Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/2038aa-7de5-4581-933a-d1a0c320c28a/1/G6e-0gZzStxM-j5rJMyC8eAAyTo.roa
File: G6e-0gZzStxM-j5rJMyC8eAAyTo.roa (raw, json)
Hash identifier: uP4TyDZUhn0cHzXMuW70vBgxD2NTww77L4L6xMhrGz4=
Subject key identifier: 1B:A7:BE:D2:06:73:4A:DC:4C:FA:3E:6B:24:CC:82:F1:E0:00:C9:3A
Certificate issuer: /CN=8023d3d35800ef3cb2a56c38bf914397381e0ff1
Certificate serial: 018570F0D0D60D17F6F89A96D3BEF4D03A4B
Authority key identifier: 80:23:D3:D3:58:00:EF:3C:B2:A5:6C:38:BF:91:43:97:38:1E:0F:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gCPT01gA7zyypWw4v5FDlzgeD_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/2038aa-7de5-4581-933a-d1a0c320c28a/1/G6e-0gZzStxM-j5rJMyC8eAAyTo.roa
Signing time: Mon 02 Jan 2023 05:25:08 +0000
ROA not before: Mon 02 Jan 2023 05:25:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25459
IP address blocks: 178.18.128.0/20 maxlen: 24
37.247.32.0/20 maxlen: 24
94.103.144.0/20 maxlen: 24
77.243.224.0/20 maxlen: 24
2a02:990::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:d0:d6:0d:17:f6:f8:9a:96:d3:be:f4:d0:3a:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8023d3d35800ef3cb2a56c38bf914397381e0ff1
Validity
Not Before: Jan 2 05:25:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1ba7bed206734adc4cfa3e6b24cc82f1e000c93a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a1:4a:ab:97:dc:af:ad:e5:9c:76:13:fd:1d:
a5:f8:4b:cf:6f:01:ab:3d:e3:b9:08:7c:fa:5d:27:
33:7c:c9:77:47:11:2e:ea:e2:c9:2a:30:3a:f0:0c:
ac:e8:2c:83:0f:c5:96:56:22:ea:d5:66:ac:29:d4:
ed:d2:c0:54:81:ce:85:02:2b:98:71:ba:50:ea:73:
55:f4:10:97:90:67:a4:02:1a:59:74:18:f4:7c:b0:
89:b4:80:0e:a2:5e:f9:0a:94:00:e0:e8:94:8d:5f:
91:4e:d1:73:d0:50:d5:a2:8d:1f:84:4c:9e:5f:d2:
b9:a5:79:c4:70:1f:25:93:db:27:b0:8d:28:25:96:
24:8d:91:e5:d2:e4:1e:0a:06:5d:db:49:b2:0e:df:
e3:af:66:10:28:76:89:a5:f8:6d:73:19:f0:bf:e9:
05:c5:6d:99:f3:f6:3f:1a:66:80:3f:09:c3:0f:e4:
ae:30:38:51:e0:e3:5f:89:f9:9c:58:0b:13:9e:0f:
21:49:82:67:37:bc:8a:2e:79:95:7e:92:b2:8b:73:
3e:a6:f5:d0:d8:71:8d:41:38:62:8e:0a:47:9c:c8:
6d:96:fe:27:4d:66:58:c9:09:36:5a:3c:81:e3:2a:
d1:e9:c4:e6:3a:fe:a4:6c:4f:65:cf:07:6c:ca:6c:
4d:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:A7:BE:D2:06:73:4A:DC:4C:FA:3E:6B:24:CC:82:F1:E0:00:C9:3A
X509v3 Authority Key Identifier:
keyid:80:23:D3:D3:58:00:EF:3C:B2:A5:6C:38:BF:91:43:97:38:1E:0F:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gCPT01gA7zyypWw4v5FDlzgeD_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/2038aa-7de5-4581-933a-d1a0c320c28a/1/G6e-0gZzStxM-j5rJMyC8eAAyTo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/2038aa-7de5-4581-933a-d1a0c320c28a/1/gCPT01gA7zyypWw4v5FDlzgeD_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.247.32.0/20
77.243.224.0/20
94.103.144.0/20
178.18.128.0/20
IPv6:
2a02:990::/32
Signature Algorithm: sha256WithRSAEncryption
ce:cd:c8:6b:36:ce:e0:53:d6:e1:fd:88:93:12:7d:55:32:ee:
23:80:b8:df:4c:9d:6e:d2:2f:9f:93:7c:37:f0:89:83:37:33:
ec:e4:5e:45:ec:05:83:1d:53:e5:f7:3e:d4:94:bb:55:27:dd:
ad:b4:5c:0e:10:69:30:05:b1:39:13:ba:5d:37:fb:0c:e7:f8:
2a:ff:36:3b:7a:3d:d5:75:3a:9b:41:3d:4f:a5:6d:26:87:f4:
46:f8:40:a7:9e:79:78:43:a3:38:51:5d:41:0d:60:ae:f7:2a:
be:70:d8:87:93:8c:7d:fa:df:77:2b:6c:a3:4e:9d:d4:be:ca:
b7:39:05:3f:c0:89:b9:76:22:a5:8d:34:e8:b8:3d:54:11:4a:
dc:18:ca:58:54:4f:75:2f:54:bd:60:cd:de:42:ee:57:60:5d:
5b:30:5c:58:25:c0:0b:60:1a:f1:f4:c5:6d:88:f5:5a:b7:b5:
0c:d7:25:67:93:6a:f3:64:25:20:b0:d4:b6:62:db:da:65:38:
d6:c2:24:8a:d0:3d:6b:54:ac:51:a3:6b:74:05:1c:fd:d7:87:
b4:95:f0:a8:d1:f6:4d:38:bc:b1:a2:62:ae:aa:cb:2d:20:ab:
83:e5:85:3a:f4:c1:d2:1a:15:eb:00:00:3f:49:cf:e1:28:c5:
b4:69:4e:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:01 2024 by rpki-client on console-fra.rpki-client.org