Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/3c64ad-fe08-43d8-aba7-0c5573cab8c0/1/OvTH0PCVJ4D7UJrP2NuvuVR4PQE.roa
File: OvTH0PCVJ4D7UJrP2NuvuVR4PQE.roa (raw, json)
Hash identifier: jBoOAx/HJL47Bh5CX/S3t7LcLwNK+3D1oxFQl0oqYeU=
Subject key identifier: 3A:F4:C7:D0:F0:95:27:80:FB:50:9A:CF:D8:DB:AF:B9:54:78:3D:01
Certificate issuer: /CN=83306a3a8d8bcba39f92ef1ac49a559b0bce8a58
Certificate serial: 018571B9FD2F1254E7C1850983504120B0A6
Authority key identifier: 83:30:6A:3A:8D:8B:CB:A3:9F:92:EF:1A:C4:9A:55:9B:0B:CE:8A:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzBqOo2Ly6Ofku8axJpVmwvOilg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/3c64ad-fe08-43d8-aba7-0c5573cab8c0/1/OvTH0PCVJ4D7UJrP2NuvuVR4PQE.roa
Signing time: Mon 02 Jan 2023 09:04:52 +0000
ROA not before: Mon 02 Jan 2023 09:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 31.41.248.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b9:fd:2f:12:54:e7:c1:85:09:83:50:41:20:b0:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83306a3a8d8bcba39f92ef1ac49a559b0bce8a58
Validity
Not Before: Jan 2 09:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3af4c7d0f0952780fb509acfd8dbafb954783d01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:6a:b2:22:4f:7e:be:64:e5:e0:9e:50:bb:ac:
65:3d:0e:0d:ed:0c:d7:4b:f0:d3:33:1f:35:f2:23:
51:8f:64:4d:24:c3:2f:e1:cd:45:fc:21:53:a4:db:
16:a3:49:be:6c:ff:1c:bd:14:ea:c9:40:ed:11:fe:
4a:ea:9f:3e:1c:25:a1:f0:35:4c:50:77:83:94:8b:
4b:c5:c0:67:99:dd:79:4e:6b:0d:97:bc:41:82:1f:
26:7a:13:28:b8:d1:10:aa:7e:5e:2d:e2:bd:ed:da:
a1:8e:dc:6b:89:aa:53:c7:4b:e2:26:c5:ea:27:a4:
c3:23:9f:c0:1d:1d:79:82:e2:76:65:ff:97:ba:b5:
e8:97:f5:70:f0:85:ab:16:5e:89:e0:23:3c:27:cc:
6d:75:8e:aa:b2:7c:58:1d:f1:44:46:66:12:fc:f1:
cd:5a:18:7a:26:20:10:72:d9:dc:c8:ff:50:9d:7b:
bf:b1:cf:aa:b2:57:f7:71:2e:e2:45:37:d1:bf:ac:
df:fd:61:24:ed:ac:c7:2a:78:2b:79:ed:31:65:42:
32:86:4d:41:f5:27:5d:9a:3b:bb:35:44:e9:05:a2:
86:a9:7b:a5:0e:15:8f:5f:fd:79:32:02:09:d4:ca:
21:cb:bd:71:19:85:21:11:8c:26:19:55:7a:d8:2c:
72:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:F4:C7:D0:F0:95:27:80:FB:50:9A:CF:D8:DB:AF:B9:54:78:3D:01
X509v3 Authority Key Identifier:
keyid:83:30:6A:3A:8D:8B:CB:A3:9F:92:EF:1A:C4:9A:55:9B:0B:CE:8A:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzBqOo2Ly6Ofku8axJpVmwvOilg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/3c64ad-fe08-43d8-aba7-0c5573cab8c0/1/OvTH0PCVJ4D7UJrP2NuvuVR4PQE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/3c64ad-fe08-43d8-aba7-0c5573cab8c0/1/gzBqOo2Ly6Ofku8axJpVmwvOilg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.41.248.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:13:23:f8:20:1c:23:e6:20:b4:75:0e:8d:45:a4:18:7a:85:
99:35:83:75:c6:5a:e4:d1:d9:90:29:a9:a7:d4:14:40:32:f5:
6c:ab:91:6a:6b:8d:e7:e1:2d:0f:93:20:49:cf:7d:5b:ca:9a:
9d:06:b0:7e:41:25:f1:a6:bc:90:d3:78:86:55:5c:b4:db:15:
b3:9e:24:e5:86:51:0f:41:33:be:4a:d0:4e:92:25:b5:58:bf:
f3:4a:5d:29:97:be:e2:19:ab:cb:0a:32:71:ee:b2:fb:cf:f6:
ef:05:34:c0:34:bb:0a:82:dc:32:b0:74:86:38:37:c4:ec:0c:
6e:53:27:68:3b:06:9c:3a:f4:7a:98:b9:c8:c2:63:9f:78:b9:
db:74:0e:64:64:b2:ff:27:49:64:82:21:4c:fd:3c:c2:a5:b8:
6e:03:13:62:04:01:0b:6a:b2:77:ea:00:ac:6c:53:ed:52:81:
e0:60:17:b8:08:fd:44:46:38:e6:ad:ab:41:40:03:e3:c8:97:
91:13:c4:2c:a9:8b:e0:da:23:3d:e1:1f:4e:3f:d6:a8:ed:ae:
cc:0e:ca:21:c5:ad:19:5a:fb:05:61:ea:ae:78:bf:74:6f:95:
0f:8a:a3:39:d5:86:4f:c7:41:d0:a2:c4:8b:6e:1e:de:84:ee:
7c:8c:bb:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 3 09:31:24 2023 by rpki-client on console-ams.rpki-client.org