Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/057ae8-0cb7-4e14-8a5b-189028f3396c/1/Ph3sC6aqh0tNsltd6hAZJC7Ft9U.roa
File: Ph3sC6aqh0tNsltd6hAZJC7Ft9U.roa (raw, json)
Hash identifier: qAtjPwqhqmQ2dOk999UdwCjCLH8v0wMpJPym5FDXFCs=
Subject key identifier: 3E:1D:EC:0B:A6:AA:87:4B:4D:B2:5B:5D:EA:10:19:24:2E:C5:B7:D5
Certificate issuer: /CN=6998500402c8215cf571073a495cdc80c742f2cc
Certificate serial: 019422FBFA2C3397EBD2264CADED536F6566
Authority key identifier: 69:98:50:04:02:C8:21:5C:F5:71:07:3A:49:5C:DC:80:C7:42:F2:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aZhQBALIIVz1cQc6SVzcgMdC8sw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/057ae8-0cb7-4e14-8a5b-189028f3396c/1/Ph3sC6aqh0tNsltd6hAZJC7Ft9U.roa
Signing time: Wed 01 Jan 2025 17:48:46 +0000
ROA not before: Wed 01 Jan 2025 17:48:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197784
IP address blocks: 31.13.8.0/21 maxlen: 21
185.152.228.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:fa:2c:33:97:eb:d2:26:4c:ad:ed:53:6f:65:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6998500402c8215cf571073a495cdc80c742f2cc
Validity
Not Before: Jan 1 17:48:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3e1dec0ba6aa874b4db25b5dea1019242ec5b7d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:ed:c5:19:04:75:13:db:72:94:e7:fc:00:84:
bc:5c:e2:d9:50:25:e2:3f:68:48:55:82:bb:ad:a6:
81:f9:92:22:19:0f:55:84:9f:c8:41:fe:eb:c8:e3:
8d:7a:42:f8:de:66:e3:40:f8:6a:ee:aa:0f:b6:35:
f5:02:e8:65:8f:b7:6c:2c:f2:d1:53:28:85:4a:c7:
dd:e9:6d:79:7a:f1:a8:4d:1e:7f:72:a0:4b:99:40:
e8:aa:ad:9a:17:e6:78:6b:69:84:de:6a:6e:cf:ed:
b6:15:6c:d2:70:fe:9d:01:4d:d3:30:e4:d0:15:87:
7e:9a:39:8a:b8:dd:d2:23:34:fb:23:c2:af:fd:3b:
f0:62:c2:01:83:d8:6d:a9:0e:ec:af:99:ae:8f:73:
d0:52:a2:42:4a:45:f0:d9:62:f6:bd:40:72:23:ce:
5d:74:44:29:00:58:7a:d6:30:5b:db:cb:2e:09:ee:
35:9f:05:3d:ef:53:04:c7:42:0d:2a:a6:b8:97:82:
6d:b7:67:28:9a:a4:30:38:f8:3b:2e:90:45:1c:bc:
6f:96:a9:74:65:80:be:4f:e2:a5:a1:5b:cb:0a:59:
55:31:9b:f0:c5:86:a8:21:4c:09:db:03:c4:00:64:
09:56:c0:e0:81:60:df:3f:c9:9a:e1:45:22:82:58:
24:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:1D:EC:0B:A6:AA:87:4B:4D:B2:5B:5D:EA:10:19:24:2E:C5:B7:D5
X509v3 Authority Key Identifier:
keyid:69:98:50:04:02:C8:21:5C:F5:71:07:3A:49:5C:DC:80:C7:42:F2:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aZhQBALIIVz1cQc6SVzcgMdC8sw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/057ae8-0cb7-4e14-8a5b-189028f3396c/1/Ph3sC6aqh0tNsltd6hAZJC7Ft9U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/057ae8-0cb7-4e14-8a5b-189028f3396c/1/aZhQBALIIVz1cQc6SVzcgMdC8sw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.8.0/21
185.152.228.0/22
Signature Algorithm: sha256WithRSAEncryption
00:8d:0f:54:32:c6:04:6b:73:88:37:26:c3:02:e4:f2:67:86:
4f:4d:f4:77:0d:04:1c:2f:72:ca:4e:2a:35:22:94:0f:4c:49:
bc:bc:9a:f9:26:36:7a:70:3e:f8:c7:91:6a:de:0e:f5:7c:d9:
ee:35:c8:e1:94:d8:ee:73:17:10:05:6c:ad:84:56:16:16:59:
c1:a8:ed:2c:3e:25:b9:47:a9:b8:70:dd:13:6e:98:8a:ad:3a:
6c:6a:03:06:2a:c3:b7:37:9e:fb:c9:26:9f:3b:1c:16:5b:4f:
c9:e1:b4:f7:a9:be:ca:8b:07:ee:6a:27:ec:37:77:b4:8a:52:
52:94:79:71:29:73:61:c6:e9:98:9a:6a:b3:73:2f:1e:52:f5:
22:92:22:cc:e9:8a:b6:2b:23:f5:da:b2:3e:18:f7:42:6e:20:
f5:9f:f4:34:41:25:99:53:2d:68:09:f5:35:ad:77:46:a0:b5:
0b:98:87:28:c4:e0:39:52:27:7b:b1:52:3a:dd:67:60:b5:6d:
31:2b:e7:11:0c:98:4e:10:1c:04:c7:79:a7:1a:ae:9d:d6:1f:
9e:6e:5b:24:7e:7f:47:33:a3:3d:79:5a:c6:50:23:c0:1d:70:
ed:0e:da:ad:fa:c3:84:a2:a1:ad:9f:9e:59:0c:91:3e:c8:5a:
66:3e:8a:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:11 2025 by rpki-client on console.sobornost.net