Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/613508-0832-41f6-acb7-831f7e6f5ccd/1/WZk41uDGz8aqTuMK5_6Ovbbhicc.roa
File: WZk41uDGz8aqTuMK5_6Ovbbhicc.roa (raw, json)
Hash identifier: 5tAgdvaBn8Xzr7bEMaN+4RyehKAGk3MjK0uZbZfdeTE=
Subject key identifier: 59:99:38:D6:E0:C6:CF:C6:AA:4E:E3:0A:E7:FE:8E:BD:B6:E1:89:C7
Certificate issuer: /CN=424feffb576e411de511871dc1e0bd7a20e2c4d7
Certificate serial: 0194258F64AC78AA9039FFCBF41A3B22FF42
Authority key identifier: 42:4F:EF:FB:57:6E:41:1D:E5:11:87:1D:C1:E0:BD:7A:20:E2:C4:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qk_v-1duQR3lEYcdweC9eiDixNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/613508-0832-41f6-acb7-831f7e6f5ccd/1/WZk41uDGz8aqTuMK5_6Ovbbhicc.roa
Signing time: Thu 02 Jan 2025 05:49:01 +0000
ROA not before: Thu 02 Jan 2025 05:49:01 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 3758
IP address blocks: 31.210.22.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:64:ac:78:aa:90:39:ff:cb:f4:1a:3b:22:ff:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=424feffb576e411de511871dc1e0bd7a20e2c4d7
Validity
Not Before: Jan 2 05:49:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=599938d6e0c6cfc6aa4ee30ae7fe8ebdb6e189c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:d7:72:72:03:d1:6c:ac:82:bd:71:87:3e:44:
a3:5b:30:37:14:71:eb:00:11:da:2a:40:63:6e:62:
ef:63:25:e9:20:6d:9c:33:ec:e0:85:34:cc:ac:a0:
7c:c5:18:d5:7e:c6:1d:ff:00:ba:be:1b:33:41:a5:
0c:59:5d:af:98:3d:99:7a:6f:7d:50:fb:63:ef:34:
5d:6f:08:ef:2e:ba:f0:2c:07:ca:4e:05:a3:5d:91:
26:0f:30:1a:0e:8e:03:55:6d:57:da:2c:3b:b6:66:
c7:15:43:f2:69:f0:e3:5b:78:f4:92:50:01:98:ae:
3f:a4:f9:7d:39:fa:94:c0:67:c5:e5:a3:d5:09:72:
d6:06:bd:05:d0:17:53:63:4a:30:74:25:6f:15:4e:
86:24:1f:3e:d5:c7:cb:10:2d:a8:c2:e8:59:54:52:
2c:95:9d:dd:90:b9:aa:d4:20:01:6f:04:32:fa:15:
ff:90:7b:d6:ef:b2:f5:d8:8d:f0:1a:a8:8d:37:3f:
08:8d:b7:32:7c:66:33:86:2f:71:5e:2d:ab:e5:0f:
71:ce:83:e7:ea:4e:f6:4e:5d:7d:3f:cf:70:6d:cc:
db:e0:21:55:50:d3:b3:fd:bc:7e:59:9e:3a:42:c5:
b8:8f:ad:6a:70:d2:c7:41:e8:f3:8a:f0:58:73:8d:
91:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:99:38:D6:E0:C6:CF:C6:AA:4E:E3:0A:E7:FE:8E:BD:B6:E1:89:C7
X509v3 Authority Key Identifier:
keyid:42:4F:EF:FB:57:6E:41:1D:E5:11:87:1D:C1:E0:BD:7A:20:E2:C4:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qk_v-1duQR3lEYcdweC9eiDixNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/613508-0832-41f6-acb7-831f7e6f5ccd/1/WZk41uDGz8aqTuMK5_6Ovbbhicc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/613508-0832-41f6-acb7-831f7e6f5ccd/1/Qk_v-1duQR3lEYcdweC9eiDixNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.22.0/23
Signature Algorithm: sha256WithRSAEncryption
65:fe:0f:37:bc:fb:d8:64:0b:68:c0:5f:76:43:83:97:a9:e1:
01:3e:1e:88:d0:8e:85:57:23:99:55:26:ce:38:18:1e:96:6d:
41:8e:f5:c9:a5:35:76:da:61:9a:b4:07:76:d1:62:0c:d7:14:
89:57:4b:6a:80:1b:fd:f2:ef:8f:59:35:fd:7c:be:5e:ad:90:
5f:8f:63:98:93:7d:c5:84:26:eb:f9:71:6a:bf:ae:1b:72:94:
ce:70:05:fd:f5:41:0a:ac:5e:3a:9f:cf:83:1a:2b:e6:b4:5d:
2e:ef:51:63:bf:c7:22:44:b8:6c:04:0b:74:29:d4:d7:14:2d:
3a:ea:df:d6:b1:21:d9:2e:f0:b4:1a:5d:3a:17:08:7d:cf:7d:
ff:e8:54:70:4a:c5:9b:43:a9:d6:e3:9e:bd:e1:18:a4:75:9c:
91:2e:d8:47:d6:3a:33:d1:e3:f5:9f:e3:a5:10:d9:52:2e:28:
45:7c:2b:b4:c4:6a:ae:b0:83:98:f3:13:d5:1a:b5:d7:f3:1a:
49:26:90:39:5c:6b:fd:35:8e:6f:8a:b1:13:4b:24:c7:ef:05:
f0:66:70:d9:67:80:62:05:0f:92:86:0b:bc:d0:9c:bd:68:5d:
a9:5f:0a:4b:a4:bf:27:df:eb:52:3b:e1:95:11:c2:ef:61:f9:
73:41:0f:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 21:28:09 2025 by rpki-client