Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/HTnd_7MppBqi-HYQuyoMkgC9xLQ.roa
File: HTnd_7MppBqi-HYQuyoMkgC9xLQ.roa (raw, json)
Hash identifier: Zn+5MXpEk1tENWU2qiiPZNmOxxrjr8CFBMQUr+J8i0Q=
Subject key identifier: 1D:39:DD:FF:B3:29:A4:1A:A2:F8:76:10:BB:2A:0C:92:00:BD:C4:B4
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0195A7CDFF373EFEA221AFF037C7E741A30E
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/HTnd_7MppBqi-HYQuyoMkgC9xLQ.roa
Signing time: Tue 18 Mar 2025 05:50:50 +0000
ROA not before: Tue 18 Mar 2025 05:50:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 3491
IP address blocks: 31.59.78.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:a7:cd:ff:37:3e:fe:a2:21:af:f0:37:c7:e7:41:a3:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Mar 18 05:50:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1d39ddffb329a41aa2f87610bb2a0c9200bdc4b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:25:8e:bf:e4:d6:44:fc:fa:fa:c7:1b:f0:da:
6b:0f:35:73:f1:d8:64:42:be:83:10:37:15:b7:8a:
b3:af:c1:52:c6:3b:e5:35:5f:a3:47:96:0f:fd:3a:
f9:75:c8:83:07:3e:45:8d:67:2a:62:da:f5:4a:54:
d9:b9:58:4f:0d:83:ae:08:f0:c3:88:d1:33:5e:4c:
88:21:a4:53:97:f6:77:6e:98:9f:90:06:37:58:79:
e4:a2:19:90:6f:11:85:f1:21:ac:b4:9e:a3:2e:e7:
7b:3c:ed:7b:02:bc:49:0f:9a:63:15:93:6e:16:be:
ab:6b:0f:90:84:a4:06:e6:8e:08:40:8a:7d:1a:f8:
c1:90:5f:d8:41:ca:58:27:e9:c0:a3:0e:6c:04:c8:
4b:ee:d1:06:d7:b0:58:29:29:ef:af:0d:a4:23:c4:
e0:c2:a5:f6:61:fb:69:2b:67:41:83:b9:bc:74:97:
7f:38:6f:9d:9f:1d:40:d3:a5:34:a0:d5:f6:5f:fb:
03:92:9f:fa:8f:f8:a0:39:2e:61:a6:93:6d:22:10:
9e:c8:60:c9:5a:4e:05:3e:6f:1d:9b:90:e9:6f:4a:
a6:42:43:17:0a:6f:7d:17:7f:88:55:cb:aa:57:2f:
ad:48:d5:4c:8f:ae:23:47:0a:9c:52:a0:1d:70:32:
09:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:39:DD:FF:B3:29:A4:1A:A2:F8:76:10:BB:2A:0C:92:00:BD:C4:B4
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/HTnd_7MppBqi-HYQuyoMkgC9xLQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.59.78.0/24
Signature Algorithm: sha256WithRSAEncryption
25:dd:58:22:c9:7f:1a:f3:14:88:02:77:1c:80:d5:5c:59:9d:
ca:f9:15:ee:4d:66:10:ff:9d:33:6b:97:f0:a6:54:0b:07:a1:
46:2b:91:c6:c5:eb:31:5e:49:20:1b:42:cd:28:f8:64:7e:bd:
64:8a:51:99:0d:d4:1f:95:5f:65:86:c3:f3:bb:0d:b0:bb:42:
a3:3f:47:d9:52:56:35:9c:72:0b:6a:01:d0:12:37:44:08:40:
3b:8b:28:46:f9:ac:48:85:8c:9d:f7:07:c1:22:df:1d:2a:0f:
fa:5a:7f:d4:19:6a:95:ba:5f:42:a1:66:ad:3c:8c:31:a3:ad:
ac:b2:8a:c5:8f:48:86:89:fb:d0:fe:91:51:33:97:be:15:55:
fe:60:1b:b5:66:f7:b1:55:14:3e:0b:e3:f8:0a:4b:69:77:34:
cf:a9:3d:4b:4e:c0:b8:19:97:52:d5:ef:76:c9:74:0a:05:3c:
02:7b:07:51:36:95:89:19:68:23:f5:49:fe:5d:f1:2c:79:b1:
9e:9c:1f:78:61:f7:c5:73:18:44:71:36:51:f8:8e:2b:3f:7f:
b5:d1:67:51:09:f1:93:78:3a:b1:d4:87:c6:54:2e:10:37:58:
46:b4:18:54:dd:1a:9e:ce:8d:58:2d:57:2e:3a:17:fa:81:33:
97:ad:28:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:53:32 2025 by rpki-client