Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/9kJpGl8daST8ddE3lq3upjOtSIU.roa
File: 9kJpGl8daST8ddE3lq3upjOtSIU.roa (raw, json)
Hash identifier: QZB8wuQwjf7TbgsM6I78uN564o0U7GC1AMqLwKkOJqw=
Subject key identifier: F6:42:69:1A:5F:1D:69:24:FC:75:D1:37:96:AD:EE:A6:33:AD:48:85
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0195EAA18B04EAD0F62EF68A70EB3167FBC2
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/9kJpGl8daST8ddE3lq3upjOtSIU.roa
Signing time: Mon 31 Mar 2025 05:16:50 +0000
ROA not before: Mon 31 Mar 2025 05:16:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42960
IP address blocks: 31.57.170.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:ea:a1:8b:04:ea:d0:f6:2e:f6:8a:70:eb:31:67:fb:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Mar 31 05:16:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f642691a5f1d6924fc75d13796adeea633ad4885
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:0f:ca:4e:36:4f:66:f8:51:40:37:90:26:a0:
68:8b:42:c9:aa:8e:79:b7:c5:f1:6d:d4:66:6f:19:
59:80:20:1c:6d:98:4b:7b:f0:c9:84:6a:eb:cb:fd:
8a:da:a1:1e:a4:a0:57:f3:05:d4:32:60:d7:0f:22:
c4:a0:7f:5f:63:49:6f:a1:47:51:35:7f:5f:ff:f8:
67:6d:70:ea:e0:f5:a9:63:6d:72:0e:ee:b1:07:13:
93:47:ca:bc:8e:97:cb:84:45:72:21:2c:21:ab:31:
f4:79:bc:9f:8a:5e:41:7f:d6:a4:61:4b:83:5c:81:
11:08:06:fd:d2:a8:53:72:87:10:f2:57:e2:da:36:
47:bc:21:59:23:ee:3c:ce:74:d7:e1:ed:b3:32:79:
c7:44:21:8c:77:e8:66:c6:a6:be:e8:91:4c:52:bd:
72:34:4f:e9:77:18:65:e9:8c:26:9a:b7:bc:cc:bb:
67:c4:64:64:85:d4:f5:fa:e1:f7:bd:93:67:e0:d6:
4a:82:e5:a1:b1:1e:c3:5a:1e:1e:05:38:dd:18:a1:
e8:32:6c:36:10:c3:bd:e7:89:6a:29:19:94:f4:22:
ab:33:57:41:a6:dc:4f:df:13:d7:0b:87:a3:59:19:
69:af:23:28:b8:1f:6c:15:a8:c7:cf:1b:a4:63:8c:
bd:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:42:69:1A:5F:1D:69:24:FC:75:D1:37:96:AD:EE:A6:33:AD:48:85
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/9kJpGl8daST8ddE3lq3upjOtSIU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.57.170.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:f0:3d:64:8b:0d:20:2e:94:ab:56:4f:f5:e5:62:e5:35:e1:
9b:92:bc:d4:ea:8a:01:7f:96:56:43:72:f6:63:a2:8e:8f:d2:
06:20:99:13:a9:de:0e:5d:87:7e:d1:e7:11:78:8b:b8:01:4c:
ee:8e:05:56:cb:ad:dc:1e:6a:c3:a7:20:d9:eb:83:3a:a7:1d:
b6:cb:4e:57:7c:10:1f:13:47:40:ae:e9:57:e2:13:34:cb:46:
f2:5c:c1:48:99:a2:5e:da:e7:0e:9f:f1:d3:01:76:b0:be:c8:
98:81:7f:c0:a7:ff:f8:aa:93:56:f3:44:31:21:26:c9:6e:0c:
0c:b5:ec:01:2e:8e:72:e1:78:43:f0:e1:0f:ae:f3:90:63:57:
7c:37:73:5b:a9:f6:84:cf:bc:fc:d2:91:6b:b2:e0:36:44:6c:
43:c9:f5:b4:02:c0:d3:b2:33:d3:2e:bb:67:5c:80:fb:fb:8d:
0f:c8:a6:da:2f:be:41:85:3a:6e:42:cd:16:a4:fc:e7:83:47:
b3:12:9a:a4:37:46:01:22:d5:6f:d8:a8:25:fe:87:e5:f6:a7:
a7:05:f4:e7:90:40:10:a3:79:af:47:f9:08:c9:ea:ca:5d:a9:
61:53:58:79:03:c0:84:6d:45:a4:37:32:11:be:6e:2e:e6:72:
84:65:6a:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:25 2025 by rpki-client on console.sobornost.net