Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/f6cb73-974f-4d11-baa7-52878eacdbf3/1/xVlnw5LXNnO1t2KVU9YNRngGO0g.roa
File: xVlnw5LXNnO1t2KVU9YNRngGO0g.roa (raw, json)
Hash identifier: ElsO412eK2KyM0XkcEf1cIz48/lygpiA8XGKTVgzCwE=
Subject key identifier: C5:59:67:C3:92:D7:36:73:B5:B7:62:95:53:D6:0D:46:78:06:3B:48
Certificate issuer: /CN=2770ca5cf0fcb3e1823d33d0cd9825aa1a98a107
Certificate serial: 07927743
Authority key identifier: 27:70:CA:5C:F0:FC:B3:E1:82:3D:33:D0:CD:98:25:AA:1A:98:A1:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J3DKXPD8s-GCPTPQzZglqhqYoQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/f6cb73-974f-4d11-baa7-52878eacdbf3/1/xVlnw5LXNnO1t2KVU9YNRngGO0g.roa
Signing time: Sat 01 Jan 2022 06:59:52 +0000
ROA not before: Sat 01 Jan 2022 06:59:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 394923
IP address blocks: 31.210.148.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127039299 (0x7927743)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2770ca5cf0fcb3e1823d33d0cd9825aa1a98a107
Validity
Not Before: Jan 1 06:59:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c55967c392d73673b5b7629553d60d4678063b48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:70:ff:19:4f:e9:89:ab:b2:79:6f:52:89:13:
d1:b7:cf:7b:9d:97:e5:9c:e6:23:1b:e2:90:13:81:
69:5a:76:96:22:86:39:ec:cf:a0:e4:34:ba:a7:57:
b1:b6:4f:6b:e0:40:26:14:84:9a:df:75:76:69:9d:
d8:1b:f4:7b:86:95:36:86:e5:03:fc:f0:37:cc:44:
e5:3a:87:cd:e2:3c:7c:fe:d6:da:c8:a9:35:df:e5:
2c:c2:8a:ed:d8:08:1d:2d:5d:67:70:66:ca:80:d3:
32:26:24:99:5c:47:80:ea:00:35:a8:de:c2:3a:63:
37:9e:3c:00:5f:61:a0:2b:09:db:35:18:e5:65:41:
eb:e6:43:53:53:54:9f:91:45:8f:2d:51:98:00:f6:
4a:48:63:1c:78:8d:1b:e6:21:f8:51:8d:a6:52:c1:
1d:62:cb:f6:3e:d2:f4:dd:e7:ac:a4:93:41:5e:a1:
6d:db:02:5b:bd:ad:f0:1e:36:e8:a7:22:a6:da:7e:
a9:c4:bc:31:3f:94:6d:1a:4a:bf:eb:6b:46:6b:75:
65:20:e7:7a:5f:38:7d:36:ec:e9:70:13:68:02:38:
c4:bc:53:38:ab:13:31:4d:a2:a0:87:79:d7:9c:b2:
82:b1:e5:45:87:44:42:90:82:1e:f1:ed:a9:8d:82:
14:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:59:67:C3:92:D7:36:73:B5:B7:62:95:53:D6:0D:46:78:06:3B:48
X509v3 Authority Key Identifier:
keyid:27:70:CA:5C:F0:FC:B3:E1:82:3D:33:D0:CD:98:25:AA:1A:98:A1:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J3DKXPD8s-GCPTPQzZglqhqYoQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/f6cb73-974f-4d11-baa7-52878eacdbf3/1/xVlnw5LXNnO1t2KVU9YNRngGO0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/f6cb73-974f-4d11-baa7-52878eacdbf3/1/J3DKXPD8s-GCPTPQzZglqhqYoQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.148.0/22
