Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/29af59-0b7b-4d80-8f9f-14d02e30d227/1/fbyo7xw7OVQjt-Z_risAcNBtcH8.roa
File: fbyo7xw7OVQjt-Z_risAcNBtcH8.roa (raw, json)
Hash identifier: QFqUQxFJMJ/HRIgpyInlcTMTKwfoUJaISjB36SzyexU=
Subject key identifier: 7D:BC:A8:EF:1C:3B:39:54:23:B7:E6:7F:AE:2B:00:70:D0:6D:70:7F
Certificate issuer: /CN=e87cc680c85983e7bf74498d0e6be800f86451c3
Certificate serial: 01942144607FE8163688C3D76D7A44A68118
Authority key identifier: E8:7C:C6:80:C8:59:83:E7:BF:74:49:8D:0E:6B:E8:00:F8:64:51:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6HzGgMhZg-e_dEmNDmvoAPhkUcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/29af59-0b7b-4d80-8f9f-14d02e30d227/1/fbyo7xw7OVQjt-Z_risAcNBtcH8.roa
Signing time: Wed 01 Jan 2025 09:48:36 +0000
ROA not before: Wed 01 Jan 2025 09:48:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43915
IP address blocks: 31.210.27.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:60:7f:e8:16:36:88:c3:d7:6d:7a:44:a6:81:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e87cc680c85983e7bf74498d0e6be800f86451c3
Validity
Not Before: Jan 1 09:48:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7dbca8ef1c3b395423b7e67fae2b0070d06d707f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d5:57:4b:05:9a:af:29:11:57:c9:17:d5:36:
1c:c4:40:4c:a6:40:a2:d7:a8:0f:dd:df:6b:0e:67:
34:58:43:a1:e5:77:69:9a:a6:89:46:b5:81:2a:bd:
a2:a5:00:fd:da:1e:69:e7:e5:97:87:5f:5c:ea:8d:
c0:66:1e:46:d9:ff:cd:ef:a7:d3:dc:6d:ea:29:61:
20:f8:92:41:a7:16:8f:0e:6e:61:49:79:26:a3:96:
3a:90:42:da:e4:5e:e7:1d:96:67:fb:94:69:16:1f:
7a:b7:54:17:8a:31:b7:4c:9d:de:0c:17:e0:1b:94:
8a:02:02:bd:3e:5a:66:3c:90:22:28:ba:29:9f:99:
ff:b9:45:b1:9f:e4:17:d4:ee:df:44:c1:f0:ca:65:
f8:f9:e2:85:94:9f:35:3d:f0:eb:57:28:9e:9d:ed:
54:00:5c:88:1c:ba:b7:81:8c:ab:ae:60:00:92:5a:
0d:d4:bc:77:bc:42:e2:52:b3:a6:52:33:80:5e:72:
8d:fd:bd:48:b7:b4:24:fc:0c:ed:6d:09:0b:b8:52:
9f:26:1c:9c:01:13:49:c5:f1:be:40:bd:7e:b2:7e:
11:df:65:ef:4c:23:f3:20:1c:21:3b:22:0f:11:fb:
fd:f7:ed:0f:b3:83:e2:00:1c:e5:4f:a8:13:8f:8a:
03:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:BC:A8:EF:1C:3B:39:54:23:B7:E6:7F:AE:2B:00:70:D0:6D:70:7F
X509v3 Authority Key Identifier:
keyid:E8:7C:C6:80:C8:59:83:E7:BF:74:49:8D:0E:6B:E8:00:F8:64:51:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6HzGgMhZg-e_dEmNDmvoAPhkUcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/29af59-0b7b-4d80-8f9f-14d02e30d227/1/fbyo7xw7OVQjt-Z_risAcNBtcH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/29af59-0b7b-4d80-8f9f-14d02e30d227/1/6HzGgMhZg-e_dEmNDmvoAPhkUcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.27.0/24
Signature Algorithm: sha256WithRSAEncryption
11:83:df:a5:37:6b:b5:90:2d:e1:37:3c:40:89:f9:68:15:de:
b7:6e:d8:50:0e:b3:53:7f:79:50:7e:92:8f:2a:5a:09:6b:7c:
0d:b8:fc:3c:dc:a0:c0:a2:8e:11:11:8f:5a:a5:74:d4:c2:bc:
7f:8a:b9:37:83:df:5e:52:12:8c:54:11:44:29:62:7d:67:1c:
5f:af:30:93:d8:2b:a9:1a:8d:82:fc:40:65:90:de:1e:c3:c9:
7b:6c:cd:7f:12:30:68:fb:5c:cd:9d:63:a9:b4:9a:e6:73:4c:
8b:30:e7:05:c4:61:a6:4c:bf:3c:7e:2d:c2:7a:b9:57:42:dc:
6b:cb:a7:37:25:4d:c0:cb:e3:ed:d8:49:2e:54:7a:3b:4b:6f:
4c:c9:b5:5e:c8:3e:ec:2a:ca:38:3c:8a:60:7e:07:28:4b:de:
19:85:3f:0c:c6:82:34:2a:fe:73:f1:87:e1:67:97:38:14:82:
17:51:eb:43:3d:60:f6:27:10:3e:9a:73:f4:e8:cf:21:f2:a9:
d6:ed:d7:b5:33:7f:be:ab:c4:50:fc:e2:f7:2d:01:32:ad:28:
52:1b:ab:3c:7f:94:8e:73:bc:92:11:58:a5:ce:5b:f5:c1:cf:
38:d4:6a:13:7a:93:e8:c4:26:b7:a0:36:8a:4b:60:21:50:79:
42:a2:cf:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:32:43 2025 by rpki-client