Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/d5bf72-3115-4c71-a1bf-b06194d13c6b/1/m8QWxGjBijSQKviqiwGPDVQObsM.roa
File: m8QWxGjBijSQKviqiwGPDVQObsM.roa (raw, json)
Hash identifier: 0nynt3B6pt+z65wp6r175QdY0trgb8BxBMo+4Klvl7g=
Subject key identifier: 9B:C4:16:C4:68:C1:8A:34:90:2A:F8:AA:8B:01:8F:0D:54:0E:6E:C3
Certificate issuer: /CN=a939cc1621ee3010ae98e127bd254a7833fd2827
Certificate serial: 019427B549E9D85D104DB7BD2E78F6821787
Authority key identifier: A9:39:CC:16:21:EE:30:10:AE:98:E1:27:BD:25:4A:78:33:FD:28:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qTnMFiHuMBCumOEnvSVKeDP9KCc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/d5bf72-3115-4c71-a1bf-b06194d13c6b/1/m8QWxGjBijSQKviqiwGPDVQObsM.roa
Signing time: Thu 02 Jan 2025 15:49:39 +0000
ROA not before: Thu 02 Jan 2025 15:49:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42489
IP address blocks: 31.133.116.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:49:e9:d8:5d:10:4d:b7:bd:2e:78:f6:82:17:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a939cc1621ee3010ae98e127bd254a7833fd2827
Validity
Not Before: Jan 2 15:49:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9bc416c468c18a34902af8aa8b018f0d540e6ec3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:e9:45:46:e1:5d:15:eb:45:09:c9:fd:02:1e:
28:8a:26:15:75:19:89:5c:85:dd:d2:d7:ee:d6:71:
c5:b8:da:49:3a:97:9c:f1:07:2d:02:53:7c:cd:84:
8a:fe:99:5a:4e:a5:d7:bd:22:49:03:6a:b5:69:89:
ab:f1:cc:73:8e:f0:e1:cf:03:d3:db:96:9e:45:6d:
bf:0d:f8:c2:88:d4:a1:6b:dc:a5:51:1e:e7:fe:53:
34:ba:2e:6f:c6:8e:50:58:1e:19:8f:83:9c:9b:01:
5f:bc:55:e4:34:94:cf:a8:61:d1:02:48:79:d5:85:
65:7e:47:35:a7:17:e0:f5:e5:f4:50:9f:e3:90:be:
c0:f8:aa:e4:a0:c4:76:36:6b:06:59:d9:bd:8b:7d:
09:9c:ba:99:dd:9e:e0:28:ac:14:30:a5:d5:a5:af:
70:1a:63:1a:8c:7e:92:5b:48:16:0c:7d:c6:c9:bd:
fd:2b:9f:d8:fc:4d:70:c6:b5:dc:fc:69:1f:4f:8f:
7c:f6:4d:63:d2:73:b9:ec:d6:f7:29:12:53:6e:4b:
73:b1:8d:8e:f8:18:14:9f:7c:e2:89:9c:2f:d4:22:
c6:60:87:db:b1:9d:94:b1:8c:89:b8:48:b9:e7:3a:
d6:63:a2:f6:f6:d0:de:39:7e:e7:ea:ce:3a:b8:2e:
6b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:C4:16:C4:68:C1:8A:34:90:2A:F8:AA:8B:01:8F:0D:54:0E:6E:C3
X509v3 Authority Key Identifier:
keyid:A9:39:CC:16:21:EE:30:10:AE:98:E1:27:BD:25:4A:78:33:FD:28:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qTnMFiHuMBCumOEnvSVKeDP9KCc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/d5bf72-3115-4c71-a1bf-b06194d13c6b/1/m8QWxGjBijSQKviqiwGPDVQObsM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/d5bf72-3115-4c71-a1bf-b06194d13c6b/1/qTnMFiHuMBCumOEnvSVKeDP9KCc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.133.116.0/24
Signature Algorithm: sha256WithRSAEncryption
d2:17:c0:77:fd:7d:49:a1:5d:15:d0:07:8a:75:89:fa:d4:a3:
f8:ac:31:7f:17:18:52:c9:7b:cd:1d:7f:6b:89:35:4d:66:92:
c9:e0:13:77:a1:2f:53:28:9d:03:92:b7:ec:da:58:09:12:8d:
28:a6:cf:3c:1f:64:0c:b2:a3:0f:5a:d3:cd:b5:37:f3:dc:f4:
25:b4:76:2f:8c:fc:b1:3a:ff:f4:69:08:69:2b:77:2b:8c:24:
7d:5f:61:21:f2:02:cc:26:d3:95:42:5a:44:34:6a:87:5b:c1:
c8:d6:b3:c6:3c:26:69:99:69:1f:eb:ed:b0:58:76:ff:93:01:
3a:44:dc:0e:22:4f:b6:bb:06:b0:ad:92:a9:1c:c2:a1:01:f4:
05:67:9b:38:be:44:d5:f1:be:a4:77:9b:9a:3a:d0:fa:ad:1b:
3f:04:f6:9a:92:b1:f3:be:09:96:65:a1:f3:d9:e2:72:f1:f0:
a7:9d:53:c1:9f:8d:5c:bb:56:62:fb:98:84:66:ea:7c:0b:ce:
0a:3d:5d:92:56:c3:5a:71:61:b1:ee:7b:33:36:92:e9:9d:dc:
ca:c7:53:00:a3:58:1f:4a:12:4b:fe:6c:c4:be:dc:fc:e5:e2:
7e:52:b3:77:9c:6f:91:ae:d7:29:bf:9e:7f:91:4c:2b:d5:07:
7e:38:37:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:26 2025 by rpki-client on console.sobornost.net