Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f841d9-5505-4e3d-a2ff-f7c1899cd7fa/1/d43Bbm-jTlxIEQu_UfTFZQFzBcE.roa
File: d43Bbm-jTlxIEQu_UfTFZQFzBcE.roa (raw, json)
Hash identifier: UkexUnRIJprjhWor4Jilgkay/bVJfFqJkF7dBPx8pH8=
Subject key identifier: 77:8D:C1:6E:6F:A3:4E:5C:48:11:0B:BF:51:F4:C5:65:01:73:05:C1
Certificate issuer: /CN=cb45b6e12516a0fd5ebabe7a7811082f3a746397
Certificate serial: 019421B25043F8F259367BD6F21FE454F11F
Authority key identifier: CB:45:B6:E1:25:16:A0:FD:5E:BA:BE:7A:78:11:08:2F:3A:74:63:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y0W24SUWoP1eur56eBEILzp0Y5c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f841d9-5505-4e3d-a2ff-f7c1899cd7fa/1/d43Bbm-jTlxIEQu_UfTFZQFzBcE.roa
Signing time: Wed 01 Jan 2025 11:48:41 +0000
ROA not before: Wed 01 Jan 2025 11:48:41 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 56933
IP address blocks: 31.131.224.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:50:43:f8:f2:59:36:7b:d6:f2:1f:e4:54:f1:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb45b6e12516a0fd5ebabe7a7811082f3a746397
Validity
Not Before: Jan 1 11:48:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=778dc16e6fa34e5c48110bbf51f4c565017305c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:26:6a:00:b6:ae:b0:b4:bc:56:59:35:3b:d4:
86:8e:da:e0:22:d3:b3:94:40:cf:4f:ee:73:1b:be:
4b:3d:aa:d5:39:48:b4:42:26:6e:7b:f7:45:90:53:
dc:6b:c2:0b:ef:30:cc:4d:0f:69:d3:cd:2a:cf:a6:
f8:13:3e:63:17:52:52:90:d8:35:11:d1:2b:e8:cd:
92:0e:61:13:87:90:d8:15:b5:84:f3:83:de:de:c8:
e8:67:29:38:61:34:04:17:c2:fb:1c:41:f7:7d:8e:
11:e4:fa:b8:35:9a:ee:4d:3a:f5:da:ac:07:53:cd:
ca:26:75:16:69:c9:ea:f1:39:15:12:18:6d:1e:38:
d8:a0:bb:1e:02:15:a4:b5:75:69:41:1a:f4:84:41:
2e:03:e4:ea:61:59:1d:58:bd:43:3e:ae:84:1b:dc:
30:3a:7b:55:4d:5b:3c:27:e0:07:54:6d:bf:e0:37:
bd:fb:51:d4:21:13:2c:8f:9d:e7:f1:85:f5:28:3f:
d2:05:b8:aa:21:02:c8:b6:73:a0:c5:e1:ff:55:cf:
08:d0:9a:ae:16:80:37:53:b3:74:4b:41:41:ea:9a:
8c:37:2f:df:20:87:7d:0a:ea:57:0e:ef:93:2d:bc:
67:28:af:ac:07:e2:58:7c:33:3a:63:5c:ac:b2:a4:
2b:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:8D:C1:6E:6F:A3:4E:5C:48:11:0B:BF:51:F4:C5:65:01:73:05:C1
X509v3 Authority Key Identifier:
keyid:CB:45:B6:E1:25:16:A0:FD:5E:BA:BE:7A:78:11:08:2F:3A:74:63:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y0W24SUWoP1eur56eBEILzp0Y5c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f841d9-5505-4e3d-a2ff-f7c1899cd7fa/1/d43Bbm-jTlxIEQu_UfTFZQFzBcE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f841d9-5505-4e3d-a2ff-f7c1899cd7fa/1/y0W24SUWoP1eur56eBEILzp0Y5c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.131.224.0/20
Signature Algorithm: sha256WithRSAEncryption
8e:04:f0:dd:f3:41:cf:88:a1:33:a3:cd:07:c7:0a:8b:5a:40:
1d:c6:d2:22:8a:33:60:35:3c:d8:54:15:f9:1a:dd:73:32:4b:
ab:95:2d:dd:cc:ae:8a:bf:c3:90:62:3c:71:94:b2:64:e0:8d:
49:b7:6c:eb:9a:39:1d:e3:5d:e6:8e:d4:80:77:7e:48:23:80:
7e:6c:56:76:73:1d:05:88:f7:4d:3d:ba:2f:7d:15:c0:fe:d3:
4f:88:9a:61:dd:82:bb:a4:6a:34:22:7c:54:37:e5:88:c1:81:
9a:0f:4d:1f:2e:fa:9f:13:e3:20:f3:95:de:53:19:5f:d1:9f:
ea:6f:4c:fd:6c:df:cb:da:fa:34:bd:aa:e8:f1:99:2a:99:22:
9c:e5:a5:cf:2d:bf:1c:0c:b7:ed:3d:6d:5c:03:53:55:0a:5b:
7a:f0:4b:11:08:b0:0c:7c:ce:40:13:43:f3:43:ce:78:b5:a4:
de:40:21:2e:dc:90:6d:25:a7:ef:bc:f6:c5:4e:11:91:a9:3e:
45:69:6f:3c:a6:17:e7:77:89:a5:f0:e4:b6:9f:a9:b8:c3:84:
b7:a9:b3:57:f0:3c:a8:10:d5:d6:de:3a:58:4c:48:5f:58:c4:
41:64:25:d9:c9:00:0a:c4:72:cb:a7:d7:06:5e:59:28:27:ae:
79:4a:12:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:48 2025 by rpki-client on console.sobornost.net