Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/4b97c4-de0c-45d7-8f17-5d0ae14563d7/1/AL6K0DjuOiitlbcah-HbGSeJsLQ.roa
File: AL6K0DjuOiitlbcah-HbGSeJsLQ.roa (raw, json)
Hash identifier: +c1LEovfBOTY1FL85Z5BLqPLHpy5KXwpEZRd8NycErI=
Subject key identifier: 00:BE:8A:D0:38:EE:3A:28:AD:95:B7:1A:87:E1:DB:19:27:89:B0:B4
Certificate issuer: /CN=7b0a9ea086d81eed4d29de463d6029088fe3bec1
Certificate serial: D1AB25
Authority key identifier: 7B:0A:9E:A0:86:D8:1E:ED:4D:29:DE:46:3D:60:29:08:8F:E3:BE:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ewqeoIbYHu1NKd5GPWApCI_jvsE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/4b97c4-de0c-45d7-8f17-5d0ae14563d7/1/AL6K0DjuOiitlbcah-HbGSeJsLQ.roa
Signing time: Sat 01 Jan 2022 12:04:43 +0000
ROA not before: Sat 01 Jan 2022 12:04:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 31.222.228.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13740837 (0xd1ab25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b0a9ea086d81eed4d29de463d6029088fe3bec1
Validity
Not Before: Jan 1 12:04:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=00be8ad038ee3a28ad95b71a87e1db192789b0b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:62:f2:68:8f:ce:b4:c1:f0:82:2f:12:09:4e:
bb:63:29:f2:84:ef:16:ec:b4:d4:ca:4c:f1:af:66:
f8:15:02:39:8a:43:13:4d:a7:22:01:44:9f:cb:4a:
ea:60:58:4b:17:82:27:36:32:b3:a6:35:ab:e8:21:
f1:1c:f7:9d:11:94:be:38:b6:c0:15:4f:3b:4c:ed:
82:8c:07:a4:2f:3a:bd:1b:57:d0:d1:9a:21:68:29:
65:7c:3d:e5:db:dd:30:31:e8:99:91:a8:3a:b7:d3:
9f:89:dd:c7:19:fd:d5:1a:25:a2:af:e1:76:fa:84:
79:a1:2b:da:75:45:36:5d:d1:21:db:b3:bb:f1:c4:
a1:8b:f4:7d:87:37:0d:0f:27:de:aa:26:d3:de:7f:
db:7c:11:5c:b7:88:0f:1a:1a:43:9a:dc:f4:8d:d7:
d1:c4:07:eb:52:e2:b3:b6:14:77:1b:6e:ca:e8:e0:
42:b4:41:96:21:12:92:79:6a:bf:05:27:bd:ff:fc:
9c:8c:11:e1:98:bf:ab:1c:46:80:48:23:ba:83:23:
00:f2:1f:79:6f:45:b6:9e:1c:46:8b:f0:bb:18:86:
95:76:16:48:00:42:7e:9c:f7:54:8d:4e:d5:20:c5:
36:fa:46:41:6a:44:18:81:fe:ea:dd:b6:35:f2:c9:
20:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:BE:8A:D0:38:EE:3A:28:AD:95:B7:1A:87:E1:DB:19:27:89:B0:B4
X509v3 Authority Key Identifier:
keyid:7B:0A:9E:A0:86:D8:1E:ED:4D:29:DE:46:3D:60:29:08:8F:E3:BE:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ewqeoIbYHu1NKd5GPWApCI_jvsE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/4b97c4-de0c-45d7-8f17-5d0ae14563d7/1/AL6K0DjuOiitlbcah-HbGSeJsLQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/4b97c4-de0c-45d7-8f17-5d0ae14563d7/1/ewqeoIbYHu1NKd5GPWApCI_jvsE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.228.0/24
Signature Algorithm: sha256WithRSAEncryption
64:4d:25:a6:36:ea:fb:fa:49:2b:41:65:21:bf:39:b2:e8:bf:
7d:25:fe:83:a0:ca:a3:bf:27:b5:e8:ac:54:9e:ea:c8:eb:92:
e8:35:0f:13:e8:eb:c8:11:6e:3c:bc:c3:fa:9f:5b:cb:d4:c5:
72:b5:ad:15:c4:d1:cb:81:9f:02:10:4b:b7:7e:14:ff:fc:2a:
9d:f9:a3:4f:c7:ec:d4:ff:d9:cd:00:e9:a4:0e:01:ac:96:1f:
fa:8f:ce:79:a2:ea:e3:b1:6b:2e:75:a8:bf:0f:63:81:1c:65:
95:8a:17:d2:c3:56:d6:01:01:2b:99:1b:8c:18:36:6f:48:e2:
35:30:11:c0:c6:f5:b9:61:ac:91:48:b0:8e:c5:98:77:1d:f3:
e9:16:07:2f:f1:c9:04:c6:2f:0f:f1:37:a8:00:13:67:8f:a8:
35:d9:80:d6:13:e1:f3:e2:99:7e:f2:54:17:ba:3b:e8:98:5e:
b7:45:8c:4c:a3:07:c2:86:34:a8:13:0b:28:fa:fc:3e:65:d2:
9e:81:fa:15:90:62:e6:f7:4d:12:88:53:b2:6b:69:89:0d:f1:
ca:9c:43:27:7a:c0:d1:39:2e:88:50:89:d8:b2:4f:4d:e4:4e:
05:b7:54:b4:62:56:57:29:42:2f:07:09:3c:90:d4:de:05:3a:
3d:99:72:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:31:11 2025 by rpki-client