Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/185e80-7339-4cc0-8b7c-4edf4244a9f9/1/g7MpUe6c2NVQnJq73_d2gwRFHBM.roa
File: g7MpUe6c2NVQnJq73_d2gwRFHBM.roa (raw, json)
Hash identifier: dAJ1y+0FuqWznFKHhdilHZGAMclsNoNmZu8idO+j34M=
Subject key identifier: 83:B3:29:51:EE:9C:D8:D5:50:9C:9A:BB:DF:F7:76:83:04:45:1C:13
Certificate issuer: /CN=baa63d3ba6dae4a4493bc14a675b94ad2aa45b69
Certificate serial: 018788F2BAF3A6273C96D96C9884D34CB98C
Authority key identifier: BA:A6:3D:3B:A6:DA:E4:A4:49:3B:C1:4A:67:5B:94:AD:2A:A4:5B:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqY9O6ba5KRJO8FKZ1uUrSqkW2k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/185e80-7339-4cc0-8b7c-4edf4244a9f9/1/g7MpUe6c2NVQnJq73_d2gwRFHBM.roa
Signing time: Sun 16 Apr 2023 07:23:41 +0000
ROA not before: Sun 16 Apr 2023 07:23:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 31.217.248.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:88:f2:ba:f3:a6:27:3c:96:d9:6c:98:84:d3:4c:b9:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baa63d3ba6dae4a4493bc14a675b94ad2aa45b69
Validity
Not Before: Apr 16 07:23:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=83b32951ee9cd8d5509c9abbdff7768304451c13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c1:06:42:89:6c:99:c3:19:c7:10:60:6f:28:
2f:41:35:59:d5:0f:2e:9d:74:7f:e9:b3:02:dc:00:
28:d4:a8:25:1e:b5:04:3c:67:03:ec:61:98:3e:1d:
3e:12:2d:14:57:0b:e8:f4:4a:a8:d9:f7:e9:57:b2:
33:7a:45:29:55:b3:39:f5:bb:59:6a:55:3c:99:9a:
1e:c1:c9:ff:00:ff:6d:63:ca:70:bb:af:85:02:ac:
5d:77:34:4c:1a:47:85:f5:cf:d7:f9:fd:79:9e:cb:
67:27:af:c0:38:a6:bc:33:3a:bb:53:28:cb:8e:f5:
d9:03:bf:ff:76:34:cb:6c:2e:37:8b:d9:72:57:d1:
19:29:dc:c5:c0:e3:08:f7:83:a3:04:4d:b8:a0:d8:
cd:cd:3c:29:44:d5:e6:1d:1d:f5:4a:4d:84:92:15:
ce:50:fd:1d:5b:ee:21:ae:c3:3f:e2:5d:37:db:28:
dc:52:9c:da:23:28:3d:65:33:43:57:e5:06:f8:3a:
30:51:ab:95:9c:d3:c5:a8:ab:72:f8:3f:ba:bf:bf:
c9:d8:47:eb:de:85:15:b7:b5:63:00:4a:9e:3d:c5:
9e:ee:33:9f:fd:22:31:c2:2a:8a:04:c9:14:b9:74:
91:24:be:4f:ab:af:d4:6a:25:75:6b:cf:ad:a7:03:
cb:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:B3:29:51:EE:9C:D8:D5:50:9C:9A:BB:DF:F7:76:83:04:45:1C:13
X509v3 Authority Key Identifier:
keyid:BA:A6:3D:3B:A6:DA:E4:A4:49:3B:C1:4A:67:5B:94:AD:2A:A4:5B:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqY9O6ba5KRJO8FKZ1uUrSqkW2k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/185e80-7339-4cc0-8b7c-4edf4244a9f9/1/g7MpUe6c2NVQnJq73_d2gwRFHBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/185e80-7339-4cc0-8b7c-4edf4244a9f9/1/uqY9O6ba5KRJO8FKZ1uUrSqkW2k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.217.248.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:01:0f:25:84:f6:3d:c7:6b:f4:14:5f:ae:df:b9:7b:f7:68:
2a:e1:b1:80:4a:fc:85:c7:93:47:6c:81:79:86:9c:6d:33:66:
05:35:23:82:9f:4c:ae:ac:82:02:77:83:99:af:9e:49:97:cf:
5a:8b:bb:10:6f:7c:1c:17:9e:cc:15:60:6f:a5:d7:a2:0a:e3:
73:5c:4d:6c:2a:d5:66:91:2a:dd:8c:c9:c2:d8:89:36:8f:9b:
8e:21:e2:cb:4f:6d:be:80:03:ea:f5:22:52:52:86:70:28:57:
db:d1:77:99:d6:42:b6:87:0d:1f:c3:4b:bf:2c:76:76:6b:8f:
be:6d:21:fa:04:d5:59:17:09:45:bf:7d:4f:b5:db:b8:af:dc:
38:b8:52:bc:9b:c2:ee:7c:c9:a2:5e:42:ed:93:4b:1c:c1:3e:
6a:ad:c5:ce:4b:67:0d:5d:68:11:ca:1f:72:cb:73:2d:e2:35:
0c:bb:3f:85:6e:e9:fe:1a:35:f4:3f:10:81:42:db:f4:9f:60:
b2:48:17:c4:b8:f2:ef:34:9a:b5:57:15:8e:36:2e:7d:50:1b:
a1:06:75:8d:fa:e6:89:78:29:cd:1d:4b:c5:22:5b:83:61:42:
35:e1:3e:26:92:c1:4c:b5:d1:c8:0d:a2:db:dd:84:6f:81:26:
50:e6:f9:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:17:36 2025 by rpki-client