Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/0cb2f9-8ef9-4eeb-962a-d8b4e0d0d6d5/1/Fv3sE2iVskV-mDIZ6tC2kUlGAaA.roa
File: Fv3sE2iVskV-mDIZ6tC2kUlGAaA.roa (raw, json)
Hash identifier: H3F5XuYvkLtvyyyPb3WNBs3Jib+ztvm2aFiyN79ql3U=
Subject key identifier: 16:FD:EC:13:68:95:B2:45:7E:98:32:19:EA:D0:B6:91:49:46:01:A0
Certificate issuer: /CN=dc3884021d1b02e8c16b555743dfeb9da8e48e31
Certificate serial: 0194266C13DE6F27B14C774B4B6D1441EF8B
Authority key identifier: DC:38:84:02:1D:1B:02:E8:C1:6B:55:57:43:DF:EB:9D:A8:E4:8E:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3DiEAh0bAujBa1VXQ9_rnajkjjE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/0cb2f9-8ef9-4eeb-962a-d8b4e0d0d6d5/1/Fv3sE2iVskV-mDIZ6tC2kUlGAaA.roa
Signing time: Thu 02 Jan 2025 09:50:04 +0000
ROA not before: Thu 02 Jan 2025 09:50:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213340
IP address blocks: 31.31.171.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6c:13:de:6f:27:b1:4c:77:4b:4b:6d:14:41:ef:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc3884021d1b02e8c16b555743dfeb9da8e48e31
Validity
Not Before: Jan 2 09:50:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=16fdec136895b2457e983219ead0b691494601a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:89:d7:7f:3a:3e:42:65:83:b9:96:2e:0a:7d:
31:17:4a:ef:85:92:71:aa:17:a7:d1:08:79:48:bf:
a3:d9:be:04:54:7d:64:2a:b5:03:cc:a2:e6:ce:2d:
7d:04:f1:98:f3:cf:6b:cb:2f:44:a6:a0:2d:34:b5:
87:de:63:e4:82:36:92:08:88:ad:d6:64:b4:0c:27:
03:17:6f:08:68:95:8e:a8:38:80:44:f8:72:20:2c:
d7:c5:5e:b8:87:29:3d:38:4d:cf:c9:83:4c:e7:60:
e8:ac:77:fd:14:40:e8:49:e9:45:0b:31:af:d4:e6:
ad:93:6b:07:84:a9:6d:4c:d4:22:e0:8a:2f:64:da:
c9:8f:8d:c6:d3:06:1c:5a:88:d9:c6:32:71:e1:99:
cb:2a:55:c2:ba:66:cb:90:2c:44:9f:db:84:b4:fe:
a3:e7:23:df:ce:39:38:d1:bb:39:4e:27:00:06:1c:
3e:53:1e:59:7b:83:ff:16:9e:24:ea:38:e7:71:4e:
54:b3:8b:6b:dc:f8:a4:3c:cc:9a:5c:fd:1a:50:57:
df:74:d7:ef:5a:61:cb:0e:df:39:4d:7c:63:c8:8c:
93:f4:ca:19:45:a0:d5:1c:a0:28:a5:c2:ee:89:2f:
cc:6d:d0:ce:c7:e6:26:ba:09:04:87:11:80:0f:65:
dd:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:FD:EC:13:68:95:B2:45:7E:98:32:19:EA:D0:B6:91:49:46:01:A0
X509v3 Authority Key Identifier:
keyid:DC:38:84:02:1D:1B:02:E8:C1:6B:55:57:43:DF:EB:9D:A8:E4:8E:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3DiEAh0bAujBa1VXQ9_rnajkjjE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0cb2f9-8ef9-4eeb-962a-d8b4e0d0d6d5/1/Fv3sE2iVskV-mDIZ6tC2kUlGAaA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0cb2f9-8ef9-4eeb-962a-d8b4e0d0d6d5/1/3DiEAh0bAujBa1VXQ9_rnajkjjE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.31.171.0/24
Signature Algorithm: sha256WithRSAEncryption
91:92:1f:73:80:75:e2:0f:93:a0:f4:35:34:20:a5:1b:30:5f:
14:b6:ce:c2:af:7c:b4:f8:f5:d4:8f:04:62:4d:fc:c3:41:60:
b4:14:6d:b0:e1:1a:c8:9e:0d:b2:36:f3:bb:bf:83:fa:6d:4a:
fc:ea:27:2f:13:3c:09:ec:7d:8f:eb:ef:51:df:cd:57:e9:bd:
b3:a8:dd:c7:6d:fc:c1:04:24:1a:1d:15:31:7e:2c:81:26:af:
cc:b1:04:4c:03:69:67:83:6f:d5:bb:73:76:63:9a:d8:a5:07:
16:9c:f0:ff:4d:8e:54:0b:36:63:8b:50:b2:eb:59:64:56:6c:
0a:be:6b:82:42:89:bd:37:5d:cf:65:a2:9f:96:74:4e:aa:29:
fe:2f:42:ed:2d:18:dd:94:cf:e6:dc:be:a6:7e:06:1f:ef:a2:
e1:9b:c0:6a:01:e2:fe:a4:de:39:fe:a8:4c:eb:d5:95:98:58:
2c:d5:14:bd:64:80:29:02:f2:09:03:7e:bb:6c:d6:1c:e8:5f:
8e:7d:ec:4f:d8:73:10:f4:4c:95:f2:12:d9:ad:14:1a:68:6f:
34:5b:d5:50:0c:5d:04:16:ad:1c:3c:2b:c1:71:13:9f:c6:d1:
9e:2d:09:ce:69:4e:7f:d0:4f:bc:55:a7:fa:f6:ca:fa:b6:ac:
26:1d:93:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:59 2025 by rpki-client on console.sobornost.net