Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/SXG-e2hHIIAl-yj4qBi6FUi9wGY.roa
File: SXG-e2hHIIAl-yj4qBi6FUi9wGY.roa (raw, json)
Hash identifier: +fTL7yItTRc/AAESJMlIEyzwJCD39qE6Ysoda7xR64c=
Subject key identifier: 49:71:BE:7B:68:47:20:80:25:FB:28:F8:A8:18:BA:15:48:BD:C0:66
Certificate issuer: /CN=e4a9308742e7eb66506219d829d86185899a1e34
Certificate serial: 019425FD46521F8015E1650B507EA0167BF6
Authority key identifier: E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/SXG-e2hHIIAl-yj4qBi6FUi9wGY.roa
Signing time: Thu 02 Jan 2025 07:49:03 +0000
ROA not before: Thu 02 Jan 2025 07:49:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211559
IP address blocks: 31.11.48.0/21 maxlen: 21
31.11.55.0/24 maxlen: 24
37.186.38.0/24 maxlen: 24
37.186.56.0/24 maxlen: 24
37.186.57.0/24 maxlen: 24
37.186.60.0/22 maxlen: 22
37.186.60.0/24 maxlen: 24
80.76.165.0/24 maxlen: 24
80.76.166.0/23 maxlen: 23
80.76.166.0/24 maxlen: 24
80.76.167.0/24 maxlen: 24
80.76.168.0/23 maxlen: 23
80.76.168.0/24 maxlen: 24
80.76.169.0/24 maxlen: 24
103.14.208.0/22 maxlen: 22
103.14.208.0/24 maxlen: 24
103.14.211.0/24 maxlen: 24
103.23.126.0/24 maxlen: 24
103.23.127.0/24 maxlen: 24
103.225.72.0/24 maxlen: 24
103.225.73.0/24 maxlen: 24
103.225.74.0/24 maxlen: 24
185.247.88.0/22 maxlen: 22
185.247.89.0/24 maxlen: 24
212.70.100.0/24 maxlen: 24
212.70.101.0/24 maxlen: 24
212.70.102.0/24 maxlen: 24
212.70.103.0/24 maxlen: 24
212.70.104.0/24 maxlen: 24
212.70.105.0/24 maxlen: 24
212.70.109.0/24 maxlen: 24
212.70.120.0/24 maxlen: 24
212.70.121.0/24 maxlen: 24
212.70.122.0/24 maxlen: 24
212.70.123.0/24 maxlen: 24
212.70.124.0/24 maxlen: 24
2a04:7f80:84::/48 maxlen: 48
2a04:7f80:85::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:46:52:1f:80:15:e1:65:0b:50:7e:a0:16:7b:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a9308742e7eb66506219d829d86185899a1e34
Validity
Not Before: Jan 2 07:49:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4971be7b6847208025fb28f8a818ba1548bdc066
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:10:1d:92:ea:dc:45:1b:94:12:64:b4:94:8f:
8c:ff:73:58:6f:2c:b7:79:aa:01:38:74:69:ca:59:
f4:70:f0:eb:64:7c:24:6f:81:46:55:fd:b3:02:44:
93:52:2d:26:c8:45:3e:5d:0d:f8:a4:61:df:9b:8f:
7d:ff:0a:ab:de:ca:99:2e:bd:fe:0b:98:38:d9:53:
83:a6:d7:2b:76:0b:76:09:5e:6d:10:01:1f:33:7d:
16:18:27:dd:7c:bb:65:cc:f0:c3:19:dd:8b:a6:34:
a0:61:ab:99:90:eb:df:ad:2e:b2:19:8b:25:71:43:
0f:2f:f3:2f:43:8c:d9:4b:40:60:94:43:ad:3a:24:
07:90:54:13:4a:5b:b9:29:77:be:ea:d4:9b:81:89:
2c:bd:32:9c:33:4b:95:c6:c1:c0:0d:51:24:ba:9a:
8a:f5:3e:7e:f5:1f:14:c5:ab:0f:95:06:ab:61:22:
58:1f:7a:1d:90:7e:39:2b:c0:40:77:16:98:b7:97:
fe:16:fd:c8:96:2c:7a:4c:de:db:81:f1:02:14:b6:
bc:cc:62:84:77:c1:1d:c3:33:aa:ab:6c:67:d4:bc:
d5:17:69:b6:e1:ee:5b:b0:cd:cf:1b:41:c0:4d:e0:
13:5f:a3:80:1e:94:ec:a7:cb:06:29:59:38:4a:03:
e4:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:71:BE:7B:68:47:20:80:25:FB:28:F8:A8:18:BA:15:48:BD:C0:66
X509v3 Authority Key Identifier:
keyid:E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/SXG-e2hHIIAl-yj4qBi6FUi9wGY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.11.48.0/21
37.186.38.0/24
37.186.56.0/23
37.186.60.0/22
80.76.165.0-80.76.169.255
103.14.208.0/22
103.23.126.0/23
103.225.72.0-103.225.74.255
185.247.88.0/22
212.70.100.0-212.70.105.255
212.70.109.0/24
212.70.120.0-212.70.124.255
IPv6:
2a04:7f80:84::/47
Signature Algorithm: sha256WithRSAEncryption
9d:7e:36:f7:98:d3:ec:fa:d3:fa:cf:b4:47:9f:23:ae:06:5b:
fc:69:c4:59:4f:88:11:a6:41:3e:34:f8:63:a8:6e:ea:c9:ea:
ba:64:fe:ff:27:39:c4:a2:42:cf:ee:bd:38:b2:ff:e0:d6:51:
8c:c5:5e:b2:62:14:b4:6c:d7:77:cb:3a:f3:cb:57:b7:61:a3:
54:b1:3d:18:00:89:d6:ea:d5:44:d0:e4:53:a1:b3:0b:69:e4:
86:b3:71:1f:a5:e6:b9:3c:de:dc:a4:76:f9:10:05:45:97:9f:
8b:bd:5f:10:cf:12:f1:e8:dd:a3:8d:be:ca:75:20:47:66:f4:
e8:cf:0c:22:1e:37:30:5f:92:d3:78:0b:54:e1:b6:e1:3f:62:
6a:a4:05:f6:db:93:c0:1b:c8:3e:8d:93:1c:1e:59:67:04:77:
8c:aa:df:da:00:1b:d6:b5:9b:3d:8f:c3:1f:7a:3f:ea:5b:c4:
a4:04:f5:68:77:e8:ec:77:28:a7:a1:4e:e7:a6:09:26:dc:c7:
e8:9e:cb:93:5b:63:81:30:9c:a2:47:0b:7f:e9:a2:fb:26:4e:
b4:ba:9a:4e:91:96:d3:ef:2d:d0:3c:b5:90:64:77:37:b1:c0:
c1:cb:79:6f:e3:50:52:3f:f1:d5:f2:a1:4d:ae:8b:33:53:f5:
e2:41:db:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:32:09 2025 by rpki-client