Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/1a6f83-4ab4-4a43-a491-18ae75981d1d/1/q5KHaWn7CpTKFc361XlizluXKfg.roa
File: q5KHaWn7CpTKFc361XlizluXKfg.roa (raw, json)
Hash identifier: aGDfYEacvwx/txDranxr9bK6ye4FiFT7t6fx0L6OAew=
Subject key identifier: AB:92:87:69:69:FB:0A:94:CA:15:CD:FA:D5:79:62:CE:5B:97:29:F8
Certificate issuer: /CN=b61d9e8c9a08b23a98b14c308b80dcfbf55e5cd1
Certificate serial: 39E64DAD
Authority key identifier: B6:1D:9E:8C:9A:08:B2:3A:98:B1:4C:30:8B:80:DC:FB:F5:5E:5C:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/th2ejJoIsjqYsUwwi4Dc-_VeXNE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/1a6f83-4ab4-4a43-a491-18ae75981d1d/1/q5KHaWn7CpTKFc361XlizluXKfg.roa
Signing time: Sat 01 Jan 2022 07:58:06 +0000
ROA not before: Sat 01 Jan 2022 07:58:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31020
IP address blocks: 31.186.88.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 971394477 (0x39e64dad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b61d9e8c9a08b23a98b14c308b80dcfbf55e5cd1
Validity
Not Before: Jan 1 07:58:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab92876969fb0a94ca15cdfad57962ce5b9729f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:91:03:ac:d1:68:6b:ba:e8:4b:0f:39:23:05:
2e:a9:1b:8a:cb:30:3d:c7:d2:b5:c2:06:42:30:b2:
b9:8b:ac:66:72:c8:80:e3:32:24:05:31:bc:d9:98:
34:b0:89:36:1e:6e:d2:78:d2:c0:36:1d:79:0a:d0:
73:e0:ed:5f:ce:a5:31:dd:e9:62:e6:8c:6b:c5:04:
b8:fa:69:7d:53:dd:6a:75:13:10:3e:9d:8a:6a:b6:
47:b6:42:f6:64:2e:ca:7f:95:82:79:5c:9f:00:a0:
d8:08:1e:57:db:96:cb:62:8b:cf:a9:d1:2c:ca:13:
ef:f1:81:09:28:5d:63:89:91:88:ea:fc:a7:2c:60:
cc:fc:1d:c3:ff:1b:90:38:99:0d:b0:90:92:d3:15:
44:56:4d:ec:11:38:a6:59:df:aa:57:da:28:76:db:
85:32:35:8c:a9:aa:41:af:aa:72:ea:76:ed:9d:12:
af:d1:50:07:f1:29:87:de:97:a7:ff:04:74:ab:2e:
23:18:72:b7:77:90:15:64:a9:1c:85:67:59:b5:2b:
cb:9b:78:88:74:a3:5d:d0:23:f6:44:77:91:74:51:
48:7d:35:11:62:59:2c:a6:c6:88:04:34:39:1d:f5:
2b:23:58:74:28:a2:2e:91:ba:4b:a8:ec:7f:91:dc:
a9:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:92:87:69:69:FB:0A:94:CA:15:CD:FA:D5:79:62:CE:5B:97:29:F8
X509v3 Authority Key Identifier:
keyid:B6:1D:9E:8C:9A:08:B2:3A:98:B1:4C:30:8B:80:DC:FB:F5:5E:5C:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/th2ejJoIsjqYsUwwi4Dc-_VeXNE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/1a6f83-4ab4-4a43-a491-18ae75981d1d/1/q5KHaWn7CpTKFc361XlizluXKfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/1a6f83-4ab4-4a43-a491-18ae75981d1d/1/th2ejJoIsjqYsUwwi4Dc-_VeXNE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.186.88.0/21
