Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/b2064b-be09-43d9-b087-a4e991b0f144/1/rCEPMjGu5dMMBXkuJaxe2se2R0U.roa
File: rCEPMjGu5dMMBXkuJaxe2se2R0U.roa (raw, json)
Hash identifier: RyS4C53Wz4c+6Gzz512GBJ/uZaj5Sg3AxTdwiKVWifk=
Subject key identifier: AC:21:0F:32:31:AE:E5:D3:0C:05:79:2E:25:AC:5E:DA:C7:B6:47:45
Certificate issuer: /CN=02930f8c688c04d17433a2b9c7249bc625bce316
Certificate serial: 019424455181ED7D6708642ABAD8FDD60B69
Authority key identifier: 02:93:0F:8C:68:8C:04:D1:74:33:A2:B9:C7:24:9B:C6:25:BC:E3:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ApMPjGiMBNF0M6K5xySbxiW84xY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/b2064b-be09-43d9-b087-a4e991b0f144/1/rCEPMjGu5dMMBXkuJaxe2se2R0U.roa
Signing time: Wed 01 Jan 2025 23:48:30 +0000
ROA not before: Wed 01 Jan 2025 23:48:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57849
IP address blocks: 31.47.197.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:51:81:ed:7d:67:08:64:2a:ba:d8:fd:d6:0b:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02930f8c688c04d17433a2b9c7249bc625bce316
Validity
Not Before: Jan 1 23:48:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ac210f3231aee5d30c05792e25ac5edac7b64745
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e9:09:a6:98:37:65:7a:78:e3:2f:90:e5:74:
19:c0:9f:74:29:94:51:4b:44:8d:fa:3a:a1:71:73:
6d:bd:8c:8a:57:ca:d0:7e:84:0c:9e:23:b8:43:8d:
8f:7d:33:0b:0d:11:ce:4d:de:03:9e:8d:48:43:3a:
71:70:4d:11:a0:82:3f:02:19:1c:6d:18:c7:cd:9e:
62:c2:05:ea:d0:d7:17:d5:31:e7:b5:a8:ab:42:2c:
75:09:a3:5d:5e:cb:e4:9b:b3:d4:23:13:80:12:99:
90:6d:25:69:f8:36:09:82:87:db:5b:27:99:c2:2a:
5b:8b:f3:8a:7f:13:ec:e3:8e:46:5d:bd:33:5a:ff:
9a:cc:2e:93:43:9a:b4:9c:69:4d:d1:0d:ef:8e:54:
5f:45:f7:52:73:62:03:b1:f8:15:73:55:6a:ff:01:
d6:d5:00:fa:b1:81:fe:1a:a5:a2:2c:8d:d5:20:b3:
26:3a:8c:76:7d:05:83:78:af:c9:c9:04:f6:6d:21:
b5:f4:5d:32:62:33:f7:2a:f3:ad:c4:f7:55:a8:13:
09:ca:02:4d:12:1d:53:3a:00:63:f1:33:65:52:0c:
30:60:dc:c4:f1:9a:18:fe:98:8b:eb:a2:93:32:99:
ee:5d:b4:e6:12:99:f4:10:5b:f0:64:62:a2:0c:f2:
69:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:21:0F:32:31:AE:E5:D3:0C:05:79:2E:25:AC:5E:DA:C7:B6:47:45
X509v3 Authority Key Identifier:
keyid:02:93:0F:8C:68:8C:04:D1:74:33:A2:B9:C7:24:9B:C6:25:BC:E3:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ApMPjGiMBNF0M6K5xySbxiW84xY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/b2064b-be09-43d9-b087-a4e991b0f144/1/rCEPMjGu5dMMBXkuJaxe2se2R0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/b2064b-be09-43d9-b087-a4e991b0f144/1/ApMPjGiMBNF0M6K5xySbxiW84xY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.47.197.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:b6:24:53:08:68:bc:9e:2d:e9:a3:17:78:73:f7:86:22:81:
45:e3:55:d1:b5:70:5c:df:eb:68:78:3e:c0:d8:e3:e3:7b:21:
37:a0:ba:41:92:d5:35:2a:ec:d5:18:c4:27:fb:75:cb:6a:5d:
7e:74:48:de:e6:fa:9c:44:89:45:a9:21:db:18:0f:ef:93:6c:
df:77:a2:94:ca:e9:7a:eb:eb:a3:82:7b:28:35:76:75:dc:22:
70:96:c0:e6:4d:be:95:d9:e8:a6:01:4b:2e:c6:de:fa:d9:e5:
a6:1c:e9:2e:7d:b1:f1:57:d0:f5:3f:9d:13:c2:c0:28:ae:07:
4a:00:43:a7:95:b3:91:9b:21:17:ae:d3:8a:cc:da:70:a3:a6:
e4:08:a6:2c:5c:d8:70:5e:8e:32:16:5b:5f:72:f7:c2:04:5b:
ae:af:1d:05:fb:2a:74:eb:2d:cd:ac:59:f6:64:99:56:37:cb:
7d:1c:fc:71:10:84:21:55:45:24:cd:b2:ea:23:a8:7b:7f:ec:
f6:03:44:8c:39:55:f6:ea:e4:7f:78:ce:20:be:84:e2:70:55:
f7:81:84:06:19:4f:ba:0a:cf:2a:39:8c:ee:25:f7:6f:37:80:
1a:4e:28:31:d9:e4:64:cc:3a:b3:c8:9c:c3:07:44:e3:f4:8e:
e5:d5:d5:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:10 2025 by rpki-client on console.sobornost.net