Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/7e5552-0b7d-400c-95fd-856f43f69aa3/1/8YdDJN4PHRWMvzgWNOQlNQl3nXQ.roa
File: 8YdDJN4PHRWMvzgWNOQlNQl3nXQ.roa (raw, json)
Hash identifier: 8cYk4vmBIEbRGr5qZUvZxrOjJyM5EauxMbjwPPwoyjU=
Subject key identifier: F1:87:43:24:DE:0F:1D:15:8C:BF:38:16:34:E4:25:35:09:77:9D:74
Certificate issuer: /CN=2cf3834cdab5abbcdb6bc5cf4e5503d16e84623a
Certificate serial: 018D2D73ABF7DD9B2049A296B5950B3B7414
Authority key identifier: 2C:F3:83:4C:DA:B5:AB:BC:DB:6B:C5:CF:4E:55:03:D1:6E:84:62:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LPODTNq1q7zba8XPTlUD0W6EYjo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/7e5552-0b7d-400c-95fd-856f43f69aa3/1/8YdDJN4PHRWMvzgWNOQlNQl3nXQ.roa
Signing time: Sun 21 Jan 2024 19:16:11 +0000
ROA not before: Sun 21 Jan 2024 19:16:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12722
IP address blocks: 31.222.240.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:2d:73:ab:f7:dd:9b:20:49:a2:96:b5:95:0b:3b:74:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cf3834cdab5abbcdb6bc5cf4e5503d16e84623a
Validity
Not Before: Jan 21 19:16:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f1874324de0f1d158cbf381634e4253509779d74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:d1:28:a9:29:47:c6:21:98:42:05:f2:a3:92:
57:10:a7:6c:88:57:70:2c:ae:27:f0:0e:5a:81:00:
0e:28:7f:88:0d:60:16:29:d5:79:ef:7b:14:97:c9:
0e:91:d6:02:40:96:fb:9f:ac:ce:3b:ea:ef:15:15:
35:69:11:81:71:03:c4:25:e7:af:33:37:f6:b7:21:
76:a8:24:51:b2:de:52:3e:50:e0:b7:ce:21:2f:cc:
7b:ec:78:60:25:5c:33:bd:c5:e7:b0:a5:39:f1:ea:
fd:cf:8e:f3:83:ee:a5:d0:fa:e7:65:d8:c4:67:20:
7b:60:e4:1a:4c:fe:f9:3d:40:53:df:bd:02:36:30:
f2:60:cd:7f:c5:ad:da:15:78:fb:c1:7f:3e:32:16:
5f:94:2d:a1:d8:b4:0f:8a:2c:1a:f5:c8:cd:39:d4:
bf:b0:48:23:f1:08:4a:36:51:ba:6d:0c:38:a9:9e:
c4:bb:05:56:53:b2:e1:aa:4a:0b:0d:9b:62:ce:fa:
1c:93:13:55:c5:76:d1:e4:53:09:35:55:8a:ec:73:
d1:62:0d:71:3e:14:be:0c:71:c9:ab:3c:d5:ba:6f:
72:08:9d:6e:b4:c0:80:0d:3e:69:bd:d3:c0:ef:c8:
ac:95:23:fe:f3:b5:fe:97:1b:a9:63:b5:0b:d3:29:
33:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:87:43:24:DE:0F:1D:15:8C:BF:38:16:34:E4:25:35:09:77:9D:74
X509v3 Authority Key Identifier:
keyid:2C:F3:83:4C:DA:B5:AB:BC:DB:6B:C5:CF:4E:55:03:D1:6E:84:62:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LPODTNq1q7zba8XPTlUD0W6EYjo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/7e5552-0b7d-400c-95fd-856f43f69aa3/1/8YdDJN4PHRWMvzgWNOQlNQl3nXQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/7e5552-0b7d-400c-95fd-856f43f69aa3/1/LPODTNq1q7zba8XPTlUD0W6EYjo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.240.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:f9:d8:31:03:99:2b:bb:31:5d:92:19:7d:92:ec:c4:cc:af:
04:d9:0d:b6:6d:33:66:b8:97:cd:b2:23:94:09:74:b1:02:2e:
b4:8c:7d:4f:c1:0d:11:3d:96:45:11:8c:16:b8:d9:9b:6b:5a:
2a:13:65:18:8c:cf:de:96:fe:90:da:88:67:55:80:9d:4e:5c:
4f:ea:3b:c3:85:fb:48:38:15:b9:f2:ea:7c:8c:05:33:22:97:
64:47:bc:00:b8:09:de:20:ff:32:84:6f:fa:fb:b5:b9:e1:99:
28:59:27:1e:b4:05:bc:96:fa:1f:fe:4f:5c:f4:2c:f0:12:e3:
df:86:6e:8b:8d:57:66:e6:9a:9e:0b:71:b6:1c:a5:42:95:c0:
d0:d2:3f:df:cc:34:b4:55:6f:b1:a6:fe:c5:eb:01:6a:7e:2a:
1d:de:cd:d6:89:58:d7:37:d7:b7:35:15:fd:ab:0d:1b:dc:ee:
25:af:d1:3b:28:45:4a:a3:14:55:f5:09:5d:1e:28:6b:6c:1d:
60:76:6d:fc:f7:94:43:57:f8:a1:74:01:85:90:96:f8:b2:1b:
01:94:0e:16:79:60:7f:3d:c4:e3:7e:0a:1c:d4:ca:a4:99:6f:
f6:7b:e2:5d:0d:b3:80:a1:8a:a6:cb:16:ee:d6:2d:f0:5e:09:
65:57:17:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:45 2024 by rpki-client on console-ams.rpki-client.org