Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/59369b-5981-4bbc-bdc2-7b551eb97363/1/gpkd7m2-GxTygfUm97-avwNBgiw.roa
File: gpkd7m2-GxTygfUm97-avwNBgiw.roa (raw, json)
Hash identifier: K+Ta8vPbxsu5KV7zBThTLQ4ETAw6SFugFfGGrm+t2M0=
Subject key identifier: 82:99:1D:EE:6D:BE:1B:14:F2:81:F5:26:F7:BF:9A:BF:03:41:82:2C
Certificate issuer: /CN=ce570223aac4013c7ad2c934500e6f430264fe4b
Certificate serial: 03ECDE1D
Authority key identifier: CE:57:02:23:AA:C4:01:3C:7A:D2:C9:34:50:0E:6F:43:02:64:FE:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zlcCI6rEATx60sk0UA5vQwJk_ks.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/59369b-5981-4bbc-bdc2-7b551eb97363/1/gpkd7m2-GxTygfUm97-avwNBgiw.roa
Signing time: Sat 01 Jan 2022 01:51:40 +0000
ROA not before: Sat 01 Jan 2022 01:51:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213183
IP address blocks: 194.42.98.0/23 maxlen: 23
194.42.98.0/24 maxlen: 24
194.42.99.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65855005 (0x3ecde1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce570223aac4013c7ad2c934500e6f430264fe4b
Validity
Not Before: Jan 1 01:51:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82991dee6dbe1b14f281f526f7bf9abf0341822c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:57:b1:d5:6f:5b:7d:7d:c5:22:fb:2c:25:41:
13:5a:85:5c:4d:44:e9:78:86:62:70:fd:95:4f:4b:
17:e1:8c:94:d5:90:cb:e5:10:76:83:32:7e:1a:a3:
97:79:72:33:48:41:45:d1:49:0d:75:f1:6e:87:0e:
21:c3:87:11:e8:1f:5d:eb:e8:59:01:e1:92:95:32:
a8:50:54:3a:92:8a:4f:d8:0a:09:f4:48:d4:f4:ca:
2b:13:bf:3d:e6:7b:6e:63:af:a7:b0:b9:07:71:6a:
a7:2e:5d:9e:50:16:c1:fd:a7:47:07:aa:8c:4c:42:
e8:4b:9a:5b:4e:c1:34:57:bd:8b:14:16:c7:4f:e8:
14:93:de:6c:7d:dc:fd:50:19:8f:d0:bc:7b:33:8b:
4b:23:86:5e:87:49:ca:2a:a2:a2:5b:a0:b1:f1:df:
e8:14:d1:80:d0:3d:d6:b8:d4:1e:97:ba:21:f3:3d:
3f:46:2f:98:3c:f7:14:54:20:96:8a:2e:36:e9:33:
b7:f5:b6:a7:a4:f9:f5:c3:ff:33:16:b6:f8:42:cb:
7e:4c:47:d2:fe:b2:0e:06:c8:e5:04:27:74:1b:e5:
3a:a3:55:dc:f6:fd:b5:f5:18:fe:80:e6:32:ed:2c:
49:38:53:ae:49:72:b9:3b:6f:13:b3:e0:54:b2:82:
ab:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:99:1D:EE:6D:BE:1B:14:F2:81:F5:26:F7:BF:9A:BF:03:41:82:2C
X509v3 Authority Key Identifier:
keyid:CE:57:02:23:AA:C4:01:3C:7A:D2:C9:34:50:0E:6F:43:02:64:FE:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zlcCI6rEATx60sk0UA5vQwJk_ks.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/59369b-5981-4bbc-bdc2-7b551eb97363/1/gpkd7m2-GxTygfUm97-avwNBgiw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/59369b-5981-4bbc-bdc2-7b551eb97363/1/zlcCI6rEATx60sk0UA5vQwJk_ks.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.42.98.0/23
