Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/vCflLMx_V986blYmQXbzXttPM6Y.roa
File: vCflLMx_V986blYmQXbzXttPM6Y.roa (raw, json)
Hash identifier: 4AWZ2XlYvyQnfq0suLYmaQ4e3hwFckiYu1Kg5cC3b9w=
Subject key identifier: BC:27:E5:2C:CC:7F:57:DF:3A:6E:56:26:41:76:F3:5E:DB:4F:33:A6
Certificate issuer: /CN=1eaf5c2e5edc197834d07f345962b0745bee66d7
Certificate serial: 019570DA752193F53B13692C33A9AF8EF1DC
Authority key identifier: 1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/vCflLMx_V986blYmQXbzXttPM6Y.roa
Signing time: Fri 07 Mar 2025 13:45:19 +0000
ROA not before: Fri 07 Mar 2025 13:45:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59823
IP address blocks: 31.40.128.0/24 maxlen: 24
31.40.129.0/24 maxlen: 24
31.40.191.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:70:da:75:21:93:f5:3b:13:69:2c:33:a9:af:8e:f1:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eaf5c2e5edc197834d07f345962b0745bee66d7
Validity
Not Before: Mar 7 13:45:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bc27e52ccc7f57df3a6e56264176f35edb4f33a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:db:50:b7:de:3a:89:88:d2:6f:91:32:e5:51:
bc:5b:a5:3c:a1:2d:af:c0:70:b4:c7:c0:63:50:33:
54:61:2c:c1:2f:a4:16:1c:d3:2a:8b:34:c3:1c:ff:
39:13:f2:0d:a0:f1:86:5d:d2:64:f1:00:d9:52:ab:
0b:a6:8c:fe:ad:a9:ba:40:42:6d:50:2f:a3:49:69:
d1:7c:ee:3c:1b:67:9d:e8:99:48:48:1b:da:42:7b:
41:df:74:9e:e7:42:15:03:11:1c:33:14:db:06:e5:
32:82:f6:73:20:0d:42:4c:ae:f5:56:9b:b6:dc:9b:
49:56:61:cf:3a:cf:f7:b7:52:df:75:aa:7f:04:11:
61:2e:98:d5:62:5f:b4:50:ba:de:37:df:4a:2f:fb:
5b:0f:e8:af:c8:29:27:e3:f2:f0:f6:f0:b8:91:86:
22:f2:94:63:66:76:a1:a2:c6:c0:46:e2:f3:29:50:
60:22:de:d5:ff:72:a2:5a:50:be:24:48:f2:46:fc:
dd:5e:12:74:4b:1e:1f:de:98:38:1f:6a:5a:c2:a6:
51:43:cb:c6:a0:3f:bf:fd:9b:93:32:78:86:8a:4c:
77:9b:67:9b:a8:02:1f:f7:b4:46:b4:f3:19:09:6d:
01:60:e4:fb:35:d5:7a:ff:f6:55:cf:49:f6:74:e9:
f2:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:27:E5:2C:CC:7F:57:DF:3A:6E:56:26:41:76:F3:5E:DB:4F:33:A6
X509v3 Authority Key Identifier:
keyid:1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/vCflLMx_V986blYmQXbzXttPM6Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Hq9cLl7cGXg00H80WWKwdFvuZtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.128.0/23
31.40.191.0/24
Signature Algorithm: sha256WithRSAEncryption
64:d6:10:f2:2b:ff:4f:f4:5b:e6:9d:2c:20:fb:df:d4:dd:60:
6f:70:96:cc:5d:21:4d:15:23:e9:e1:23:cd:6c:56:07:4f:e9:
22:6f:d3:bd:c2:07:5d:48:6d:5d:39:93:5c:2e:35:6c:52:9b:
2e:d4:17:75:b9:75:8d:0c:83:64:35:55:32:a2:d0:7c:33:1f:
1e:1b:90:95:5f:47:17:ec:1d:b5:e8:8c:10:0c:b7:91:83:2c:
6e:92:6e:b6:1e:ee:75:2f:e8:f9:6b:ee:a9:e3:6d:b9:2e:15:
08:92:36:97:2e:ac:05:df:97:2f:80:87:37:0c:70:0b:6f:81:
74:2c:b7:73:82:a7:76:75:ea:b4:3f:3d:c4:97:d8:a9:5a:f2:
52:b5:61:7f:c9:50:dd:4f:1d:a4:fb:76:bb:c6:08:67:9b:0a:
a7:e7:bf:63:d2:12:3b:3e:ec:22:9b:1d:44:83:81:d1:f0:d9:
a4:77:a2:f3:7d:a7:55:9f:a6:1d:c4:82:b6:5d:96:ce:c1:4d:
fa:9f:a4:95:d4:75:df:ed:d0:86:06:93:71:aa:3b:ec:11:ea:
fd:8c:a9:93:2b:9e:53:44:65:23:b9:bb:62:2d:c1:3a:f0:97:
e3:4b:19:d6:a8:db:98:a7:d7:a4:29:c5:cd:12:da:14:9c:08:
34:eb:80:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:58 2025 by rpki-client on console.sobornost.net