Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/py6UVbnGSCFD9UnKceZ9kgRxFEA.roa
File: py6UVbnGSCFD9UnKceZ9kgRxFEA.roa (raw, json)
Hash identifier: bcsPoMQcphhUQSwMWLfV++Vj4Ps638fSjd2kseADRTg=
Subject key identifier: A7:2E:94:55:B9:C6:48:21:43:F5:49:CA:71:E6:7D:92:04:71:14:40
Certificate issuer: /CN=746395c12672ad958921b62b9dc9b2bcd8a68a9f
Certificate serial: 0194228D121BDBD9763E7D2BEE4A58AA7041
Authority key identifier: 74:63:95:C1:26:72:AD:95:89:21:B6:2B:9D:C9:B2:BC:D8:A6:8A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/py6UVbnGSCFD9UnKceZ9kgRxFEA.roa
Signing time: Wed 01 Jan 2025 15:47:38 +0000
ROA not before: Wed 01 Jan 2025 15:47:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199839
IP address blocks: 31.24.249.0/24 maxlen: 32
2001:678:f30::/48 maxlen: 48
2a12:4940::/32 maxlen: 48
2a12:4942:174::/48 maxlen: 48
2a12:4942:4009::/48 maxlen: 48
2a12:4946:1600::/48 maxlen: 48
2a12:4946:1650::/48 maxlen: 48
2a12:4946:1655::/48 maxlen: 48
2a12:4946:1658::/48 maxlen: 48
2a12:4946:1700::/48 maxlen: 48
2a12:4946:1800::/48 maxlen: 48
2a12:4946:1900::/48 maxlen: 48
2a12:4946:3000::/48 maxlen: 48
2a12:4946:8000::/40 maxlen: 48
2a12:4946:8000::/48 maxlen: 48
2a12:4946:8010::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:12:1b:db:d9:76:3e:7d:2b:ee:4a:58:aa:70:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746395c12672ad958921b62b9dc9b2bcd8a68a9f
Validity
Not Before: Jan 1 15:47:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a72e9455b9c6482143f549ca71e67d9204711440
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:21:19:08:31:75:d5:49:bc:1d:41:8d:5e:82:
6d:27:a0:69:61:88:94:a7:16:c7:21:8a:be:1a:9c:
40:4c:13:43:c1:59:b1:68:ac:dc:4c:75:3e:2e:62:
b8:cf:b4:a3:b4:98:1c:c0:0b:9a:6e:11:f1:8b:a3:
40:e6:55:26:d7:5c:92:49:6d:67:c9:45:44:25:79:
31:4f:d8:61:38:d9:87:79:b0:79:f2:f9:17:28:32:
e0:4e:d6:d8:a4:fd:e5:8e:0a:25:44:c0:66:9d:8c:
47:60:9d:16:b0:98:03:01:f5:36:43:58:7e:fa:65:
bb:c4:c5:0e:ca:0b:23:25:03:d7:87:d8:43:c4:f5:
e2:da:61:d0:78:5c:a3:41:9c:f8:e5:be:68:d7:78:
55:67:54:fe:7d:42:01:ef:1b:f0:99:b4:0d:ee:83:
a9:21:20:b0:26:45:5e:c4:f7:f3:8d:e9:a2:fb:64:
e6:54:84:70:cd:12:91:cb:9f:fa:16:36:9e:ee:76:
dc:ec:91:e4:07:3c:6a:e2:a7:e1:6e:cc:22:6f:d0:
2d:55:cc:0e:91:4a:02:bb:b7:10:9c:a3:c2:4b:0a:
62:30:18:a9:9f:fb:12:92:90:9d:26:fb:78:86:94:
5c:ea:7a:f8:41:6a:19:a9:d6:77:56:83:41:77:79:
0d:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:2E:94:55:B9:C6:48:21:43:F5:49:CA:71:E6:7D:92:04:71:14:40
X509v3 Authority Key Identifier:
keyid:74:63:95:C1:26:72:AD:95:89:21:B6:2B:9D:C9:B2:BC:D8:A6:8A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/py6UVbnGSCFD9UnKceZ9kgRxFEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/dGOVwSZyrZWJIbYrncmyvNimip8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.249.0/24
IPv6:
2001:678:f30::/48
2a12:4940::/32
2a12:4942:174::/48
2a12:4942:4009::/48
2a12:4946:1600::/48
2a12:4946:1650::/48
2a12:4946:1655::/48
2a12:4946:1658::/48
2a12:4946:1700::/48
2a12:4946:1800::/48
2a12:4946:1900::/48
2a12:4946:3000::/48
2a12:4946:8000::/40
Signature Algorithm: sha256WithRSAEncryption
82:6e:ee:7d:65:79:d7:a3:79:2f:31:fc:18:62:23:20:91:b5:
70:63:9d:b2:7a:1b:ad:15:cb:a2:38:f0:e2:8a:a8:44:78:2f:
ea:3b:7e:ec:c2:5e:c5:70:ea:c4:5c:41:ca:2f:52:dc:14:39:
35:6e:83:5f:24:33:9f:2b:16:b7:81:46:ac:48:0c:74:fe:0e:
be:f4:47:78:31:7e:a0:43:ab:ac:69:dd:e7:3c:43:20:bc:a3:
b9:03:c4:08:5c:0f:6b:a3:3a:91:76:5d:d0:37:15:41:fe:71:
66:cf:2b:18:95:a9:d8:78:a1:df:08:f2:8e:6b:9a:d4:24:cd:
2c:ef:8f:f6:95:bd:9f:44:0c:82:2e:e4:f7:a3:3a:71:df:3a:
0f:7a:3e:34:f8:71:58:ed:63:82:47:4d:37:b4:06:0f:66:48:
e7:02:a8:7c:ca:a4:74:9a:68:aa:f5:7e:4c:8e:c0:c9:4f:6d:
51:ab:48:2a:8e:6d:bb:2b:2b:c8:95:68:f2:da:e9:f0:bd:6b:
72:a9:7e:ba:ae:fe:7a:a3:2a:35:4e:29:19:da:bc:ea:6a:50:
43:1a:e3:a3:a7:31:d1:05:f4:8c:af:76:24:10:43:40:96:43:
22:70:5e:9a:6d:05:a8:6c:eb:32:1c:f8:d9:0d:73:da:da:41:
0f:53:bf:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 13:07:23 2025 by rpki-client