Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/XxL_bYKXSley3b8XRnOJS8mKu48.roa
File: XxL_bYKXSley3b8XRnOJS8mKu48.roa (raw, json)
Hash identifier: 3vYAkICj7YVoSgZet4Wu1TzM00p9m76fuBY0TZhBX7Q=
Subject key identifier: 5F:12:FF:6D:82:97:4A:57:B2:DD:BF:17:46:73:89:4B:C9:8A:BB:8F
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0194DB1C386BF97197E9A46B7B8128B2E4B6
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/XxL_bYKXSley3b8XRnOJS8mKu48.roa
Signing time: Thu 06 Feb 2025 11:54:07 +0000
ROA not before: Thu 06 Feb 2025 11:54:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215348
IP address blocks: 31.57.198.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:db:1c:38:6b:f9:71:97:e9:a4:6b:7b:81:28:b2:e4:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Feb 6 11:54:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5f12ff6d82974a57b2ddbf174673894bc98abb8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:fc:ce:60:08:01:c7:b4:59:f5:6f:b2:31:8b:
7b:ca:de:c9:4b:c7:af:8a:6a:d7:49:5a:9a:6b:52:
9e:ff:b4:f7:df:6d:c4:c5:c3:33:b3:7e:1b:df:f7:
aa:d1:54:86:bf:9d:8c:16:e7:21:a2:8f:54:e3:55:
ab:9b:b9:06:a9:b3:29:9c:63:9a:32:c0:fc:2f:b5:
2a:14:a8:b1:50:9d:a4:00:d2:63:2a:7b:5b:17:94:
8c:51:d0:69:c2:c5:ec:a3:b7:90:c3:ef:ac:54:99:
d5:96:cc:1e:78:1f:0c:36:5c:b4:9f:59:d0:59:14:
ec:d7:19:e1:f0:cb:bf:2b:5c:c5:11:c5:ac:e7:55:
94:3a:ad:c4:00:69:8a:ea:11:aa:2b:c8:2b:a3:fb:
42:22:a0:ab:d3:83:1c:b0:62:74:b8:0c:0e:08:af:
16:cf:72:36:42:9a:53:32:05:4f:f9:e0:d7:c9:81:
1e:fe:93:e9:6c:ed:65:87:3e:62:05:c9:19:46:28:
83:34:c2:92:7c:22:e0:c4:10:88:f6:f2:5a:74:bb:
96:27:94:70:51:95:57:ef:36:a9:7e:fb:3e:4c:8b:
07:18:e3:fc:e0:e3:9b:fe:aa:82:4c:82:4d:8e:77:
4e:a5:b8:ce:bd:71:a0:bd:a4:34:46:c5:86:cf:c0:
c8:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:12:FF:6D:82:97:4A:57:B2:DD:BF:17:46:73:89:4B:C9:8A:BB:8F
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/XxL_bYKXSley3b8XRnOJS8mKu48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.57.198.0/24
Signature Algorithm: sha256WithRSAEncryption
12:cc:ad:35:21:93:35:4d:c6:a0:f9:7f:e4:6d:2b:49:5a:6c:
99:96:52:37:74:f9:b0:1f:61:b7:eb:c5:fd:22:37:47:09:d5:
f0:bf:0f:f2:2b:6e:22:6f:29:0d:ed:6f:54:48:b6:aa:f3:c6:
d0:8a:bc:5a:d2:f0:e3:65:96:5b:f7:80:7e:ad:1e:f7:db:cc:
f6:c6:13:4e:66:54:be:f8:1c:e9:64:45:c0:22:91:f6:92:6a:
61:f6:89:20:cd:56:05:18:b2:ab:5b:27:06:66:d6:13:a2:b8:
81:37:bb:9c:74:3d:6c:0a:ef:18:5a:17:37:63:0c:aa:2b:77:
a4:59:45:48:53:c0:39:28:d0:12:d3:96:d3:a6:c1:83:a7:c1:
dc:12:61:93:0d:e8:aa:04:af:f4:27:b9:e6:3d:91:91:0e:02:
42:5a:3a:a0:fe:c5:3e:e2:27:ba:29:02:20:39:c1:f4:e4:ff:
02:95:a5:93:45:c8:65:51:cc:3d:ba:a3:0d:0f:8a:85:4f:be:
d3:1e:7e:61:4a:93:e8:4f:dd:06:b1:7f:11:c6:b7:20:5a:72:
6e:b5:71:8d:80:12:62:4e:f5:7c:bb:07:58:c0:27:2c:64:25:
1d:fc:52:a9:19:99:f9:fd:a4:6d:06:dd:a9:6f:5f:3c:65:69:
88:31:c2:c2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZTbHDhr+XGX6aRre4EosuS2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjUwMjA2MTE1NDA3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZjEyZmY2ZDgyOTc0YTU3YjJkZGJmMTc0NjczODk0YmM5OGFiYjhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvPzOYAgBx7RZ9W+yMYt7yt7JS8ev
imrXSVqaa1Ke/7T3323ExcMzs34b3/eq0VSGv52MFuchoo9U41Wrm7kGqbMpnGOa
MsD8L7UqFKixUJ2kANJjKntbF5SMUdBpwsXso7eQw++sVJnVlsweeB8MNly0n1nQ
WRTs1xnh8Mu/K1zFEcWs51WUOq3EAGmK6hGqK8gro/tCIqCr04McsGJ0uAwOCK8W
z3I2QppTMgVP+eDXyYEe/pPpbO1lhz5iBckZRiiDNMKSfCLgxBCI9vJadLuWJ5Rw
UZVX7zapfvs+TIsHGOP84OOb/qqCTIJNjndOpbjOvXGgvaQ0RsWGz8DI6QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF8S/22Cl0pXst2/F0ZziUvJiruPMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvWHhMX2JZS1hTbGV5M2I4WFJuT0pTOG1LdTQ4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAHznGMA0G
CSqGSIb3DQEBCwUAA4IBAQASzK01IZM1Tcag+X/kbStJWmyZllI3dPmwH2G368X9
IjdHCdXwvw/yK24ibykN7W9USLaq88bQirxa0vDjZZZb94B+rR7328z2xhNOZlS+
+BzpZEXAIpH2kmph9okgzVYFGLKrWycGZtYToriBN7ucdD1sCu8YWhc3YwyqK3ek
WUVIU8A5KNAS05bTpsGDp8HcEmGTDeiqBK/0J7nmPZGRDgJCWjqg/sU+4ie6KQIg
OcH05P8ClaWTRchlUcw9uqMND4qFT77THn5hSpPoT90GsX8RxrcgWnJutXGNgBJi
TvV8uwdYwCcsZCUd/FKpGZn5/aRtBt2pb188ZWmIMcLC
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:26 2025 by rpki-client on console.sobornost.net