Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/hMYGtlOjgoS5g3DL8Yf6u7yOrhU.roa
File: hMYGtlOjgoS5g3DL8Yf6u7yOrhU.roa (raw, json)
Hash identifier: tSNbr8W8boyzUh2Hdquj/ehUziLgrqsDFgbGvSROtrE=
Subject key identifier: 84:C6:06:B6:53:A3:82:84:B9:83:70:CB:F1:87:FA:BB:BC:8E:AE:15
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0195237805F2026BF144FD1D5D6D41549FF7
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/hMYGtlOjgoS5g3DL8Yf6u7yOrhU.roa
Signing time: Thu 20 Feb 2025 13:07:03 +0000
ROA not before: Thu 20 Feb 2025 13:07:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 23470
IP address blocks: 31.57.67.0/24 maxlen: 24
31.57.143.0/24 maxlen: 24
31.58.49.0/24 maxlen: 24
31.58.169.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:23:78:05:f2:02:6b:f1:44:fd:1d:5d:6d:41:54:9f:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Feb 20 13:07:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=84c606b653a38284b98370cbf187fabbbc8eae15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:09:57:68:8c:1b:98:14:bf:7d:96:d7:43:b1:
1b:07:f7:7f:d8:cf:12:a4:03:ed:71:e4:1c:36:a1:
9b:08:1f:1c:b7:99:ce:5d:38:17:d2:f6:da:63:61:
83:39:19:4e:74:54:35:8a:85:7c:28:9e:57:a9:33:
e6:90:4c:4a:0f:f8:99:f5:6d:c4:88:c4:2e:4c:0a:
03:5e:31:62:05:95:17:fc:c7:95:1f:45:e6:27:2e:
d3:69:29:a0:91:32:ce:e5:3f:31:45:ac:f0:c4:25:
05:e9:c8:49:57:74:83:42:3b:b9:3f:85:4e:0b:8b:
87:15:60:bf:8f:3a:49:c8:bd:a0:09:a1:a8:2f:41:
7c:e4:e0:a2:a4:38:bf:08:08:c5:50:2a:ba:2d:44:
35:a8:97:fb:84:e3:3a:21:a5:c7:0d:44:a2:66:e0:
4b:a1:79:2c:39:36:b1:f9:f2:5b:c9:bf:2c:f8:d8:
7a:c3:96:d1:df:29:64:db:59:10:b3:02:3d:b4:59:
04:5b:78:68:ae:5d:0f:e5:b6:ca:d6:f9:a6:19:5b:
30:49:6d:66:26:16:ac:72:98:84:50:ed:73:fe:21:
c4:d4:24:c0:e5:23:18:c2:66:47:ff:b0:49:ba:16:
ba:8c:8a:d6:07:41:fd:b0:a5:9b:0b:17:f8:74:c6:
2d:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:C6:06:B6:53:A3:82:84:B9:83:70:CB:F1:87:FA:BB:BC:8E:AE:15
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/hMYGtlOjgoS5g3DL8Yf6u7yOrhU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.57.67.0/24
31.57.143.0/24
31.58.49.0/24
31.58.169.0/24
Signature Algorithm: sha256WithRSAEncryption
40:35:44:6e:32:a2:a6:73:2a:a3:3c:56:02:db:c3:ba:18:b7:
b5:f7:f9:27:55:49:7b:8c:71:b8:8d:9e:0d:55:34:2c:59:dd:
cd:5e:0b:47:d5:f4:dc:e2:f0:16:ab:97:f4:a7:00:76:55:20:
eb:23:c9:67:1f:b8:f4:72:1f:c1:ff:53:4a:3e:0c:86:ea:11:
21:43:20:8b:a1:48:8e:19:f6:7d:fd:91:68:9d:52:45:59:b1:
88:78:9b:1e:f7:1a:bd:f2:de:1d:7e:50:06:e0:b9:de:2d:29:
b9:c6:21:00:1a:a6:d5:3a:3b:4f:22:d8:45:21:98:55:61:00:
f4:92:b1:10:67:ef:92:22:6a:93:5e:5f:7f:75:75:a6:e2:79:
ab:00:87:52:f6:51:12:37:75:35:13:e3:68:bf:89:07:c5:f9:
70:24:bd:fa:4b:d1:09:cb:d0:02:f8:36:28:ad:0e:d5:77:c5:
0d:c0:37:b3:f5:50:bb:00:a4:62:be:cf:89:1c:9f:77:0a:7b:
96:97:e6:c4:44:c8:aa:9e:3f:bd:a8:1c:13:0c:aa:bb:e3:da:
6b:66:56:78:0c:fb:72:95:2e:b4:1b:bb:6e:bd:a2:a1:14:d3:
18:e0:81:e2:4d:49:9e:a0:98:96:ee:52:61:68:e4:9f:ac:47:
d4:4e:2b:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:51:18 2025 by rpki-client on console.sobornost.net