Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/85c6bd-6a68-4d11-b9cd-8c2df5a5c6d7/1/tgtnwoMSuJpvUhZwhk9qFrx7hWQ.roa
File: tgtnwoMSuJpvUhZwhk9qFrx7hWQ.roa (raw, json)
Hash identifier: rFNa5r+Q4PL0nS416jQMSkeeFMd2IaIQ8Oy1MIANZ/s=
Subject key identifier: B6:0B:67:C2:83:12:B8:9A:6F:52:16:70:86:4F:6A:16:BC:7B:85:64
Certificate issuer: /CN=9e8cd7d6a4105750bf8975a7d0b96794c1efe622
Certificate serial: 019423D6D9053A849300B561C96592FA8B58
Authority key identifier: 9E:8C:D7:D6:A4:10:57:50:BF:89:75:A7:D0:B9:67:94:C1:EF:E6:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nozX1qQQV1C_iXWn0LlnlMHv5iI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/85c6bd-6a68-4d11-b9cd-8c2df5a5c6d7/1/tgtnwoMSuJpvUhZwhk9qFrx7hWQ.roa
Signing time: Wed 01 Jan 2025 21:47:50 +0000
ROA not before: Wed 01 Jan 2025 21:47:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214109
IP address blocks: 31.131.142.0/24 maxlen: 24
31.131.143.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:d9:05:3a:84:93:00:b5:61:c9:65:92:fa:8b:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e8cd7d6a4105750bf8975a7d0b96794c1efe622
Validity
Not Before: Jan 1 21:47:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b60b67c28312b89a6f521670864f6a16bc7b8564
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:26:11:3a:49:bb:80:d0:06:cc:a0:d7:b8:c1:
5e:c2:95:72:25:88:a4:74:90:6d:82:7b:f5:47:81:
65:8e:5b:60:3d:5a:e5:9c:71:a1:2b:e6:24:43:4f:
78:3b:f0:7f:63:91:96:be:c6:11:5e:ad:10:31:e8:
e2:8f:94:10:8b:5f:6a:42:10:9e:60:7c:bc:8c:f3:
14:b2:10:db:9f:d5:dc:e0:3d:91:9b:2e:56:8b:3e:
d2:f5:3a:bd:7b:62:b2:59:51:18:bd:9f:c6:27:9f:
04:54:f0:01:27:9b:ea:a0:91:12:fc:6f:70:16:c3:
95:02:cd:df:8d:dd:9a:e6:94:fd:6e:d2:c9:a3:8a:
33:18:a5:11:c7:2d:7a:73:0f:3f:88:28:81:d0:33:
c2:69:8b:c5:eb:6d:d8:5a:14:12:55:d9:a9:75:cb:
9c:c7:da:ad:9a:a3:43:e0:39:66:8f:3a:e7:26:f2:
4c:78:7a:e9:20:55:cf:3f:1a:37:fa:b9:36:b2:85:
5a:85:6c:e5:7c:f9:53:3d:44:55:f7:bd:fc:8e:16:
9d:1c:65:d4:e3:a0:ad:ad:3a:8c:29:22:78:e2:92:
a6:de:2f:18:7b:10:c4:c4:02:4f:09:79:97:e8:5a:
cd:15:e2:4c:7e:27:a7:3d:57:b2:f0:fc:7c:0f:ac:
ef:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:0B:67:C2:83:12:B8:9A:6F:52:16:70:86:4F:6A:16:BC:7B:85:64
X509v3 Authority Key Identifier:
keyid:9E:8C:D7:D6:A4:10:57:50:BF:89:75:A7:D0:B9:67:94:C1:EF:E6:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nozX1qQQV1C_iXWn0LlnlMHv5iI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/85c6bd-6a68-4d11-b9cd-8c2df5a5c6d7/1/tgtnwoMSuJpvUhZwhk9qFrx7hWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/85c6bd-6a68-4d11-b9cd-8c2df5a5c6d7/1/nozX1qQQV1C_iXWn0LlnlMHv5iI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.131.142.0/23
Signature Algorithm: sha256WithRSAEncryption
30:e8:38:99:c7:66:09:6f:b3:4e:9d:ec:cb:bc:90:94:41:2d:
5c:32:70:8b:63:04:0f:e2:b7:05:ba:5f:5d:38:9b:2c:83:9b:
60:e5:d7:48:87:6b:4f:19:bf:f8:4f:0c:69:78:4d:4c:04:34:
cd:48:40:e4:49:da:80:1a:b3:6c:a5:a5:b9:1d:a4:91:05:0a:
26:d7:1a:66:20:2b:19:50:a9:91:9e:50:9f:16:4d:67:63:6e:
bf:79:c8:d4:97:6a:ea:a1:b0:c1:cb:75:ef:1b:d1:bc:a2:7d:
1f:53:1d:c7:d8:a5:1c:57:d9:6d:22:f8:ad:76:a4:ef:77:d1:
d4:85:34:1a:cf:43:78:7f:04:49:f1:0d:96:15:9f:31:02:c5:
9e:67:b5:d2:8c:81:6c:b1:34:4f:37:de:dd:ec:2f:3c:d1:b1:
84:9b:76:84:eb:24:7b:d9:28:7d:91:0e:61:12:d9:45:9d:37:
3c:92:fb:67:7c:ad:f2:a6:7f:68:34:0d:f4:81:09:42:bb:71:
e7:a1:58:be:1f:c1:3a:ab:9e:1b:46:82:1c:1c:84:f1:49:43:
ba:b1:f4:f7:ce:31:6b:77:8f:71:75:66:da:93:21:57:70:be:
25:79:97:c7:0b:54:2c:2a:b5:be:cb:88:e2:23:f0:7e:36:b1:
e4:66:f4:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:38 2025 by rpki-client on console.sobornost.net