Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/M97ZcKaRZuOa3DTXxLHlO-RLatQ.roa
File: M97ZcKaRZuOa3DTXxLHlO-RLatQ.roa (raw, json)
Hash identifier: w0gHLxi0MpSA4Cow6J8TG6Bmoy7AY86PSwg5UsV2kcM=
Subject key identifier: 33:DE:D9:70:A6:91:66:E3:9A:DC:34:D7:C4:B1:E5:3B:E4:4B:6A:D4
Certificate issuer: /CN=2c71c96005e13a84a3f31ef1d991777f4b6e31a7
Certificate serial: 019427B4858A8DA9E9B46E99067751342619
Authority key identifier: 2C:71:C9:60:05:E1:3A:84:A3:F3:1E:F1:D9:91:77:7F:4B:6E:31:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LHHJYAXhOoSj8x7x2ZF3f0tuMac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/M97ZcKaRZuOa3DTXxLHlO-RLatQ.roa
Signing time: Thu 02 Jan 2025 15:48:49 +0000
ROA not before: Thu 02 Jan 2025 15:48:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49107
IP address blocks: 31.130.156.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b4:85:8a:8d:a9:e9:b4:6e:99:06:77:51:34:26:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c71c96005e13a84a3f31ef1d991777f4b6e31a7
Validity
Not Before: Jan 2 15:48:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=33ded970a69166e39adc34d7c4b1e53be44b6ad4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:46:de:16:b1:0b:05:db:26:01:41:22:a9:de:
fc:1d:36:a7:2e:33:02:ab:26:d2:7f:22:8d:bb:22:
54:ab:5d:4b:f3:1d:f4:41:bf:c1:6a:10:86:aa:10:
a2:ca:14:35:27:33:18:b2:cf:60:d7:88:5f:ee:0b:
8d:cd:8e:55:bc:ce:16:d3:00:ce:1c:8b:5d:fa:c2:
a2:02:0f:5e:ec:c9:f0:72:31:08:07:37:a3:6a:e0:
71:fe:17:5c:46:5c:15:d9:f5:6b:71:d0:db:36:9f:
d9:99:90:9b:01:da:b8:c4:b4:f9:73:64:19:af:12:
35:18:5d:f6:89:a7:3a:a6:a3:5d:d1:a3:d8:46:c7:
c5:ae:5f:97:27:28:aa:47:94:a9:c5:93:bc:01:a7:
c2:3e:e8:18:a6:a6:f8:2b:12:78:3b:b3:1a:ee:43:
ad:d6:27:5d:f8:b7:b3:07:d2:53:88:e8:1b:6d:d0:
10:3b:f8:d7:1d:ec:37:7a:73:8d:94:4c:81:47:1d:
be:6d:48:5f:10:e1:21:f0:14:a2:f3:55:62:e9:66:
90:14:ca:7c:c5:bd:76:d8:de:b8:dc:3f:26:23:fa:
13:dc:6e:51:78:aa:2c:ce:50:c0:49:28:30:7f:28:
82:7c:5b:0e:ea:f4:34:94:95:00:8a:82:ed:44:ed:
1c:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:DE:D9:70:A6:91:66:E3:9A:DC:34:D7:C4:B1:E5:3B:E4:4B:6A:D4
X509v3 Authority Key Identifier:
keyid:2C:71:C9:60:05:E1:3A:84:A3:F3:1E:F1:D9:91:77:7F:4B:6E:31:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LHHJYAXhOoSj8x7x2ZF3f0tuMac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/M97ZcKaRZuOa3DTXxLHlO-RLatQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/LHHJYAXhOoSj8x7x2ZF3f0tuMac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.130.156.0/23
Signature Algorithm: sha256WithRSAEncryption
