Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/WH7hIe3aqLwsGxdS2yA2jSgEKlg.roa
File: WH7hIe3aqLwsGxdS2yA2jSgEKlg.roa (raw, json)
Hash identifier: o4SnRsckiOOPScVnMMiXSTwKllUew15M7mNKsAZsd4A=
Subject key identifier: 58:7E:E1:21:ED:DA:A8:BC:2C:1B:17:52:DB:20:36:8D:28:04:2A:58
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0195EB389A9706697E4BBF226FF4171193C1
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/WH7hIe3aqLwsGxdS2yA2jSgEKlg.roa
Signing time: Mon 31 Mar 2025 08:01:50 +0000
ROA not before: Mon 31 Mar 2025 08:01:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212871
IP address blocks: 31.57.214.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:eb:38:9a:97:06:69:7e:4b:bf:22:6f:f4:17:11:93:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Mar 31 08:01:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=587ee121eddaa8bc2c1b1752db20368d28042a58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:8b:21:3f:74:09:1e:c0:c7:64:b0:14:80:5b:
26:5b:78:14:a6:31:4e:ef:42:3c:c7:0d:b9:93:64:
0b:01:fa:65:e3:cd:4f:aa:1d:fe:48:da:4c:ec:6b:
53:d5:0b:72:bf:0c:f3:af:e0:f6:be:60:84:69:b0:
fc:02:60:8a:8a:df:9f:73:e8:5f:8a:b7:13:7d:14:
b7:75:3f:4a:77:dd:1d:e4:61:d2:73:09:09:56:a3:
73:32:3b:07:83:ba:2b:80:2c:35:ed:50:18:fe:00:
02:59:eb:96:42:b9:06:5b:36:61:66:d5:ee:5a:08:
24:46:6e:af:32:a4:06:42:1e:ba:ca:c3:8e:80:1d:
65:82:54:59:31:c1:92:b0:c2:26:ce:e2:77:26:a8:
73:e5:f0:81:7f:d7:52:ac:31:e8:86:af:aa:c3:69:
b5:ea:6f:99:5f:bd:0b:30:a3:9e:f3:14:84:24:03:
7b:f9:92:89:d2:a0:1e:ba:7c:be:71:4d:4e:07:93:
2d:2a:d3:75:d7:1b:3f:58:25:3e:1e:51:6a:ec:b1:
b1:00:95:98:05:31:c7:e4:a7:a5:09:41:8a:03:86:
5f:e4:91:6f:ee:3c:31:01:44:66:bf:d3:7a:60:93:
cc:20:43:a7:51:eb:1f:97:7c:40:7e:68:d4:ce:52:
10:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:7E:E1:21:ED:DA:A8:BC:2C:1B:17:52:DB:20:36:8D:28:04:2A:58
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/WH7hIe3aqLwsGxdS2yA2jSgEKlg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.57.214.0/24
Signature Algorithm: sha256WithRSAEncryption
04:3a:ab:44:d4:14:ad:2f:c1:1b:92:1a:72:9a:0b:eb:3d:bd:
3a:b2:7f:f0:cf:5a:d7:ca:e1:86:8d:ee:8c:6b:d5:5a:e8:1f:
4b:10:25:2e:10:c6:2f:10:2a:da:0b:74:54:38:cb:10:cb:9d:
ca:fa:93:b7:87:ae:9e:39:08:cf:49:83:57:79:e9:2f:a2:52:
10:b7:9e:43:3b:cf:d4:f7:c4:2c:82:c4:ce:22:ab:23:f8:88:
98:36:c2:c9:98:4f:b1:c1:58:83:90:e2:b4:42:ac:57:49:6c:
94:9d:99:26:fd:6a:fb:1f:60:e9:b1:c5:f1:02:0b:fe:e8:a1:
05:bf:9b:2e:68:5e:fa:fd:44:23:0d:b1:a5:8e:4f:12:7f:24:
12:60:f1:cf:90:7f:21:9b:a0:82:d4:18:1d:6f:ee:20:15:6a:
58:b3:dd:a9:0a:99:ab:c3:ab:e7:50:be:9a:5f:63:4a:8a:15:
4a:b4:a8:ae:08:33:ab:10:26:17:fc:1b:15:9e:91:fe:a8:91:
ad:8d:ca:25:ee:a6:19:fe:17:29:4f:ae:33:61:f0:f7:ef:95:
c5:be:b0:3f:fa:dd:d6:cf:3a:c0:c5:74:3c:7b:06:a2:27:95:
c1:25:b2:9a:06:b3:5b:15:a0:d3:5c:47:0a:5b:d5:2f:9a:76:
aa:3b:09:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:26 2025 by rpki-client on console.sobornost.net