Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/9466cb-b326-4b17-bba4-3c7ec8228099/1/BDSr5RKKfPjdKkZ_naFB7OaY_Rs.roa
File: BDSr5RKKfPjdKkZ_naFB7OaY_Rs.roa (raw, json)
Hash identifier: ACYPZUPf4oDF/4QAlNUsxgmOwxcDaWNn5GWptG/EDJY=
Subject key identifier: 04:34:AB:E5:12:8A:7C:F8:DD:2A:46:7F:9D:A1:41:EC:E6:98:FD:1B
Certificate issuer: /CN=3aed80118022ff10eeea5ecb38050035aee0eac7
Certificate serial: 018BA5167BD407450CF37C7E3F05496EF1D9
Authority key identifier: 3A:ED:80:11:80:22:FF:10:EE:EA:5E:CB:38:05:00:35:AE:E0:EA:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ou2AEYAi_xDu6l7LOAUANa7g6sc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/9466cb-b326-4b17-bba4-3c7ec8228099/1/BDSr5RKKfPjdKkZ_naFB7OaY_Rs.roa
Signing time: Mon 06 Nov 2023 14:43:16 +0000
ROA not before: Mon 06 Nov 2023 14:43:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47721
IP address blocks: 31.24.82.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a5:16:7b:d4:07:45:0c:f3:7c:7e:3f:05:49:6e:f1:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aed80118022ff10eeea5ecb38050035aee0eac7
Validity
Not Before: Nov 6 14:43:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0434abe5128a7cf8dd2a467f9da141ece698fd1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:98:95:95:22:d4:99:48:b9:93:3a:65:04:ac:
b8:6a:1e:33:56:c0:4f:0c:ca:d5:d9:60:3e:5c:85:
dc:0d:08:fe:ab:af:b9:53:cd:ac:75:33:81:4f:e9:
d4:6b:41:37:4b:52:fe:c4:77:6e:a2:12:5d:4e:80:
c1:be:95:9f:6f:9c:91:d8:aa:11:ea:51:31:2e:a4:
3e:0f:ef:da:5a:01:85:bf:2f:42:ec:b0:1c:99:a9:
60:e7:3e:25:97:6f:49:a6:26:68:90:a1:4b:79:38:
43:24:81:ef:26:4e:eb:c0:00:4e:cf:7d:c6:da:48:
18:34:6a:b9:62:a9:12:5a:1f:d8:2b:17:a5:96:fb:
88:4d:f1:28:b3:04:f1:a3:0f:e1:9c:1e:ef:db:e8:
11:4c:89:be:ff:d2:7e:59:f7:8c:6a:6a:0f:d0:4a:
77:23:95:be:7c:c8:eb:40:1c:f6:12:6e:06:81:94:
37:f7:2d:1d:69:70:cb:25:48:3b:56:61:71:e9:28:
cc:bc:59:6f:03:0c:51:e6:ff:de:69:84:c4:b8:8b:
9e:b6:5d:2e:2a:79:3a:d0:b6:91:d0:e0:bf:68:e5:
b8:24:16:fc:89:2d:2b:7a:96:64:d6:e5:18:08:bc:
0a:8f:15:e5:7a:1f:34:f4:37:2b:73:a7:b5:bd:91:
96:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:34:AB:E5:12:8A:7C:F8:DD:2A:46:7F:9D:A1:41:EC:E6:98:FD:1B
X509v3 Authority Key Identifier:
keyid:3A:ED:80:11:80:22:FF:10:EE:EA:5E:CB:38:05:00:35:AE:E0:EA:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ou2AEYAi_xDu6l7LOAUANa7g6sc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/9466cb-b326-4b17-bba4-3c7ec8228099/1/BDSr5RKKfPjdKkZ_naFB7OaY_Rs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/9466cb-b326-4b17-bba4-3c7ec8228099/1/Ou2AEYAi_xDu6l7LOAUANa7g6sc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.82.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:f1:5a:28:a5:d5:43:74:52:c9:49:1b:af:3f:2f:c5:d7:f2:
15:cc:fc:d7:b7:48:cf:8a:43:32:dd:35:82:f7:db:1d:d4:38:
ab:34:a5:60:f7:6f:f6:a0:05:5b:ca:25:06:39:37:26:75:d5:
6a:09:40:3f:c1:0d:f0:a5:75:11:5c:06:94:d9:6a:82:53:f5:
1d:99:ad:b9:eb:2d:1b:15:e7:7b:22:18:9f:c9:f1:2d:7c:dd:
8a:c0:7d:0a:d4:4a:13:c1:3d:97:34:13:35:ae:22:f9:96:9f:
e6:59:89:29:91:03:2d:38:2f:5b:77:0b:a8:8c:76:35:00:7d:
9b:56:0d:dd:56:fd:5b:db:60:d1:fc:a9:37:33:0f:da:4a:b6:
56:23:a9:ec:f6:df:22:8d:4c:90:82:0a:0d:11:33:2d:f1:e0:
a7:e5:88:43:f9:de:57:5a:f1:78:57:d9:fd:1d:bc:ca:46:63:
95:51:86:62:5f:1e:99:7e:fe:9c:20:40:94:35:54:fe:22:23:
ae:66:b5:b3:6e:55:a3:7d:a6:fa:71:3c:83:d3:55:b6:fe:db:
a3:37:c8:14:df:fc:7d:ae:7a:92:2a:e6:33:cb:0d:b1:f7:d8:
93:3f:51:ce:32:d4:8f:b3:7c:96:6f:79:03:13:55:01:a8:7b:
56:3e:c6:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 07:44:02 2025 by rpki-client