Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/gMTV2ndnjnFlkoja4MlshCrJC9w.roa
File: gMTV2ndnjnFlkoja4MlshCrJC9w.roa (raw, json)
Hash identifier: Pnpe+9ECYiWypXL9d5A8vm6plG4Zw9U8pVYZS7dXpq8=
Subject key identifier: 80:C4:D5:DA:77:67:8E:71:65:92:88:DA:E0:C9:6C:84:2A:C9:0B:DC
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 019424B3023D636A4CDDF5EE03C2AC263D97
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/gMTV2ndnjnFlkoja4MlshCrJC9w.roa
Signing time: Thu 02 Jan 2025 01:48:18 +0000
ROA not before: Thu 02 Jan 2025 01:48:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213022
IP address blocks: 159.148.103.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:02:3d:63:6a:4c:dd:f5:ee:03:c2:ac:26:3d:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 2 01:48:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=80c4d5da77678e71659288dae0c96c842ac90bdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:4a:b4:4f:20:05:c7:7e:2d:af:32:1e:48:2d:
96:76:48:0f:1c:a4:be:bd:86:8a:f9:49:90:51:ef:
8f:6e:1c:e5:c2:98:a6:03:82:48:81:cd:b1:37:64:
b5:97:05:88:da:4e:87:ee:dc:e7:9c:85:c7:b4:8a:
47:8d:a9:04:20:62:f6:a6:ec:9d:65:8f:31:42:94:
84:bb:f7:ce:35:46:b9:d0:f6:d0:65:b7:eb:93:df:
96:53:5c:b0:d4:48:ff:a1:f4:3c:d6:cd:c6:99:00:
77:08:d4:d5:ab:e0:45:85:cf:78:53:38:67:01:64:
69:81:5b:d4:29:f8:df:6f:1c:e2:19:3c:5a:01:0b:
56:ce:b0:76:91:b9:28:0f:80:84:6d:41:67:05:ee:
98:14:0f:48:17:74:00:9e:96:ef:79:de:75:3f:db:
a4:4f:e1:82:fd:16:c7:c0:4f:64:0e:c7:c4:73:95:
53:19:17:22:bc:7a:ce:c9:7a:87:dc:08:5f:6e:1b:
53:47:74:16:ff:10:d0:31:a5:e0:b0:11:7e:93:51:
77:c4:98:de:1e:c5:72:4b:5d:70:1e:d5:97:e2:4e:
08:d0:6d:a4:b1:d2:fc:d8:64:d2:fc:ee:d3:b1:9e:
d8:db:92:6e:ce:f5:90:e1:ed:5e:6c:b8:a6:48:71:
19:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:C4:D5:DA:77:67:8E:71:65:92:88:DA:E0:C9:6C:84:2A:C9:0B:DC
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/gMTV2ndnjnFlkoja4MlshCrJC9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.148.103.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:dc:07:80:3d:97:26:d9:bc:0c:67:96:19:7a:1b:66:a3:96:
0c:26:1c:da:6f:cf:cd:60:9e:fc:fd:03:da:ac:67:06:0b:7f:
04:b0:c0:7d:54:e6:a0:da:ec:be:ac:f9:c7:3f:cc:59:f8:59:
e7:4e:79:1e:0a:4a:ad:3f:a3:e4:e4:0c:af:a0:27:90:bd:99:
fc:d2:df:2f:50:81:c0:67:9a:8e:1e:0f:de:60:0e:ba:e4:26:
f2:d5:98:41:b4:e6:83:7a:fa:40:73:c0:22:16:89:c3:6d:78:
59:a0:21:4f:8e:18:c9:7a:40:59:ce:b5:3e:b4:70:d7:32:75:
dc:eb:cf:38:b6:21:ad:30:e1:65:c4:65:2d:8d:db:50:8c:a8:
8e:1c:a9:24:4a:17:ca:c0:58:42:1d:65:43:24:88:fa:a2:ac:
96:4e:28:14:2f:8c:94:f3:43:17:be:b2:de:fc:e7:57:b2:b9:
8b:06:94:bf:3a:02:34:a6:a4:87:88:de:e4:3f:a3:6f:c5:83:
ab:7f:72:30:a1:45:36:48:9c:c1:75:fc:36:93:0b:41:36:ab:
ea:57:1b:2e:e6:be:ce:8e:7a:3e:10:e6:4d:ef:12:ca:3b:61:
a3:cc:d4:15:9e:76:f2:24:fd:24:af:54:c7:15:89:5a:27:19:
06:8e:ff:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:17:22 2025 by rpki-client