Signature Algorithm: sha256WithRSAEncryption
2f:c7:f5:d7:fc:2f:6e:06:3c:bd:67:42:40:27:c6:68:9e:62:
5d:77:85:e1:59:dc:7d:ec:a2:d3:ff:29:d9:c8:c7:ca:77:c1:
28:f7:a5:d5:75:98:02:6b:ad:ff:03:5a:39:b1:b4:d8:f4:cd:
c7:35:ae:90:e9:21:2f:97:df:54:c7:8e:c5:3c:a8:f2:f8:25:
d3:02:11:15:d3:7c:44:ae:3e:de:bc:9d:3c:22:ca:79:17:72:
dd:39:e8:c3:f8:5c:67:b2:a4:ae:0a:b9:8a:f5:18:cc:fb:b0:
d7:7d:a4:e0:31:71:c1:a6:3b:0b:fc:fa:49:ed:c1:ac:8d:33:
90:a2:e5:97:2d:2d:7b:01:ad:a9:b6:d4:f2:61:4a:cf:31:76:
5a:d8:e3:37:63:d5:1b:bf:d5:70:40:25:c7:a2:fa:ac:7c:ef:
39:31:8d:0c:ba:d4:8a:17:f5:d7:34:41:39:b1:a7:db:91:44:
b3:ed:25:97:0f:45:27:f7:99:ce:c2:4b:14:4e:76:6b:b5:d3:
7a:92:aa:e2:7d:3f:2e:e0:64:29:11:d4:b3:04:92:90:bc:9c:
73:b5:4b:d5:77:b5:17:8b:33:c1:de:e8:44:d8:f5:de:87:20:
25:b2:b0:13:62:02:4a:d2:20:98:8b:49:97:4f:e0:57:e7:08:
64:d2:d7:ce
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA+zeHTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
ZTU3MDIyM2FhYzQwMTNjN2FkMmM5MzQ1MDBlNmY0MzAyNjRmZTRiMB4XDTIyMDEw
MTAxNTE0MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODI5OTFkZWU2ZGJl
MWIxNGYyODFmNTI2ZjdiZjlhYmYwMzQxODIyYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKNXsdVvW319xSL7LCVBE1qFXE1E6XiGYnD9lU9LF+GMlNWQ
y+UQdoMyfhqjl3lyM0hBRdFJDXXxbocOIcOHEegfXevoWQHhkpUyqFBUOpKKT9gK
CfRI1PTKKxO/PeZ7bmOvp7C5B3Fqpy5dnlAWwf2nRweqjExC6EuaW07BNFe9ixQW
x0/oFJPebH3c/VAZj9C8ezOLSyOGXodJyiqiolugsfHf6BTRgNA91rjUHpe6IfM9
P0YvmDz3FFQgloouNukzt/W2p6T59cP/Mxa2+ELLfkxH0v6yDgbI5QQndBvlOqNV
3Pb9tfUY/oDmMu0sSThTrklyuTtvE7PgVLKCqz0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSCmR3ubb4bFPKB9Sb3v5q/A0GCLDAfBgNVHSMEGDAWgBTOVwIjqsQBPHrS
yTRQDm9DAmT+SzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3psY0NJNnJFQVR4NjBzazBVQTV2UXdKa19rcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWMvNTkzNjliLTU5ODEtNGJiYy1iZGMyLTdiNTUxZWI5NzM2My8x
L2dwa2Q3bTItR3hUeWdmVW05Ny1hdndOQmdpdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWMv
NTkzNjliLTU5ODEtNGJiYy1iZGMyLTdiNTUxZWI5NzM2My8xL3psY0NJNnJFQVR4
NjBzazBVQTV2UXdKa19rcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcIqYjANBgkqhkiG9w0BAQsFAAOC
AQEAL8f11/wvbgY8vWdCQCfGaJ5iXXeF4Vncfeyi0/8p2cjHynfBKPel1XWYAmut
/wNaObG02PTNxzWukOkhL5ffVMeOxTyo8vgl0wIRFdN8RK4+3rydPCLKeRdy3Tno
w/hcZ7Kkrgq5ivUYzPuw132k4DFxwaY7C/z6Se3BrI0zkKLlly0tewGtqbbU8mFK
zzF2WtjjN2PVG7/VcEAlx6L6rHzvOTGNDLrUihf11zRBObGn25FEs+0llw9FJ/eZ
zsJLFE52a7XTepKq4n0/LuBkKRHUswSSkLycc7VL1Xe1F4szwd7oRNj13ocgJbKw
E2ICStIgmItJl0/gV+cIZNLXzg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:58 2024 by rpki-client on console-ams.rpki-client.org