:ac:ad:c8:9d:c9:53:7f:c2:9a:60:ce:52:
2c:0b:9e:56:c3:10:e9:a1:14:9c:bc:5e:13:f7:1b:
e1:d6:7b:fe:6a:e5:2e:a6:3f:20:9c:db:64:0c:3e:
f4:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:AE:05:C1:07:C8:57:A2:B7:A0:4D:DD:E1:AD:C6:4B:27:D9:CE:E4
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/zq4FwQfIV6K3oE3d4a3GSyfZzuQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.250.0/23
Signature Algorithm: sha256WithRSAEncryption
5b:92:29:3b:5f:50:79:ce:f7:e0:44:68:fb:cf:74:3b:33:eb:
32:8d:92:e7:99:11:21:d7:1a:9e:dc:af:20:d6:ea:da:1d:25:
a6:87:6e:22:21:c3:42:73:b0:63:73:f1:ec:2e:51:36:82:7b:
46:69:f6:3b:af:b0:12:fb:54:18:a2:df:26:96:c3:b6:5a:c9:
a3:2c:14:36:23:c7:6c:50:59:36:a1:6e:0e:bf:97:80:e0:c5:
dc:06:0b:7a:37:33:b7:02:f6:e3:40:49:4b:1d:29:36:ee:b9:
a2:e6:19:41:4b:cd:a8:77:d2:46:fc:da:a1:81:f4:1a:60:39:
7c:78:45:0d:18:d7:db:47:b5:c6:e6:66:60:e6:25:5c:98:ce:
86:e4:d9:9c:44:58:d2:d7:5a:9e:ee:34:80:11:1c:65:a6:ba:
a6:b0:24:cc:74:ac:2d:a1:3a:7d:8c:9b:74:13:a8:f0:5a:d5:
68:b7:cb:a7:15:1e:f6:b9:5f:45:b4:5b:13:80:30:f7:89:81:
76:85:b9:1f:18:06:dd:10:08:c3:14:03:62:8a:ce:e6:a7:ba:
da:3c:03:b2:08:cf:96:9e:f6:9d:08:f8:87:bf:bf:66:37:9f:
bf:e8:ef:2a:6e:d5:38:12:b7:02:32:91:87:b5:4f:f3:19:8a:
25:50:bd:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:41:22 2025 by rpki-client