29:bc:d0:a0:a1:2f:9d:76:76:76:f7:a4:5a:75:9d:f3:a5:6d:
84:86:56:be:14:08:80:b3:61:c6:ba:22:4b:23:66:54:69:1c:
88:c6:ed:b7:97:ad:ed:e2:30:16:bb:58:f6:10:48:ec:37:9b:
ef:ee:e3:36:89:35:c0:ce:54:67:3a:7d:95:15:43:d0:77:d2:
87:77:0c:41:6e:96:54:3f:d5:e8:94:9d:33:2a:31:ca:95:d1:
fe:9c:24:86:9a:49:e4:f5:74:03:b3:59:58:41:c3:33:44:d2:
1d:f3:38:3f:b0:69:a8:ce:f5:6a:c2:cc:f7:1e:31:af:10:f6:
a4:a7:66:3d:af:81:63:01:cc:0f:da:90:15:db:10:23:f5:ce:
5f:df:70:fb:79:7d:66:92:0b:b9:93:7d:02:fa:1a:bf:2a:b3:
00:98:d5:5a:b2:9c:cb:2c:48:95:9b:d6:03:a5:8d:2b:a2:2d:
39:f6:ae:2e:5b:3f:c6:1e:50:ce:73:13:d2:3b:f7:6a:81:61:
f1:04:97:94:9d:60:0c:6c:a5:64:7e:9c:24:20:e1:c0:d5:00:
2a:73:50:df:1a:c8:c3:b1:97:64:46:d6:8c:e2:b7:6b:35:7f:
61:d8:83:74:02:b4:5c:15:73:5a:42:f9:22:5f:0c:32:f8:89:
60:90:0b:27
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQntIWKjanptG6ZBndRNCYZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJjNzFjOTYwMDVlMTNhODRhM2YzMWVmMWQ5OTE3NzdmNGI2
ZTMxYTcwHhcNMjUwMTAyMTU0ODQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzM2RlZDk3MGE2OTE2NmUzOWFkYzM0ZDdjNGIxZTUzYmU0NGI2YWQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApkbeFrELBdsmAUEiqd78HTanLjMC
qybSfyKNuyJUq11L8x30Qb/BahCGqhCiyhQ1JzMYss9g14hf7guNzY5VvM4W0wDO
HItd+sKiAg9e7MnwcjEIBzejauBx/hdcRlwV2fVrcdDbNp/ZmZCbAdq4xLT5c2QZ
rxI1GF32iac6pqNd0aPYRsfFrl+XJyiqR5SpxZO8AafCPugYpqb4KxJ4O7Ma7kOt
1idd+LezB9JTiOgbbdAQO/jXHew3enONlEyBRx2+bUhfEOEh8BSi81Vi6WaQFMp8
xb122N643D8mI/oT3G5ReKoszlDASSgwfyiCfFsO6vQ0lJUAioLtRO0c/QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDPe2XCmkWbjmtw018Sx5TvkS2rUMB8GA1UdIwQY
MBaAFCxxyWAF4TqEo/Me8dmRd39LbjGnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTEhISllBWGhPb1NqOHg3eDJaRjNmMHR1TWFjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi9mYTM1NDQtMTAyNS00ZThmLWE4ZmUt
N2EyOGFmMjljZGMyLzEvTTk3WmNLYVJadU9hM0RUWHhMSGxPLVJMYXRRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZi9mYTM1NDQtMTAyNS00ZThmLWE4ZmUtN2EyOGFmMjljZGMy
LzEvTEhISllBWGhPb1NqOHg3eDJaRjNmMHR1TWFjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBH4KcMA0G
CSqGSIb3DQEBCwUAA4IBAQApvNCgoS+ddnZ296RadZ3zpW2Ehla+FAiAs2HGuiJL
I2ZUaRyIxu23l63t4jAWu1j2EEjsN5vv7uM2iTXAzlRnOn2VFUPQd9KHdwxBbpZU
P9XolJ0zKjHKldH+nCSGmknk9XQDs1lYQcMzRNId8zg/sGmozvVqwsz3HjGvEPak
p2Y9r4FjAcwP2pAV2xAj9c5f33D7eX1mkgu5k30C+hq/KrMAmNVaspzLLEiVm9YD
pY0roi059q4uWz/GHlDOcxPSO/dqgWHxBJeUnWAMbKVkfpwkIOHA1QAqc1DfGsjD
sZdkRtaM4rdrNX9h2IN0ArRcFXNaQvkiXwwy+IlgkAsn
-----END CERTIFICATE-----
Generated at Mon Apr 7 18:06:18 2025 by rpki-client