Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/0dee16-7379-434b-94f4-a48c564e8588/1/PgE9BW67Hzl1H_iUdCM9hiaWebE.roa
File: PgE9BW67Hzl1H_iUdCM9hiaWebE.roa (raw, json)
Hash identifier: /s5fkdZBUcDDsN3IZL7N+u3huKwHv5y1+anQQJEUKPw=
Subject key identifier: 3E:01:3D:05:6E:BB:1F:39:75:1F:F8:94:74:23:3D:86:26:96:79:B1
Certificate issuer: /CN=7e1d7492b8e835f2e4e2ade4d2c54da9ab78af8c
Certificate serial: 019420D5A0A22939588B47A5300F6E34F86C
Authority key identifier: 7E:1D:74:92:B8:E8:35:F2:E4:E2:AD:E4:D2:C5:4D:A9:AB:78:AF:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fh10krjoNfLk4q3k0sVNqat4r4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/0dee16-7379-434b-94f4-a48c564e8588/1/PgE9BW67Hzl1H_iUdCM9hiaWebE.roa
Signing time: Wed 01 Jan 2025 07:47:38 +0000
ROA not before: Wed 01 Jan 2025 07:47:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213241
IP address blocks: 31.216.58.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:a0:a2:29:39:58:8b:47:a5:30:0f:6e:34:f8:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e1d7492b8e835f2e4e2ade4d2c54da9ab78af8c
Validity
Not Before: Jan 1 07:47:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3e013d056ebb1f39751ff89474233d86269679b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:56:66:5d:a3:28:22:46:af:ad:80:3e:62:8f:
19:77:6d:81:1b:f8:20:43:d8:58:7a:ab:a3:b8:94:
74:b7:e6:7a:d9:ef:8a:05:1b:45:f4:31:ae:71:d0:
93:ce:96:e3:59:3b:51:56:95:97:7a:43:b1:60:16:
f7:f5:ed:6d:46:3e:f6:61:0d:42:2c:6b:ba:d4:3f:
a3:81:af:b0:d4:b6:31:6d:34:cd:65:16:e3:a9:1e:
c6:86:77:0c:27:da:72:1e:93:e4:13:6a:db:02:de:
1f:bb:67:59:3b:bb:39:5f:1f:5c:cf:23:78:2b:2f:
6f:91:20:f7:43:e6:08:91:7e:46:08:9d:60:e8:52:
da:a0:06:5c:87:e7:f0:01:e7:a3:e5:fa:f2:76:fa:
1c:68:d8:d0:80:db:98:59:31:c4:7f:e4:6c:ab:72:
1a:33:af:de:cc:6b:f9:95:d8:95:b5:ad:cf:e3:c7:
f1:69:26:5e:d1:54:c2:85:72:be:05:1a:f5:c6:15:
27:15:54:b3:ca:f7:90:da:cf:e1:cf:de:4b:55:2e:
cd:72:32:5f:26:46:83:e3:1b:f2:7e:0b:5e:f1:fc:
1e:45:a3:8e:ad:4d:b1:a7:4b:30:2e:eb:3f:51:1e:
3c:a2:94:9b:e0:d3:6b:fe:c5:06:d4:97:2c:f8:be:
18:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:01:3D:05:6E:BB:1F:39:75:1F:F8:94:74:23:3D:86:26:96:79:B1
X509v3 Authority Key Identifier:
keyid:7E:1D:74:92:B8:E8:35:F2:E4:E2:AD:E4:D2:C5:4D:A9:AB:78:AF:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fh10krjoNfLk4q3k0sVNqat4r4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/0dee16-7379-434b-94f4-a48c564e8588/1/PgE9BW67Hzl1H_iUdCM9hiaWebE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/0dee16-7379-434b-94f4-a48c564e8588/1/fh10krjoNfLk4q3k0sVNqat4r4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.216.58.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:23:09:74:b6:0e:d5:e2:22:e8:a0:01:32:fe:29:96:be:f1:
cd:3b:f6:ac:62:da:a1:e9:6d:05:4d:c7:97:08:71:f7:3b:31:
a4:7f:74:e9:30:c3:b0:08:76:60:23:3f:af:eb:66:11:8f:36:
c6:e8:d1:16:d4:5c:8e:c3:77:d0:f4:5f:81:48:b1:eb:d0:c3:
31:8c:7f:21:d4:ad:62:17:a3:af:fc:56:e1:8f:ff:46:05:4c:
ba:36:3c:f1:bc:a3:b0:ef:fb:a0:08:fb:45:62:cd:03:b7:c3:
62:a5:c4:d3:9e:3f:6e:bb:20:6d:58:b4:28:f7:4f:c5:62:5c:
b7:7d:9e:9b:cd:25:a3:11:00:e1:56:aa:11:98:37:cb:33:52:
5d:f2:bf:c4:5c:2a:52:fe:98:f6:43:e2:43:28:0d:3e:a0:25:
1d:ce:1c:17:18:0e:19:e4:be:81:68:d0:b8:98:eb:ea:b1:e5:
4a:6d:7e:de:75:fd:4e:c7:1b:69:0a:f8:62:c7:00:30:83:0e:
cd:b7:05:3f:9c:10:8a:f5:ce:e2:12:61:4f:a2:87:f9:31:c1:
ea:9b:1f:63:e4:63:7e:7e:0f:f8:42:38:81:9e:bc:93:65:58:
64:25:87:45:2b:f7:ff:2c:1c:20:4a:0b:47:fa:6d:a5:33:1d:
e4:aa:52:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:05 2025 by rpki-client on console.sobornost.net