Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/5dh_b1RBPEedGPoH5jPrifwFpjk.roa
File: 5dh_b1RBPEedGPoH5jPrifwFpjk.roa (raw, json)
Hash identifier: FiUlLPDPpSS4NO4ecP0itIgJ8SGlTnSQQXsonHz0nWs=
Subject key identifier: E5:D8:7F:6F:54:41:3C:47:9D:18:FA:07:E6:33:EB:89:FC:05:A6:39
Certificate issuer: /CN=746395c12672ad958921b62b9dc9b2bcd8a68a9f
Certificate serial: 0194228D1552D9A21D982ECE325136416F98
Authority key identifier: 74:63:95:C1:26:72:AD:95:89:21:B6:2B:9D:C9:B2:BC:D8:A6:8A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/5dh_b1RBPEedGPoH5jPrifwFpjk.roa
Signing time: Wed 01 Jan 2025 15:47:38 +0000
ROA not before: Wed 01 Jan 2025 15:47:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211398
IP address blocks: 31.24.249.0/24 maxlen: 32
2001:678:f30::/48 maxlen: 48
2a12:4940::/32 maxlen: 48
2a12:4942::/31 maxlen: 48
2a12:4942:174::/48 maxlen: 48
2a12:4946:1600::/48 maxlen: 48
2a12:4946:1650::/48 maxlen: 48
2a12:4946:1655::/48 maxlen: 48
2a12:4946:1658::/48 maxlen: 48
2a12:4946:1700::/48 maxlen: 48
2a12:4946:1800::/48 maxlen: 48
2a12:4946:1900::/48 maxlen: 48
2a12:4946:3000::/48 maxlen: 48
2a12:4946:3005::/48 maxlen: 48
2a12:4946:6960::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:15:52:d9:a2:1d:98:2e:ce:32:51:36:41:6f:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746395c12672ad958921b62b9dc9b2bcd8a68a9f
Validity
Not Before: Jan 1 15:47:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e5d87f6f54413c479d18fa07e633eb89fc05a639
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:da:11:d0:c0:9a:3f:b3:48:0f:5a:89:6f:63:
ab:49:09:7b:4c:c2:2f:a7:2b:9f:1a:c3:cb:bc:7a:
cf:41:42:4c:ab:84:6d:4c:40:44:14:13:a2:05:ae:
ef:b1:cb:3b:f4:1b:c5:5f:84:8e:df:ad:11:33:e8:
52:0d:7b:15:f5:4d:67:70:1c:69:60:75:1d:2d:d5:
f2:f9:37:92:b1:6a:d5:3e:1e:a4:6f:65:59:a7:53:
c9:04:b6:aa:d0:2c:51:5f:ef:12:06:40:11:fe:18:
5a:1a:ca:d6:fb:de:ae:15:32:4b:58:b3:10:64:ba:
e8:ab:cc:4d:14:be:bd:2b:c5:a3:9f:ac:4b:cb:42:
5d:28:e9:dd:76:ed:40:a2:dc:29:87:66:ff:cb:a6:
eb:a0:8b:c3:9e:af:6d:61:99:bd:ef:03:c9:72:c1:
23:6c:9b:46:72:23:b4:e7:6f:3d:e7:03:8e:20:70:
39:9f:9f:ed:47:cb:9e:86:16:f7:d3:6e:ba:a6:bc:
14:c8:70:98:f3:d7:04:df:30:3a:b6:d3:8e:22:21:
85:5e:52:ad:3e:1f:cb:4e:22:42:f2:5c:e0:9a:8e:
83:f2:3c:11:e4:e8:c2:72:a2:1a:29:e0:13:c8:b0:
13:3d:a9:cf:80:86:65:e8:40:61:c3:fa:2e:40:26:
32:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:D8:7F:6F:54:41:3C:47:9D:18:FA:07:E6:33:EB:89:FC:05:A6:39
X509v3 Authority Key Identifier:
keyid:74:63:95:C1:26:72:AD:95:89:21:B6:2B:9D:C9:B2:BC:D8:A6:8A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/5dh_b1RBPEedGPoH5jPrifwFpjk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/dGOVwSZyrZWJIbYrncmyvNimip8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.249.0/24
IPv6:
2001:678:f30::/48
2a12:4940::/32
2a12:4942::/31
2a12:4946:1600::/48
2a12:4946:1650::/48
2a12:4946:1655::/48
2a12:4946:1658::/48
2a12:4946:1700::/48
2a12:4946:1800::/48
2a12:4946:1900::/48
2a12:4946:3000::/48
2a12:4946:3005::/48
2a12:4946:6960::/44
Signature Algorithm: sha256WithRSAEncryption
53:00:8d:8e:6b:ac:22:bc:de:cb:f6:e9:90:91:3c:ed:40:ef:
55:5d:00:44:b4:85:99:a5:b6:13:e6:11:88:c6:83:60:ba:1a:
37:03:aa:79:c7:0e:4d:4c:84:5e:90:b4:e2:cb:eb:0d:62:8d:
93:48:9f:26:20:be:8d:06:0c:1b:d6:7d:f5:c5:9c:48:3c:35:
45:fa:8c:43:57:cb:5d:59:5f:1c:05:78:8b:69:5a:8f:bd:0e:
ff:c5:82:9d:43:63:87:d5:f4:84:d2:34:08:5f:31:c5:15:7c:
3a:a8:3b:c0:e4:99:fb:61:de:b3:f7:fe:be:18:d6:d7:da:d9:
a4:73:00:61:b1:42:45:92:70:8d:60:77:47:be:67:5f:88:79:
6c:ce:6b:f3:59:76:40:11:f6:3d:22:d1:69:5a:57:98:b1:c3:
6e:ef:93:8a:0d:91:6f:ff:bc:02:f0:aa:bf:e4:0d:a6:9d:16:
cd:7f:63:c3:e9:f6:7a:7a:3f:3f:22:60:05:b8:69:72:1d:3b:
d1:c2:5a:c2:27:44:b7:60:48:d5:37:78:1d:19:9e:8f:67:01:
58:4a:f3:12:69:38:f4:53:ad:15:12:09:c4:29:70:39:4e:96:
8c:ea:70:50:6a:1a:1d:7e:43:d9:81:ba:ce:3c:02:bd:4b:f9:
1e:1e:51:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 21:08:47 2025 by rpki-client