Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/040Mo0ymgQZkUPLLo3ndTuK5VZc.roa
File: 040Mo0ymgQZkUPLLo3ndTuK5VZc.roa (raw, json)
Hash identifier: hTx6FDQLoKsfUmqU1Q1klJX+D327g5z/xaVTvVrI/q4=
Subject key identifier: D3:8D:0C:A3:4C:A6:81:06:64:50:F2:CB:A3:79:DD:4E:E2:B9:55:97
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0195C9123B1D15E6CD4C1B83759C2E754672
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/040Mo0ymgQZkUPLLo3ndTuK5VZc.roa
Signing time: Mon 24 Mar 2025 16:52:49 +0000
ROA not before: Mon 24 Mar 2025 16:52:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215531
IP address blocks: 31.58.245.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:c9:12:3b:1d:15:e6:cd:4c:1b:83:75:9c:2e:75:46:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Mar 24 16:52:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d38d0ca34ca681066450f2cba379dd4ee2b95597
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:84:a0:de:d2:6f:2d:ce:a9:46:56:5b:8e:d6:
8a:60:fb:5a:82:35:02:e4:fe:57:05:d0:07:02:d4:
cd:98:12:f6:4f:8f:e1:df:b5:84:16:dd:54:b0:1a:
3a:c3:9b:ab:55:fc:c0:17:d7:36:d0:f4:38:94:f9:
88:21:4e:48:d0:6b:51:cc:f4:e4:e5:64:be:62:3f:
c3:ef:df:da:54:a2:bf:88:8a:a2:fc:da:53:0a:21:
f7:48:58:c0:61:b5:28:44:9f:cd:ed:a8:b8:2a:eb:
66:42:99:54:0f:13:3d:88:da:c2:c3:16:04:43:77:
79:d0:1c:d6:66:16:a0:c3:01:36:51:54:37:01:26:
05:9e:f5:43:9d:5c:0b:b5:ea:4d:da:25:df:3b:af:
19:4c:19:3d:2f:f5:f6:d9:c9:ea:d7:51:40:90:39:
cf:5c:24:c4:c6:8b:96:48:0c:e2:b0:ea:85:09:dd:
df:a4:5c:92:48:af:51:b1:4d:8e:7b:c1:fd:d0:a7:
cb:2b:0c:43:f9:e5:c0:e0:d5:a4:0b:b5:04:ce:73:
d1:ed:10:08:fd:fb:1c:b2:b6:1c:c7:1d:14:78:ff:
69:12:db:6c:fb:2d:af:a7:5e:13:ea:59:b4:8d:30:
7e:49:a5:c9:61:86:48:ba:11:65:b3:b4:c3:f7:a0:
8b:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:8D:0C:A3:4C:A6:81:06:64:50:F2:CB:A3:79:DD:4E:E2:B9:55:97
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/040Mo0ymgQZkUPLLo3ndTuK5VZc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.58.245.0/24
Signature Algorithm: sha256WithRSAEncryption
24:52:0b:bf:60:39:38:5d:31:72:19:b0:b9:58:48:5a:d4:96:
75:97:62:9a:71:29:16:1d:e4:d9:e1:54:72:b6:8a:77:20:b6:
77:bf:32:2c:c0:7b:2a:30:fe:9a:d7:08:1b:82:8d:c3:c1:46:
c6:77:33:b8:dd:30:07:a7:d3:c0:f5:f8:40:18:ab:77:7e:e0:
1b:f4:28:bf:e5:9f:5e:69:16:e2:a9:6f:d7:d2:e0:ff:74:b5:
0d:ac:3d:9a:14:b3:0f:ed:d4:4c:1a:d1:c5:72:56:65:a3:3c:
b7:37:3d:32:84:5d:77:3c:f7:6c:d2:4c:4f:36:ca:3f:5e:42:
1b:29:5a:8b:34:85:1f:dc:0b:36:0f:e8:f2:68:4a:ed:0b:f2:
18:7d:9c:68:e4:48:f3:42:40:00:d0:29:a8:1d:69:4a:7b:c0:
33:3e:9d:c7:53:23:a8:19:ad:d8:fe:71:c7:67:44:01:b7:5e:
a7:a4:28:42:3e:df:4f:a1:0c:38:0c:6b:d8:17:b8:c1:4c:96:
a3:fe:90:a2:c8:5e:d6:4a:d8:18:9e:7d:4c:62:ab:a4:c2:47:
c4:51:85:52:f0:14:9f:43:92:da:ed:31:25:d3:97:0b:29:a8:
48:92:55:b2:5b:9a:78:9d:a7:5c:8e:b9:70:15:f4:00:ad:f4:
1f:b8:62:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:37:12 2025 by rpki-client