Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/RGD4J9Y6yTEHY1igLZ-uvYBnces.roa
File: RGD4J9Y6yTEHY1igLZ-uvYBnces.roa (raw, json)
Hash identifier: sduGng/1h4H+ay2Q9Sc4d8D+jCRUFIhG2cnDQt00BLw=
Subject key identifier: 44:60:F8:27:D6:3A:C9:31:07:63:58:A0:2D:9F:AE:BD:80:67:71:EB
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 0194221F70F1E69CDF0D66278A0B4FFB0CAC
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/RGD4J9Y6yTEHY1igLZ-uvYBnces.roa
Signing time: Wed 01 Jan 2025 13:47:53 +0000
ROA not before: Wed 01 Jan 2025 13:47:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 396856
IP address blocks: 188.64.108.0/22 maxlen: 24
188.64.110.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:70:f1:e6:9c:df:0d:66:27:8a:0b:4f:fb:0c:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Jan 1 13:47:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4460f827d63ac931076358a02d9faebd806771eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:1d:ba:9e:f8:65:df:27:34:bf:a1:64:44:34:
0d:ba:8f:53:20:98:c7:f9:cb:9f:bf:e6:a2:12:c5:
5f:66:49:a6:e1:2f:77:4d:62:eb:de:bc:5a:7a:47:
65:62:b0:ad:48:81:34:0e:f4:43:9e:03:d7:2f:96:
7e:a3:31:a8:5a:66:8c:66:7e:17:04:14:6a:5f:6c:
ba:14:3a:16:0c:22:75:08:7f:6d:2a:28:06:f2:50:
7f:1b:29:90:ba:b6:39:77:92:9e:57:b5:ab:77:b9:
6b:00:7d:67:22:cb:e1:56:06:91:04:93:b6:d2:c6:
eb:ce:f8:a1:bf:fe:26:1a:00:e5:75:9a:db:ec:1b:
f7:56:02:81:c1:0b:ca:49:28:8b:1a:0b:8f:74:9c:
26:2c:a7:dd:6e:56:0d:c6:f5:ed:e3:ed:4b:e9:8c:
10:88:aa:58:c7:a9:21:3f:7d:ff:1c:6e:41:16:9c:
15:c5:96:d4:ed:ed:5c:06:82:dc:ec:24:c5:0f:1f:
4a:19:6b:b4:8d:bd:8e:98:14:ce:c6:52:3d:93:71:
84:bf:53:4a:5d:6f:73:34:ce:48:31:3e:23:84:46:
04:6a:80:be:81:37:27:e5:31:dc:c5:11:ba:b7:b5:
39:70:0a:f6:f0:fd:f4:1e:45:64:97:fd:51:9d:dc:
69:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:60:F8:27:D6:3A:C9:31:07:63:58:A0:2D:9F:AE:BD:80:67:71:EB
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/RGD4J9Y6yTEHY1igLZ-uvYBnces.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.64.108.0/22
Signature Algorithm: sha256WithRSAEncryption
82:58:52:df:b5:c4:1c:3d:4c:c3:32:63:65:f0:59:33:af:01:
bb:76:de:d3:79:24:12:5b:d6:10:64:94:92:06:77:ba:9f:b8:
fc:8d:08:5c:36:0f:a6:81:1f:5a:28:05:2b:82:28:8b:0c:82:
e6:75:46:f9:97:df:f4:80:35:3e:dc:ec:68:3e:b1:cb:d2:cf:
2a:7b:2c:48:d8:79:e0:21:2a:a9:fc:1d:ff:d7:64:e8:04:5e:
30:46:d8:4b:6d:e9:eb:db:6c:46:47:5c:65:df:09:ca:44:86:
dc:74:60:cd:1b:61:4c:5d:3e:24:1f:c5:9b:da:7b:52:4b:cb:
a6:2e:51:5a:32:dc:00:4e:86:fd:06:16:60:e6:ba:71:af:05:
2b:89:e2:dd:fb:94:64:c6:dc:12:7d:bb:b1:a7:fe:14:5f:8c:
f4:53:11:fb:65:17:04:26:d0:f3:24:5c:0d:ee:f9:3a:9f:ec:
c1:c5:15:9e:1b:34:43:f6:06:37:93:e1:69:15:06:27:ff:7f:
3c:be:a0:e1:35:17:a1:95:e6:ea:22:34:c8:03:7c:65:a6:d7:
ea:46:73:3a:90:71:b9:48:10:d5:3e:81:b7:ff:6b:c3:b1:25:
f3:d3:26:63:2e:ce:8a:00:b2:92:03:85:b8:08:dc:2b:14:d9:
11:3c:e4:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 18:25:04 2025 by rpki-client