Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/kU4sWVvEXvpfFIWiAeVwr_LDqWI.roa
File: kU4sWVvEXvpfFIWiAeVwr_LDqWI.roa (raw, json)
Hash identifier: WPm3b9qQQzxthupDsTzro6o6AJsuP42XyxlUTyGK+5s=
Subject key identifier: 91:4E:2C:59:5B:C4:5E:FA:5F:14:85:A2:01:E5:70:AF:F2:C3:A9:62
Certificate issuer: /CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Certificate serial: 019428274909629531F760B84731FB700382
Authority key identifier: 02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/kU4sWVvEXvpfFIWiAeVwr_LDqWI.roa
Signing time: Thu 02 Jan 2025 17:54:10 +0000
ROA not before: Thu 02 Jan 2025 17:54:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34929
IP address blocks: 31.7.83.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:27:49:09:62:95:31:f7:60:b8:47:31:fb:70:03:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Validity
Not Before: Jan 2 17:54:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=914e2c595bc45efa5f1485a201e570aff2c3a962
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:fb:a1:31:77:89:44:6c:a5:3f:cd:61:6f:9d:
e3:29:cd:44:1b:9c:16:54:48:1c:43:99:1a:dc:8d:
aa:01:fe:58:5f:16:3b:72:b7:32:89:2b:40:f0:bd:
d3:5d:b7:13:95:d1:ab:ec:9a:aa:c9:b0:a8:8d:dd:
d4:da:c7:ac:37:9f:c9:81:39:7d:29:44:eb:71:b4:
60:50:ac:a0:bc:8e:f3:9b:51:fd:f7:28:f4:88:f8:
76:c0:31:14:a6:13:7f:84:d8:c7:cc:11:91:6e:25:
e4:35:ce:ad:5b:85:47:e9:9c:4d:56:35:6d:11:a8:
b8:92:34:5f:d1:92:0d:05:40:fc:e6:6a:da:f3:10:
b7:03:2a:7d:7a:a7:85:ea:e1:50:cc:0d:14:0d:15:
ca:bd:74:e5:0b:1c:a9:75:e4:b5:01:d0:d7:d5:bb:
40:46:6f:00:fb:cc:a2:93:d1:85:ba:26:c9:b1:24:
69:4c:8a:2f:5c:c4:c2:2e:56:c5:12:97:8d:5a:ef:
f0:20:5a:d4:d0:f9:fa:0c:d8:0d:b2:02:14:31:1a:
3c:84:f4:c6:61:da:b2:a1:70:c4:1d:57:4e:1d:77:
30:44:c3:e2:0a:11:b3:12:6b:c5:b1:07:6a:24:df:
e4:7f:72:ed:93:00:52:18:5b:ee:ff:85:e2:27:a5:
a7:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:4E:2C:59:5B:C4:5E:FA:5F:14:85:A2:01:E5:70:AF:F2:C3:A9:62
X509v3 Authority Key Identifier:
keyid:02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/kU4sWVvEXvpfFIWiAeVwr_LDqWI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/ArvU-GWhLXmgmgNEhs5hugI4gsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.7.83.0/24
Signature Algorithm: sha256WithRSAEncryption
cf:43:10:4e:f3:39:d9:9e:a8:7e:f3:ff:69:e1:ab:ac:00:7c:
e2:57:80:89:6f:f9:86:51:dd:a5:1f:0a:b0:a5:f0:78:8a:43:
c4:5d:3a:76:91:2e:99:e5:9d:76:c5:88:77:38:a3:1b:ed:47:
45:b9:27:51:8a:69:2c:f0:53:4d:00:59:90:e6:0b:98:70:49:
0a:08:d2:d7:42:72:fd:cd:cc:44:19:04:d8:9c:2c:04:0c:f4:
3a:32:09:6b:9b:cb:51:f4:7a:57:be:b9:d5:67:d5:3b:81:6c:
18:2e:c5:48:7f:5e:86:e9:e1:df:b7:5e:6a:13:31:7d:ea:32:
e9:0a:94:f9:76:b6:26:85:38:3e:34:8a:82:5b:d9:57:48:52:
6a:54:d3:33:fe:64:e7:5d:bd:46:d6:72:19:8d:ee:5b:0a:f6:
58:c6:33:33:b2:84:35:35:7c:50:94:ef:b6:4f:6b:87:03:1c:
e7:fe:60:78:9f:c7:90:de:42:e0:f3:05:11:7b:13:3a:ab:cc:
de:b5:bb:99:4e:bb:5b:ab:28:a4:7c:47:9c:fd:d9:f1:70:60:
2e:e0:fd:fb:ad:4e:cf:3d:df:af:72:23:cf:6d:c8:2f:46:7f:
b8:a3:e8:6e:3e:d8:95:a4:50:f2:ab:c3:d7:6d:0a:40:ac:4c:
40:6c:ba:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:14:19 2025 by rpki-client