Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/eomtz02BO8h05CH1LocPkGD3pZg.roa
File: eomtz02BO8h05CH1LocPkGD3pZg.roa (raw, json)
Hash identifier: ISp5YT2Wur2xTjc8UamaZUxAHuz/z1QQSl/bL0F4U4I=
Subject key identifier: 7A:89:AD:CF:4D:81:3B:C8:74:E4:21:F5:2E:87:0F:90:60:F7:A5:98
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019555EBA10D53BC5891C20824C3E73ECA0D
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/eomtz02BO8h05CH1LocPkGD3pZg.roa
Signing time: Sun 02 Mar 2025 08:14:20 +0000
ROA not before: Sun 02 Mar 2025 08:14:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199707
IP address blocks: 31.58.68.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:55:eb:a1:0d:53:bc:58:91:c2:08:24:c3:e7:3e:ca:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Mar 2 08:14:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7a89adcf4d813bc874e421f52e870f9060f7a598
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:2f:7b:30:b3:81:24:4a:2c:1c:58:17:e0:f0:
62:52:48:1a:ea:08:6f:f8:06:30:93:fc:f4:1d:15:
16:12:fb:ee:92:95:fb:09:2c:3f:4f:78:5f:b5:5d:
b1:90:c7:bc:19:e0:8a:5f:81:6c:b8:3f:a1:a3:d4:
1a:0a:17:25:ce:48:9e:64:21:2a:98:c8:55:d9:ea:
23:1b:5e:79:6d:e2:61:7f:db:84:31:6f:a6:7a:9c:
68:f7:b3:19:57:7f:51:61:67:57:46:2d:2c:76:93:
f3:5b:05:ff:b6:ef:a4:ac:4b:26:c8:81:c5:f5:85:
55:b5:f3:ad:d2:6f:09:12:02:17:c7:fc:55:ec:0b:
41:f3:1b:80:92:0a:38:9a:af:9b:80:0b:75:b9:fb:
6a:09:06:b3:e4:bb:16:f4:3b:6a:54:dd:37:5b:83:
7d:50:1f:92:7d:a0:33:2f:5c:9a:66:26:63:91:a3:
0d:09:f5:37:d0:e9:ff:ed:c6:0d:21:c4:6b:1b:fb:
da:7a:98:e7:fa:8e:3f:df:66:b8:f1:48:fb:c0:dd:
e8:4d:ea:a1:90:11:12:de:33:2a:c6:7d:c6:3d:52:
4b:53:e8:a3:c2:43:c3:e7:97:29:12:59:2c:90:bc:
a9:38:fa:76:19:fc:41:0a:d1:a3:2c:b4:53:1b:c1:
09:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:89:AD:CF:4D:81:3B:C8:74:E4:21:F5:2E:87:0F:90:60:F7:A5:98
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/eomtz02BO8h05CH1LocPkGD3pZg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.58.68.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:b4:8c:61:b3:12:f6:12:1a:e7:aa:94:a9:62:3a:94:f7:90:
34:27:28:d8:97:6e:51:79:a2:bb:5a:f3:36:df:63:da:e0:21:
3e:7f:2d:05:31:7f:c5:3b:81:e0:06:03:55:bd:32:ad:07:2d:
c9:95:42:14:99:ff:26:c7:97:80:19:be:92:da:e1:fa:81:18:
eb:a5:a9:9a:a3:94:c8:2b:c2:8a:c2:1e:0e:1f:f6:4b:b8:a2:
bb:0f:ef:65:58:6e:f7:1b:aa:4b:98:bc:82:66:90:8b:75:0e:
85:2c:88:38:af:af:3b:60:13:97:58:e2:c0:c8:de:9a:ef:ff:
4c:14:86:ad:b4:7c:8e:23:e0:cc:dd:15:46:3a:5f:a7:57:6e:
c5:7e:e3:58:0c:5d:7d:79:20:2c:93:fc:7d:7d:4d:ae:1e:b3:
3f:d4:d7:1f:3a:31:61:6e:2a:fc:f9:dc:08:2e:36:34:e2:1d:
ed:34:c8:be:20:d4:32:44:ce:9e:37:65:2b:1d:a1:f7:e9:dd:
7b:01:6d:e5:94:6a:24:2b:65:a0:1c:1c:a1:35:de:b7:30:04:
01:79:16:80:24:6a:e1:9f:b5:6e:e4:fd:b4:f9:64:a2:23:27:
37:94:83:f9:cf:86:58:ec:83:52:7c:65:d7:84:b8:e4:56:6f:
e4:b2:a5:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:32:02 2025 by rpki-client