Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/65cc20-0dfb-4180-9ac1-c8302e82ea22/1/rIOjntCgXCMEFBCmZfSli4kv3C4.roa
File: rIOjntCgXCMEFBCmZfSli4kv3C4.roa (raw, json)
Hash identifier: Sob7vOHpDIg5S5aLpP/Jh9rqHAHaROOpp1y2KA8hGzc=
Subject key identifier: AC:83:A3:9E:D0:A0:5C:23:04:14:10:A6:65:F4:A5:8B:89:2F:DC:2E
Certificate issuer: /CN=5fc90518df70b13d706bfe237aa5a76926a576d1
Certificate serial: 0194258EF55002F42F88F795E9A4B0DFD7AC
Authority key identifier: 5F:C9:05:18:DF:70:B1:3D:70:6B:FE:23:7A:A5:A7:69:26:A5:76:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X8kFGN9wsT1wa_4jeqWnaSaldtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/65cc20-0dfb-4180-9ac1-c8302e82ea22/1/rIOjntCgXCMEFBCmZfSli4kv3C4.roa
Signing time: Thu 02 Jan 2025 05:48:33 +0000
ROA not before: Thu 02 Jan 2025 05:48:33 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48014
IP address blocks: 31.41.33.0/24 maxlen: 24
2a12:4040::/29 maxlen: 29
2a12:4045::/32 maxlen: 32
2a12:4047::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8e:f5:50:02:f4:2f:88:f7:95:e9:a4:b0:df:d7:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fc90518df70b13d706bfe237aa5a76926a576d1
Validity
Not Before: Jan 2 05:48:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ac83a39ed0a05c23041410a665f4a58b892fdc2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:4e:6f:2f:4b:e8:66:03:1f:41:fa:98:52:76:
05:92:9e:2e:66:c9:e3:56:d0:90:56:14:69:f3:d7:
90:38:fe:25:86:d8:5e:c3:61:26:8e:aa:2f:bc:b2:
21:f0:64:35:62:dc:0e:cd:de:6c:36:76:31:3a:67:
09:2f:1d:02:59:83:cf:ac:b4:66:f4:66:d0:cc:4d:
bb:13:97:14:eb:f8:05:fc:3d:0c:8b:e6:5e:08:11:
59:6d:32:ca:18:68:9d:79:1e:d0:6d:b1:d4:a0:d2:
2b:04:c1:1a:63:7f:f6:ed:ad:72:a1:65:99:7b:21:
ed:6f:b4:9c:90:21:d9:24:20:0e:cc:3d:7a:00:fa:
44:b6:00:3b:8a:bf:a8:da:47:19:61:6d:d9:b4:bc:
21:d9:c5:39:94:a9:0b:3c:9b:0b:f3:e9:fc:cc:7f:
f9:46:ef:e2:3d:5e:ac:c2:ce:59:87:98:13:db:e4:
b8:8f:c0:0d:2f:b5:81:35:8a:a4:c3:99:a9:25:d5:
61:ad:12:44:e1:d1:1d:fb:fe:f3:95:1f:c4:73:1e:
32:29:7a:cd:2c:b4:4a:fc:87:fc:8a:dc:f9:f1:49:
b5:af:fe:41:4d:fd:96:80:4f:3a:6a:e0:db:2a:9c:
c6:19:c4:40:b3:86:a7:95:6a:09:11:31:19:18:81:
8d:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:83:A3:9E:D0:A0:5C:23:04:14:10:A6:65:F4:A5:8B:89:2F:DC:2E
X509v3 Authority Key Identifier:
keyid:5F:C9:05:18:DF:70:B1:3D:70:6B:FE:23:7A:A5:A7:69:26:A5:76:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X8kFGN9wsT1wa_4jeqWnaSaldtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/65cc20-0dfb-4180-9ac1-c8302e82ea22/1/rIOjntCgXCMEFBCmZfSli4kv3C4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/65cc20-0dfb-4180-9ac1-c8302e82ea22/1/X8kFGN9wsT1wa_4jeqWnaSaldtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.41.33.0/24
IPv6:
2a12:4040::/29
Signature Algorithm: sha256WithRSAEncryption
4e:cd:46:ea:c0:a6:b7:9b:64:00:de:d8:e0:e2:28:16:4a:41:
8c:dc:69:2f:91:93:46:ed:32:b8:8d:ac:b2:3e:3a:72:c9:2b:
f2:fc:86:16:36:9d:bd:02:ca:53:b2:20:18:a3:4b:23:26:47:
29:e9:2b:91:c4:31:05:0a:07:46:49:67:f8:b7:d5:bf:91:85:
ad:9a:ef:1b:77:4b:0e:44:de:4a:5e:1a:35:39:cb:0e:d0:8b:
a2:82:03:76:13:8a:44:41:ab:02:18:da:b7:8f:e1:86:98:36:
d0:4e:1c:49:91:97:79:9c:41:93:4f:ea:22:95:df:ef:de:ed:
29:69:8d:d0:b2:53:bd:46:80:ae:f9:87:5c:5d:9d:cb:03:60:
40:82:ac:27:f3:79:1b:42:3f:60:bf:1c:fc:db:ee:23:3f:a4:
b2:96:d6:14:2c:b8:bf:43:3f:c4:15:87:c0:72:87:8d:f3:03:
10:5b:dc:e8:41:2d:52:fb:eb:35:af:d4:5f:59:f9:1a:57:42:
1a:db:91:db:1d:d5:1b:35:37:b8:8a:9c:34:2a:63:3b:b4:02:
f1:e9:c5:a2:0c:87:01:2e:70:ec:d2:2a:79:3c:b2:4a:c0:40:
6f:02:c6:42:3c:07:47:9c:d9:f7:75:f0:e8:b2:1e:29:02:27:
4d:22:96:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:54:40 2025 by rpki-client on console.sobornost.net