Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS31715.roa
File: AS31715.roa (raw, json)
Hash identifier: oyJj2L7uaAnTlqlSf5Tai+Nm0fXzGX11UNuYTYbx0NA=
Subject key identifier: CF:51:25:D7:A6:11:D5:CF:5E:CE:19:16:F7:81:95:B9:F7:AB:62:4E
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 6A261E9CBCEFBACFD2AF38DE3705C5308794ED32
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS31715.roa
Signing time: Fri 20 Dec 2024 06:12:49 +0000
ROA not before: Fri 20 Dec 2024 06:07:49 +0000
ROA not after: Fri 19 Dec 2025 06:12:49 +0000
asID: 31715
IP address blocks: 150.241.249.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:26:1e:9c:bc:ef:ba:cf:d2:af:38:de:37:05:c5:30:87:94:ed:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Dec 20 06:07:49 2024 GMT
Not After : Dec 19 06:12:49 2025 GMT
Subject: CN=CF5125D7A611D5CF5ECE1916F78195B9F7AB624E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:35:df:9b:51:a1:2e:7c:59:a8:de:a6:58:e2:
37:5c:73:13:0d:89:07:5e:5e:68:6b:7b:2d:a3:21:
26:48:4e:3a:bc:ca:f0:60:8e:7e:4c:a4:6e:e8:f2:
bd:d8:4f:81:fa:66:b7:6e:9f:94:5a:37:36:c5:ef:
f8:ca:7b:c8:d2:8d:c8:c5:23:52:c8:53:8b:aa:7e:
28:cd:30:67:b6:bf:60:99:76:c7:2e:27:d9:4b:16:
88:ee:4a:44:34:a8:7b:d9:4a:87:e4:01:2a:21:fe:
76:7c:29:d0:e2:4c:f5:8d:c7:b8:31:e8:b1:ba:d6:
33:dc:71:2c:33:b4:43:83:41:9b:d7:4f:b8:c8:da:
18:65:56:74:34:4e:0e:5a:d2:79:9e:3b:6e:f8:15:
21:91:b0:2e:58:96:47:7a:1b:6a:b8:b1:0d:60:ae:
92:a5:90:95:1d:af:89:d9:c0:c9:4c:07:a8:29:6b:
68:fa:3e:0a:24:34:dc:cf:f2:cc:42:27:c7:72:07:
11:cb:04:36:e7:f5:41:8d:ee:a3:ac:be:e5:22:a2:
71:c4:b4:3f:9f:e4:82:c6:1f:64:0a:2d:30:2e:83:
04:77:bb:ec:e6:ac:74:55:ea:d6:59:63:b4:db:d1:
9b:f1:13:69:67:40:f2:12:34:d1:60:67:80:ee:73:
38:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:51:25:D7:A6:11:D5:CF:5E:CE:19:16:F7:81:95:B9:F7:AB:62:4E
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS31715.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
150.241.249.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:cd:9f:c6:ce:ed:a8:b3:a6:b5:4e:69:3f:a7:8e:84:0c:25:
1a:2e:d7:bd:27:fc:97:47:10:fe:a5:e3:38:63:33:c5:31:5c:
0f:82:90:87:da:81:55:4c:ed:68:a6:a2:2e:99:67:de:5b:11:
b7:4c:33:09:69:cc:4f:cd:17:ba:f2:8c:6a:8c:2c:96:be:61:
e4:2c:47:9d:bb:e1:3e:18:a9:9c:02:fb:4d:86:58:02:07:ee:
ce:0e:2a:89:6d:11:f7:cf:fc:ef:5c:d4:55:48:d6:f0:c5:ab:
d9:ac:91:6b:fe:f8:c4:d7:a6:47:63:fc:f4:a1:57:b2:2f:ca:
da:48:e8:d4:92:fc:7b:b8:e1:f2:ad:57:77:bb:28:5e:a7:6b:
b9:1f:00:98:ce:34:26:20:1e:42:3c:88:e2:83:f2:f2:23:20:
ce:a4:6b:a1:05:ac:ad:b9:d2:00:0f:da:3d:4a:61:e2:23:8a:
66:47:61:5c:a9:17:ca:29:57:16:27:3b:69:aa:a3:94:bb:7b:
48:a5:69:20:79:a0:a6:f9:dc:15:a0:f9:a4:19:ab:e2:13:85:
e0:e1:92:71:73:8d:a2:9c:d2:60:7a:26:fb:8e:fa:ba:b8:fa:
c7:6a:b7:71:67:8d:25:6a:a6:5b:a1:7a:e8:93:af:35:0e:db:
66:11:71:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:30:25 2025 by rpki-client