Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/e70035-b69a-446a-8de4-270e72af21a9/1/1-Y8QnYIjd_glxP6qeBQTaskschY.roa
File: 1-Y8QnYIjd_glxP6qeBQTaskschY.roa (raw, json)
Hash identifier: 8tF2wUFALo97G5JWbw/uXV4tgw6khDiO4z9Htj/YAQk=
Subject key identifier: F9:8F:10:9D:82:23:77:F8:25:C4:FE:AA:78:14:13:6A:C9:2C:72:16
Certificate issuer: /CN=140ecb72ff00398d3642ec23f212ada0ea72066d
Certificate serial: 013E0656
Authority key identifier: 14:0E:CB:72:FF:00:39:8D:36:42:EC:23:F2:12:AD:A0:EA:72:06:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FA7Lcv8AOY02Quwj8hKtoOpyBm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/e70035-b69a-446a-8de4-270e72af21a9/1/1-Y8QnYIjd_glxP6qeBQTaskschY.roa
Signing time: Sat 01 Jan 2022 03:55:24 +0000
ROA not before: Sat 01 Jan 2022 03:55:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400061
IP address blocks: 31.216.59.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20842070 (0x13e0656)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=140ecb72ff00398d3642ec23f212ada0ea72066d
Validity
Not Before: Jan 1 03:55:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f98f109d822377f825c4feaa7814136ac92c7216
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:52:40:f0:68:c6:cd:3a:56:84:e0:0c:09:8f:
b8:9b:e9:19:15:cf:79:72:a3:4e:83:ea:6e:f8:66:
09:ea:2c:25:87:fa:4f:4a:ea:d0:42:c6:9a:ee:42:
6a:5c:a9:21:eb:3a:c9:ed:10:14:67:38:2e:28:9d:
c1:b3:5a:f3:e1:60:75:65:b8:65:99:d4:6d:cc:34:
ad:8d:a4:33:22:d0:f0:84:c4:7e:6c:74:20:d4:ac:
2d:1f:4a:57:1c:16:b8:4e:1b:13:b0:b3:bb:8f:1b:
b3:93:68:65:35:98:9e:8e:ec:96:7a:6c:c2:0f:e1:
7a:52:c0:79:18:7e:87:17:5c:ad:09:d5:da:cf:38:
9f:f1:9c:6a:a2:40:d2:1e:e7:46:6c:ca:af:62:6d:
fd:6c:ac:6a:71:e9:21:8b:24:d0:95:fa:44:9e:fc:
80:4c:ce:72:8e:69:88:8e:be:6f:57:21:ee:29:73:
7e:07:7c:d8:2e:1c:7c:91:78:70:d7:6c:c3:c9:e1:
32:87:91:54:99:f4:5c:a6:e4:80:50:49:05:c6:e1:
a1:46:16:ff:91:9c:38:aa:8c:c2:3a:67:99:ee:61:
d0:d2:17:f4:08:f7:3d:c1:3d:35:4b:22:6a:bc:b5:
46:6f:61:f0:b7:3e:32:2b:c6:83:42:d7:82:b9:f9:
66:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:8F:10:9D:82:23:77:F8:25:C4:FE:AA:78:14:13:6A:C9:2C:72:16
X509v3 Authority Key Identifier:
keyid:14:0E:CB:72:FF:00:39:8D:36:42:EC:23:F2:12:AD:A0:EA:72:06:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FA7Lcv8AOY02Quwj8hKtoOpyBm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/e70035-b69a-446a-8de4-270e72af21a9/1/1-Y8QnYIjd_glxP6qeBQTaskschY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/e70035-b69a-446a-8de4-270e72af21a9/1/FA7Lcv8AOY02Quwj8hKtoOpyBm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.216.59.0/24
Signature Algorithm: sha256WithRSAEncryption
89:c4:87:33:28:0c:42:02:27:ef:13:7e:6b:e0:80:0f:df:37:
2a:ec:13:d9:6f:ac:57:30:7b:86:a6:e2:91:02:86:0c:5a:5c:
62:d2:52:8e:00:da:9f:a9:05:62:d7:09:3b:dd:02:17:d8:2b:
ee:71:18:32:5d:82:90:40:b7:97:c9:f7:ec:96:8f:2c:62:4c:
eb:ef:90:0c:cd:49:89:c7:b7:04:d3:38:23:46:5f:2d:da:f8:
40:17:22:9e:56:b1:89:5a:9f:86:80:88:a3:de:92:27:4c:a8:
66:9b:3c:2f:d6:3d:5a:3e:58:1d:63:b9:ef:fa:b8:c4:f9:70:
ee:a9:3b:ea:bd:af:00:11:44:69:45:fd:68:c9:48:f5:c6:1b:
d0:9e:d6:38:f8:dc:ea:c1:9b:ca:c2:09:34:99:b6:d9:36:d6:
70:b7:7b:be:d5:57:f3:07:64:2c:88:52:4a:fd:66:9a:a4:bb:
99:61:0d:7a:bd:45:7a:eb:ca:a8:14:71:1e:85:d6:f1:54:3a:
8b:61:cb:d7:c8:ba:a2:40:78:90:84:38:8c:70:68:6d:9e:2c:
9c:8b:69:1b:c6:f1:d9:18:82:cb:05:e1:0a:3d:44:c4:f9:1e:
b7:4d:ce:8e:b9:b4:49:6e:c9:e9:dd:36:ab:7a:5f:2d:b3:ba:
37:5b:82:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 15:59:48 2025 by rpki-client