Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/7dee09-cd2e-4030-ab92-ebdcc02fbae9/1/bEGypvvFdieuB8MqDpxKdXJ8kNg.roa
File: bEGypvvFdieuB8MqDpxKdXJ8kNg.roa (raw, json)
Hash identifier: vSAOldwQyc84PWNS680u4tBdhTXM4itlLyrOuf9QGwY=
Subject key identifier: 6C:41:B2:A6:FB:C5:76:27:AE:07:C3:2A:0E:9C:4A:75:72:7C:90:D8
Certificate issuer: /CN=4944680c20d1af01f169b18ac9c77d9877133cde
Certificate serial: 018714479079908236849BDD5AC6470188B0
Authority key identifier: 49:44:68:0C:20:D1:AF:01:F1:69:B1:8A:C9:C7:7D:98:77:13:3C:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SURoDCDRrwHxabGKycd9mHcTPN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/7dee09-cd2e-4030-ab92-ebdcc02fbae9/1/bEGypvvFdieuB8MqDpxKdXJ8kNg.roa
Signing time: Fri 24 Mar 2023 15:40:46 +0000
ROA not before: Fri 24 Mar 2023 15:40:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 31.131.164.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:14:47:90:79:90:82:36:84:9b:dd:5a:c6:47:01:88:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4944680c20d1af01f169b18ac9c77d9877133cde
Validity
Not Before: Mar 24 15:40:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c41b2a6fbc57627ae07c32a0e9c4a75727c90d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3a:b0:26:e9:a8:0a:44:c5:d7:55:93:17:b6:
74:34:fe:ae:4b:4a:84:01:73:ce:84:c1:28:19:bb:
cd:be:fe:70:a8:47:af:9f:16:b3:85:88:32:ac:c2:
41:c5:68:9a:97:ef:f9:67:2a:ac:13:ca:53:36:44:
5b:b8:0d:10:d7:e9:fe:18:2f:fe:8f:78:e3:1d:89:
14:79:53:88:d4:82:9c:04:79:ad:84:65:f9:0e:cf:
80:17:72:5c:5c:eb:97:ee:8c:ac:0c:9f:98:08:a4:
93:59:a5:a3:e0:08:e0:fc:63:b0:48:78:38:a5:47:
03:00:fe:7a:88:f7:ab:26:c2:a4:ef:37:20:3a:ea:
aa:dc:eb:02:8c:f3:27:8b:a8:2b:a5:4c:23:60:9b:
03:25:81:7a:1b:3e:59:ef:44:ff:09:1c:f2:d3:0c:
cc:fb:3b:c3:4e:4b:ca:2b:51:02:00:8e:3e:e6:4f:
b3:b9:12:d8:74:41:9b:b0:10:2a:54:81:b0:7b:94:
a8:87:28:f2:51:12:c0:e1:df:cb:e1:2c:1b:cf:4c:
21:fe:51:db:64:7d:0b:99:3c:c6:62:57:eb:06:e6:
ad:e4:8e:ed:af:b2:cf:7e:6d:a6:e6:7f:0d:d7:8a:
a7:eb:02:f8:a7:e9:e0:3d:6a:d4:be:d5:3c:27:70:
60:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:41:B2:A6:FB:C5:76:27:AE:07:C3:2A:0E:9C:4A:75:72:7C:90:D8
X509v3 Authority Key Identifier:
keyid:49:44:68:0C:20:D1:AF:01:F1:69:B1:8A:C9:C7:7D:98:77:13:3C:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SURoDCDRrwHxabGKycd9mHcTPN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7dee09-cd2e-4030-ab92-ebdcc02fbae9/1/bEGypvvFdieuB8MqDpxKdXJ8kNg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7dee09-cd2e-4030-ab92-ebdcc02fbae9/1/SURoDCDRrwHxabGKycd9mHcTPN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.131.164.0/22
Signature Algorithm: sha256WithRSAEncryption
62:8e:4d:5c:10:8e:b5:d9:20:b9:d4:dd:0b:cf:85:17:ec:c0:
d6:1b:a4:32:98:4d:71:37:83:09:ae:27:20:19:8b:e6:36:dd:
8d:1a:94:b3:89:83:64:b3:54:f9:c4:ec:f0:46:d4:62:44:a5:
f8:c1:99:40:6a:b6:ae:80:78:55:86:7f:b5:b1:7e:39:20:4c:
91:86:ef:03:50:7e:bd:50:e9:1b:3b:5c:19:62:be:42:f5:e3:
51:82:f4:9c:e7:bd:1c:27:c6:c1:8f:f6:1b:3c:30:08:a7:58:
8c:cc:fc:c5:6c:5e:e3:cc:25:3c:50:5f:30:6b:c1:b6:bb:4a:
d9:0d:40:73:04:5f:3d:ba:bd:e6:e9:d4:eb:d9:07:7d:55:cd:
97:86:f4:d3:be:54:ed:05:03:07:86:d6:35:98:62:f2:83:44:
0f:90:e4:5a:db:cf:b2:5e:dc:ac:8c:6e:00:6c:81:4b:63:24:
61:95:19:b7:de:f2:25:f6:0f:68:c9:ab:dc:f9:f5:0d:74:d3:
09:87:f9:a9:42:7b:26:ce:82:12:e5:10:77:d2:bb:ee:08:57:
70:d3:6e:87:92:b9:fa:3a:ee:d6:cc:85:33:f7:67:4d:10:8f:
88:50:c5:97:3c:75:c2:4a:82:94:f9:b2:91:38:12:32:bb:d2:
39:a5:c2:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 28 09:52:51 2023 by rpki-client on console-fra.rpki-client.org