Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/l9XP7gaCaWGis4j2_HYtNslfm-c.roa
File: l9XP7gaCaWGis4j2_HYtNslfm-c.roa (raw, json)
Hash identifier: onTtv8prZDY2J8tyTCAIkrUkYzKJXBwYs1TgFOfQ6IQ=
Subject key identifier: 97:D5:CF:EE:06:82:69:61:A2:B3:88:F6:FC:76:2D:36:C9:5F:9B:E7
Certificate issuer: /CN=626a28b7c63ef6ab214a52cfa7c3e78db9a40823
Certificate serial: 0194258F02FF468B16047722D5CCF7816C46
Authority key identifier: 62:6A:28:B7:C6:3E:F6:AB:21:4A:52:CF:A7:C3:E7:8D:B9:A4:08:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ymoot8Y-9qshSlLPp8PnjbmkCCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/l9XP7gaCaWGis4j2_HYtNslfm-c.roa
Signing time: Thu 02 Jan 2025 05:48:36 +0000
ROA not before: Thu 02 Jan 2025 05:48:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 2914
IP address blocks: 31.222.208.0/22 maxlen: 24
31.222.212.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:02:ff:46:8b:16:04:77:22:d5:cc:f7:81:6c:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=626a28b7c63ef6ab214a52cfa7c3e78db9a40823
Validity
Not Before: Jan 2 05:48:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=97d5cfee06826961a2b388f6fc762d36c95f9be7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:07:e1:95:b4:89:9e:28:9b:d5:a8:0d:d1:a6:
ae:0c:2e:48:bc:fc:f1:43:9a:e1:c6:d5:5c:36:48:
08:b5:98:c9:8f:8d:84:8c:f5:82:4e:57:7d:ee:12:
d2:77:25:f1:b1:66:64:ef:6b:67:8d:44:f1:88:48:
1f:67:c4:1d:58:0d:ac:61:8e:f6:c5:c7:f9:1a:0a:
65:34:a2:68:c7:89:49:1c:1b:0c:a9:8e:fd:2a:88:
c0:d2:d4:80:32:d4:13:70:7c:dc:53:81:81:36:a0:
8d:3c:e7:6b:16:df:c8:0e:db:78:fd:55:f0:d0:61:
a7:17:c4:45:2d:00:56:9a:09:b6:68:23:fe:9f:3c:
9c:ff:4d:fe:2b:14:13:d1:3c:e9:9d:da:76:a7:c1:
fa:68:2c:11:21:ee:b4:e5:43:03:f5:63:51:a4:8d:
ba:a5:2c:0f:08:63:30:a1:22:a6:f4:21:42:38:64:
43:50:2a:11:8e:55:49:b0:84:4f:0b:12:12:8a:4d:
25:c5:3e:97:87:87:a9:a8:75:ba:90:3d:cf:70:d7:
97:3f:3c:36:5f:5d:ad:3d:64:c7:8b:41:26:96:17:
14:4f:97:86:7d:88:c8:77:f0:ae:90:d1:b3:12:20:
95:22:01:21:b8:8b:7d:46:72:58:9f:ed:af:a3:f9:
06:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:D5:CF:EE:06:82:69:61:A2:B3:88:F6:FC:76:2D:36:C9:5F:9B:E7
X509v3 Authority Key Identifier:
keyid:62:6A:28:B7:C6:3E:F6:AB:21:4A:52:CF:A7:C3:E7:8D:B9:A4:08:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ymoot8Y-9qshSlLPp8PnjbmkCCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/l9XP7gaCaWGis4j2_HYtNslfm-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/Ymoot8Y-9qshSlLPp8PnjbmkCCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.208.0/21
Signature Algorithm: sha256WithRSAEncryption
51:6f:9b:e9:56:fc:95:5c:ff:07:00:aa:1f:3d:59:e5:2d:94:
d7:9d:81:a0:75:3a:c1:62:cf:a8:d6:cd:9b:dd:2e:55:98:9b:
af:da:3f:ce:d3:1b:fd:5b:11:4c:c9:67:cc:f9:a7:19:d3:01:
21:a0:74:73:9a:60:5c:25:64:29:91:a6:d8:08:1a:8d:df:82:
2c:4b:91:1d:a0:46:a5:9d:ba:c2:f6:c9:f3:90:6f:26:57:ae:
cb:ce:7c:50:22:7a:67:4e:93:4a:f8:07:21:48:37:6c:20:a0:
f0:f3:95:7d:52:16:03:c4:28:d7:7f:6e:95:cd:6d:c9:16:de:
7e:b7:ac:04:15:a3:d9:3a:17:13:66:b3:9d:46:13:aa:93:51:
4b:43:83:cb:3c:18:cb:ac:ea:c0:7c:93:db:5f:ab:a0:af:53:
1c:73:77:50:79:22:19:ae:03:fd:03:3b:e9:ca:ea:c1:50:83:
a7:22:45:34:69:ab:4d:cd:eb:4e:99:e3:b9:f3:56:c6:83:4c:
ee:97:6d:b1:14:60:24:c2:1a:d8:2f:92:41:21:01:51:80:cf:
60:2d:cf:76:dc:b0:e6:9f:ec:1e:45:58:ac:66:da:d3:a4:8f:
a0:f6:43:58:c1:0f:c7:94:6c:d0:44:6a:b6:7c:c1:a0:d5:e7:
02:a0:4d:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:06 2025 by rpki-client on console.sobornost.net