Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/QCrv07qtDE5KHTQyUCWZSCSsMhg.roa
File: QCrv07qtDE5KHTQyUCWZSCSsMhg.roa (raw, json)
Hash identifier: q+BXezAAfr7kBUco/GRXHy6MKkQrON8l/ZJJD+uj1wE=
Subject key identifier: 40:2A:EF:D3:BA:AD:0C:4E:4A:1D:34:32:50:25:99:48:24:AC:32:18
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0195ADE8CE1A2CBF7AD754DE1E09173AD7BD
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/QCrv07qtDE5KHTQyUCWZSCSsMhg.roa
Signing time: Wed 19 Mar 2025 10:17:50 +0000
ROA not before: Wed 19 Mar 2025 10:17:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215672
IP address blocks: 31.56.47.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:ad:e8:ce:1a:2c:bf:7a:d7:54:de:1e:09:17:3a:d7:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Mar 19 10:17:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=402aefd3baad0c4e4a1d34325025994824ac3218
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c8:00:f7:c1:c3:a4:fd:8e:5e:a9:d6:00:05:
9b:3b:5b:cd:d6:43:66:55:da:2d:1e:ba:46:31:aa:
9f:6d:cf:14:75:79:50:b8:fe:b7:b1:87:6e:3c:c9:
a2:ad:a6:cd:5c:1e:a0:f5:dc:3c:1c:71:ca:bd:56:
60:70:68:d8:9f:0b:5e:09:a9:df:f2:5f:96:eb:dc:
41:a6:86:10:b8:b6:42:05:44:57:2f:fd:e5:41:4f:
80:0d:48:45:f7:0c:40:da:09:b7:35:24:1a:39:d1:
b6:45:04:16:d1:2e:7d:8e:3c:d9:00:7b:05:3e:8e:
d6:41:1a:e1:61:4e:3f:e6:b2:5d:57:7a:9e:d1:5e:
5b:92:38:d5:30:cc:c7:ca:31:65:13:d8:a1:49:74:
e3:17:10:eb:c6:03:d9:81:70:70:77:32:1b:11:32:
f9:12:46:64:88:16:31:77:d7:85:93:f2:e9:53:79:
fc:e2:e4:0e:92:80:01:6a:dd:21:60:93:4f:72:c3:
b9:c8:5e:52:1b:63:50:a1:94:c8:15:24:13:e1:cc:
16:10:69:bc:24:af:7a:d7:2c:66:13:53:30:38:8d:
e4:d6:13:e3:13:68:0c:f6:ea:7c:30:30:bc:78:f9:
f1:06:43:1a:31:c2:05:90:a5:6f:16:9b:ee:20:49:
01:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:2A:EF:D3:BA:AD:0C:4E:4A:1D:34:32:50:25:99:48:24:AC:32:18
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/QCrv07qtDE5KHTQyUCWZSCSsMhg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.47.0/24
Signature Algorithm: sha256WithRSAEncryption
14:74:71:b6:af:e2:0f:9c:4b:a9:0d:55:79:03:29:00:a9:70:
b9:df:eb:db:cf:d0:83:8e:9b:d0:fa:e3:ec:5a:3f:67:3f:fa:
16:ca:51:1c:99:28:1e:a3:b1:03:bc:34:eb:af:b3:f7:a6:41:
53:47:23:87:94:0b:29:a3:f7:b4:19:ba:bb:88:9a:71:be:8a:
82:d2:59:d2:f9:c1:33:e2:0b:fb:55:66:58:0e:6b:70:47:76:
45:ef:cf:64:80:63:42:dc:18:34:32:6b:48:d9:d4:34:ab:89:
2f:fc:64:4e:ee:14:48:09:06:bf:f9:18:b3:b0:94:02:be:b8:
43:23:9c:fa:af:78:e7:d9:0a:3d:89:52:a7:57:80:3d:2a:0d:
47:df:98:b9:da:d7:0c:27:21:e8:1e:d6:03:33:64:a7:ed:8e:
4f:79:13:43:f1:52:2c:76:7d:e4:af:c6:6f:86:8a:88:2e:0f:
fe:0a:07:38:c7:06:de:83:8c:79:93:7f:74:45:b9:ac:38:44:
05:26:25:f6:ec:36:8a:8b:1a:a8:20:ea:36:6c:2a:ae:e1:dd:
8c:31:83:03:1f:ca:9e:f0:a5:b2:83:f5:7b:59:ea:af:7a:3c:
dd:23:24:7a:ac:ed:5d:cc:ed:34:f1:da:b8:57:1c:6f:29:bc:
74:0e:47:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:47:38 2025 by rpki-client