Signature Algorithm: sha256WithRSAEncryption
5a:c9:9b:1d:bb:3e:d3:d3:d4:7b:29:03:fc:88:49:10:09:45:
b8:13:29:0b:2e:c4:5c:4e:9e:70:ad:28:e8:7f:bb:ef:ed:fa:
03:02:cd:64:86:4a:8f:9d:7c:6b:33:53:22:d8:ed:09:41:91:
b4:82:07:4e:06:b4:02:b3:ed:3a:27:8e:78:26:c6:01:5e:92:
9b:e3:b0:17:55:a7:ef:ed:f0:58:69:92:60:13:a9:ec:94:d5:
d8:5d:33:da:86:79:0a:ef:3f:ae:76:5c:4b:7d:d0:ed:6f:47:
8a:19:aa:40:73:00:0f:d4:57:f7:41:e7:2b:d3:91:3b:4b:49:
d3:1b:a4:37:54:a8:01:2e:9f:65:90:77:b1:11:93:64:ca:9f:
3d:96:88:c8:d9:35:c3:5f:88:6c:d9:d6:a6:6d:81:70:0e:c1:
a2:62:21:1b:b7:ee:2a:11:82:4c:1c:ca:8e:33:59:b7:63:00:
f4:fc:ed:f2:1a:9c:ab:b7:89:65:ff:2c:b8:ec:85:13:29:18:
cb:81:f3:f3:f7:d7:b4:20:16:8f:5c:51:7c:8d:8a:ee:5a:ac:
c9:c7:76:a1:44:d8:1b:6d:e8:41:75:f2:85:cb:44:b7:57:54:
b1:d8:6a:7e:a6:f6:ed:66:8f:05:e5:97:7d:3f:0a:4e:43:32:
e0:57:2c:ef
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEOeZNrTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NjFkOWU4YzlhMDhiMjNhOThiMTRjMzA4YjgwZGNmYmY1NWU1Y2QxMB4XDTIyMDEw
MTA3NTgwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWI5Mjg3Njk2OWZi
MGE5NGNhMTVjZGZhZDU3OTYyY2U1Yjk3MjlmODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJGRA6zRaGu66EsPOSMFLqkbisswPcfStcIGQjCyuYusZnLI
gOMyJAUxvNmYNLCJNh5u0njSwDYdeQrQc+DtX86lMd3pYuaMa8UEuPppfVPdanUT
ED6dimq2R7ZC9mQuyn+VgnlcnwCg2AgeV9uWy2KLz6nRLMoT7/GBCShdY4mRiOr8
pyxgzPwdw/8bkDiZDbCQktMVRFZN7BE4plnfqlfaKHbbhTI1jKmqQa+qcup27Z0S
r9FQB/Eph96Xp/8EdKsuIxhyt3eQFWSpHIVnWbUry5t4iHSjXdAj9kR3kXRRSH01
EWJZLKbGiAQ0OR31KyNYdCiiLpG6S6jsf5HcqfcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSrkodpafsKlMoVzfrVeWLOW5cp+DAfBgNVHSMEGDAWgBS2HZ6MmgiyOpix
TDCLgNz79V5c0TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3RoMmVqSm9Jc2pxWXNVd3dpNERjLV9WZVhORS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmIvMWE2ZjgzLTRhYjQtNGE0My1hNDkxLTE4YWU3NTk4MWQxZC8x
L3E1S0hhV243Q3BUS0ZjMzYxWGxpemx1WEtmZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmIv
MWE2ZjgzLTRhYjQtNGE0My1hNDkxLTE4YWU3NTk4MWQxZC8xL3RoMmVqSm9Jc2px
WXNVd3dpNERjLV9WZVhORS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAx+6WDANBgkqhkiG9w0BAQsFAAOC
AQEAWsmbHbs+09PUeykD/IhJEAlFuBMpCy7EXE6ecK0o6H+77+36AwLNZIZKj518
azNTItjtCUGRtIIHTga0ArPtOieOeCbGAV6Sm+OwF1Wn7+3wWGmSYBOp7JTV2F0z
2oZ5Cu8/rnZcS33Q7W9HihmqQHMAD9RX90HnK9ORO0tJ0xukN1SoAS6fZZB3sRGT
ZMqfPZaIyNk1w1+IbNnWpm2BcA7BomIhG7fuKhGCTBzKjjNZt2MA9Pzt8hqcq7eJ
Zf8suOyFEykYy4Hz8/fXtCAWj1xRfI2K7lqsycd2oUTYG23oQXXyhctEt1dUsdhq
fqb27WaPBeWXfT8KTkMy4Fcs7w==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:47:29 2025 by rpki-client