Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/02l3UdnmFD8L6C2sS1gUjkB5ucw.roa
File: 02l3UdnmFD8L6C2sS1gUjkB5ucw.roa (raw, json)
Hash identifier: QsQsXBqvm2htoInMV6VpVWJWic+91/OE8UWDxR68Vpo=
Subject key identifier: D3:69:77:51:D9:E6:14:3F:0B:E8:2D:AC:4B:58:14:8E:40:79:B9:CC
Certificate issuer: /CN=1eaf5c2e5edc197834d07f345962b0745bee66d7
Certificate serial: 01941FFA15248CCA7B6217871EECB7929916
Authority key identifier: 1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/02l3UdnmFD8L6C2sS1gUjkB5ucw.roa
Signing time: Wed 01 Jan 2025 03:47:50 +0000
ROA not before: Wed 01 Jan 2025 03:47:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48330
IP address blocks: 31.40.164.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:15:24:8c:ca:7b:62:17:87:1e:ec:b7:92:99:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eaf5c2e5edc197834d07f345962b0745bee66d7
Validity
Not Before: Jan 1 03:47:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d3697751d9e6143f0be82dac4b58148e4079b9cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:71:35:5a:05:e4:f2:88:5f:57:0f:60:b6:0b:
4d:3f:61:de:e2:b5:80:8f:6b:07:4e:8a:fa:36:a0:
7d:d5:09:fb:14:d5:de:3f:a7:ef:b6:75:b5:1a:f1:
27:31:6a:82:d0:a4:a6:40:e8:83:6c:f3:33:03:1f:
5b:fe:a0:d2:f7:35:fb:17:6a:1f:36:5c:c9:08:3f:
93:96:3a:9b:80:e8:e3:78:c7:82:c5:74:80:8c:96:
f2:6c:84:59:56:5c:db:cb:9e:0b:5b:a0:b4:6c:86:
d5:11:3a:8e:5a:be:1b:43:f0:e2:85:9f:bd:08:f9:
b8:ce:79:94:ba:3e:93:5d:e7:5b:ca:9d:3c:8a:c1:
dc:f3:bd:d0:8a:6f:e7:b8:7a:6a:70:58:c5:49:56:
64:06:18:b9:64:00:c3:22:a3:bb:c8:d2:07:09:99:
18:5c:b6:6b:28:a5:f4:d0:36:7e:ec:3b:1d:28:5c:
94:9b:25:01:13:ae:ff:16:43:b7:48:f1:68:c9:c7:
10:67:02:5c:62:9b:76:26:3f:1f:f5:98:bf:23:89:
92:df:31:1c:e9:5f:4d:31:f5:be:df:15:92:0c:3f:
d2:65:a8:d2:03:b2:cf:bc:f3:5f:06:63:fd:c4:6c:
cd:ec:c2:ed:2f:e1:91:f7:3f:61:2d:e5:88:61:67:
c0:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:69:77:51:D9:E6:14:3F:0B:E8:2D:AC:4B:58:14:8E:40:79:B9:CC
X509v3 Authority Key Identifier:
keyid:1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/02l3UdnmFD8L6C2sS1gUjkB5ucw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Hq9cLl7cGXg00H80WWKwdFvuZtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.164.0/24
Signature Algorithm: sha256WithRSAEncryption
99:16:45:5a:a4:66:0d:8c:0b:c6:7d:ae:79:6f:9e:c0:7f:a5:
56:f1:5b:51:24:1e:d3:31:91:e7:06:79:6d:7f:4e:ef:8a:31:
44:3d:2c:ce:fe:20:6c:58:86:0b:f6:b3:b3:f6:94:d3:5f:c4:
d3:cd:c2:b9:2f:97:86:fb:5c:40:82:a0:ed:7d:21:47:75:6c:
37:e0:a7:94:ec:d9:a7:a6:75:df:64:e3:86:f5:22:48:7a:1b:
82:00:f1:e7:95:e6:74:c5:0b:28:d3:cf:d9:0e:fd:0c:8d:bc:
34:d8:16:ac:69:89:45:b5:0d:e7:b1:df:c2:8c:88:b6:c9:c0:
03:b8:5f:bc:0c:94:fe:81:e7:24:0d:85:bd:48:6d:46:ca:de:
ab:bb:1d:02:a3:6c:5e:7d:2e:d2:f0:f3:34:23:a3:60:90:b4:
df:8c:6f:6e:ba:23:e3:7f:61:98:f0:64:ee:cb:49:77:c5:56:
e7:b8:36:a6:4f:b8:a6:18:01:4d:5c:fa:ab:f5:0d:0f:21:49:
bb:70:f8:3e:09:6e:4e:a2:65:fd:33:48:3a:94:37:ba:2d:ae:
65:5a:22:ec:c6:1e:5e:ef:60:7f:47:03:7b:64:ab:16:6a:e5:
61:ca:f6:fe:08:74:dc:3a:e7:66:c7:fa:67:ad:a1:7c:92:5e:
e2:b0:76:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:58 2025 by rpki-client on console.sobornost.net