Signature Algorithm: sha256WithRSAEncryption
ce:ad:5c:5c:40:f5:e5:73:1d:3d:7f:18:0e:46:5c:ef:4b:bf:
38:11:b3:62:f1:d9:8f:09:e0:6f:b8:7e:5c:49:f0:1f:95:0d:
47:06:c3:d1:48:61:15:21:12:c9:3a:99:a3:c9:d8:23:28:66:
52:e5:4a:f0:95:5a:c2:e1:a2:cf:96:8b:83:26:19:d8:8f:ef:
20:b7:81:2a:13:ab:fe:1b:8f:6c:18:2a:3c:5c:3c:6b:fd:47:
01:f9:c6:03:0b:fb:bf:bb:be:9d:6a:e1:f7:f1:79:a9:6e:06:
6f:49:79:90:f7:8c:8d:fe:75:7d:6f:5b:dd:48:30:d2:53:f4:
42:4b:a8:71:01:87:35:41:1a:44:4b:0a:24:fc:1a:f1:a8:5c:
b5:74:95:c5:9b:d5:08:81:d0:e9:35:5c:b6:da:cf:d3:48:79:
cb:b0:b7:8e:c7:0c:ad:29:f3:6f:5a:bb:cc:bc:21:9d:a0:76:
20:31:54:5b:5e:f1:a1:97:0d:2d:29:31:93:63:9f:59:60:aa:
bd:c8:ec:c6:b0:df:82:0b:40:aa:51:67:81:34:5d:e0:d7:4c:
eb:7b:db:5a:12:13:bd:86:cf:c1:bd:eb:1a:5f:aa:dd:2a:4c:
6f:7d:dc:83:ce:d6:fb:26:06:de:34:a9:d4:d0:e4:08:89:9c:
be:e1:23:be
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB5J3QzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
NzcwY2E1Y2YwZmNiM2UxODIzZDMzZDBjZDk4MjVhYTFhOThhMTA3MB4XDTIyMDEw
MTA2NTk1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzU1OTY3YzM5MmQ3
MzY3M2I1Yjc2Mjk1NTNkNjBkNDY3ODA2M2I0ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK5w/xlP6YmrsnlvUokT0bfPe52X5ZzmIxvikBOBaVp2liKG
OezPoOQ0uqdXsbZPa+BAJhSEmt91dmmd2Bv0e4aVNoblA/zwN8xE5TqHzeI8fP7W
2sipNd/lLMKK7dgIHS1dZ3BmyoDTMiYkmVxHgOoANajewjpjN548AF9hoCsJ2zUY
5WVB6+ZDU1NUn5FFjy1RmAD2SkhjHHiNG+Yh+FGNplLBHWLL9j7S9N3nrKSTQV6h
bdsCW72t8B426Kciptp+qcS8MT+UbRpKv+trRmt1ZSDnel84fTbs6XATaAI4xLxT
OKsTMU2ioId515yygrHlRYdEQpCCHvHtqY2CFJUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTFWWfDktc2c7W3YpVT1g1GeAY7SDAfBgNVHSMEGDAWgBQncMpc8Pyz4YI9
M9DNmCWqGpihBzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0ozREtYUEQ4cy1HQ1BUUFF6WmdscWhxWW9RYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzIvZjZjYjczLTk3NGYtNGQxMS1iYWE3LTUyODc4ZWFjZGJmMy8x
L3hWbG53NUxYTm5PMXQyS1ZVOVlOUm5nR08wZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzIv
ZjZjYjczLTk3NGYtNGQxMS1iYWE3LTUyODc4ZWFjZGJmMy8xL0ozREtYUEQ4cy1H
Q1BUUFF6WmdscWhxWW9RYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAh/SlDANBgkqhkiG9w0BAQsFAAOC
AQEAzq1cXED15XMdPX8YDkZc70u/OBGzYvHZjwngb7h+XEnwH5UNRwbD0UhhFSES
yTqZo8nYIyhmUuVK8JVawuGiz5aLgyYZ2I/vILeBKhOr/huPbBgqPFw8a/1HAfnG
Awv7v7u+nWrh9/F5qW4Gb0l5kPeMjf51fW9b3Ugw0lP0QkuocQGHNUEaREsKJPwa
8ahctXSVxZvVCIHQ6TVcttrP00h5y7C3jscMrSnzb1q7zLwhnaB2IDFUW17xoZcN
LSkxk2OfWWCqvcjsxrDfggtAqlFngTRd4NdM63vbWhITvYbPwb3rGl+q3SpMb33c
g87W+yYG3jSp1NDkCImcvuEjvg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:33 2023 by rpki-client on console-ams.rpki-client.org