Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/bqR0TyJx3WCSgiG65r6mBJkDrbU.roa
File: bqR0TyJx3WCSgiG65r6mBJkDrbU.roa (raw, json)
Hash identifier: 2ZhHEggm3gxyuKaRniJThuLkrEIk1wHRlTnOK62cFzE=
Subject key identifier: 6E:A4:74:4F:22:71:DD:60:92:82:21:BA:E6:BE:A6:04:99:03:AD:B5
Certificate issuer: /CN=95e81311ef1d36ecc6d125e36c82c26f915b0df7
Certificate serial: 02CFE259
Authority key identifier: 95:E8:13:11:EF:1D:36:EC:C6:D1:25:E3:6C:82:C2:6F:91:5B:0D:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/legTEe8dNuzG0SXjbILCb5FbDfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/bqR0TyJx3WCSgiG65r6mBJkDrbU.roa
Signing time: Fri 18 Feb 2022 08:56:21 +0000
ROA not before: Fri 18 Feb 2022 08:56:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49461
IP address blocks: 31.42.160.0/24 maxlen: 24
31.42.166.0/24 maxlen: 24
31.42.160.0/20 maxlen: 20
31.42.162.0/24 maxlen: 24
31.42.161.0/24 maxlen: 24
31.42.164.0/24 maxlen: 24
31.42.163.0/24 maxlen: 24
31.42.165.0/24 maxlen: 24
31.42.167.0/24 maxlen: 24
31.42.169.0/24 maxlen: 24
31.42.168.0/24 maxlen: 24
31.42.171.0/24 maxlen: 24
31.42.170.0/24 maxlen: 24
31.42.172.0/24 maxlen: 24
31.42.172.0/23 maxlen: 23
31.42.174.0/24 maxlen: 24
31.42.173.0/24 maxlen: 24
31.42.175.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47178329 (0x2cfe259)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95e81311ef1d36ecc6d125e36c82c26f915b0df7
Validity
Not Before: Feb 18 08:56:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ea4744f2271dd60928221bae6bea6049903adb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:28:75:f1:3e:ad:eb:34:b0:fb:d3:a4:50:bd:
33:48:79:55:51:6b:b3:21:cb:9b:58:27:c6:06:97:
f5:73:69:b2:66:89:13:64:1a:e3:38:d2:3a:d8:82:
aa:80:b9:85:46:68:cf:22:80:f0:cf:37:90:69:f1:
d0:0c:cf:13:1b:11:9e:19:b2:9f:e8:7c:46:50:e1:
3a:22:6f:95:a1:24:d6:56:f1:4e:19:34:7c:5a:86:
34:5e:6c:f5:61:54:f2:a6:df:a4:4d:1c:36:ef:c8:
9b:aa:9b:2f:6e:ab:c9:ba:d5:38:52:a1:98:b0:12:
41:d5:58:bd:e5:3f:c8:0c:f2:7b:4f:de:11:ec:4d:
d2:5d:21:9d:52:d9:f8:89:30:bf:2a:88:a6:c8:54:
7e:5e:cf:9a:98:56:29:56:60:8e:0c:1f:96:55:57:
dc:d1:53:17:6f:49:8e:9d:78:c1:a1:d2:95:8c:00:
e8:e3:5a:fa:6c:15:99:0b:5f:a0:3b:83:11:41:15:
0a:ed:1c:96:11:2d:28:34:4f:ad:83:07:14:49:d8:
2d:d4:41:da:91:07:86:41:04:e2:6e:cc:bb:cf:ce:
4f:d4:ff:19:42:3c:89:c5:21:3b:12:77:53:65:70:
6b:a1:8f:c9:16:7e:16:bd:6b:07:0b:a3:39:a9:5d:
ff:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:A4:74:4F:22:71:DD:60:92:82:21:BA:E6:BE:A6:04:99:03:AD:B5
X509v3 Authority Key Identifier:
keyid:95:E8:13:11:EF:1D:36:EC:C6:D1:25:E3:6C:82:C2:6F:91:5B:0D:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/legTEe8dNuzG0SXjbILCb5FbDfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/bqR0TyJx3WCSgiG65r6mBJkDrbU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.160.0/20
Signature Algorithm: sha256WithRSAEncryption
9e:a7:22:8e:db:fb:0b:66:83:b9:29:53:e7:32:42:30:8f:f2:
99:ab:ee:e3:66:cd:5d:57:40:2a:7f:3f:bd:e7:cd:ef:7d:1b:
ff:08:f8:19:01:95:4e:ad:9e:3b:26:b8:3d:96:1c:65:63:8a:
72:3b:a9:b8:8f:f6:cb:37:b1:e4:bd:40:1a:f8:91:86:05:8f:
7c:fa:4d:d2:e0:fc:db:50:23:0e:0c:8a:6c:7b:3f:17:c5:01:
97:51:f1:71:0a:a0:e8:5e:14:29:5e:54:14:71:46:f6:eb:ae:
69:cd:bd:31:6d:47:0b:63:36:56:fe:17:8d:57:eb:4a:89:c6:
09:f3:b8:cc:03:05:a1:8d:15:6a:23:af:5f:7b:c7:b9:86:81:
ef:06:82:93:af:1e:41:65:8f:13:db:35:80:5c:35:b4:27:7e:
c5:e2:da:29:75:64:22:fa:93:6a:a7:e5:95:a8:fb:f6:94:f2:
09:54:19:d1:3a:4e:52:af:aa:b1:af:ab:4c:ca:4f:31:ae:9c:
8e:14:2c:fc:06:57:87:a6:98:e0:99:17:e3:44:8b:cf:f6:1f:
a9:ca:21:cc:4f:55:c5:cb:5a:6a:32:1a:58:29:bb:55:16:87:
f4:69:69:7a:a3:7a:a5:e2:64:d7:c1:22:c2:54:da:f3:91:f6:
f7:7d:44:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 19:31:29 2025 by rpki-client