Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/da43f3-8c2f-485a-ab9e-1cd2e2d14597/1/GBEma5NGE8hCn4rw99LM7W8tmKo.roa
File: GBEma5NGE8hCn4rw99LM7W8tmKo.roa (raw, json)
Hash identifier: 1wl38q5eiA6/4XBUzBCob+IABIxzeYDejhSJRkQLPaI=
Subject key identifier: 18:11:26:6B:93:46:13:C8:42:9F:8A:F0:F7:D2:CC:ED:6F:2D:98:AA
Certificate issuer: /CN=95eccf8b46745bc256821529e58703b98e6b6567
Certificate serial: 01856BD385F1D6459D89716ACC1575CF7C15
Authority key identifier: 95:EC:CF:8B:46:74:5B:C2:56:82:15:29:E5:87:03:B9:8E:6B:65:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lezPi0Z0W8JWghUp5YcDuY5rZWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/da43f3-8c2f-485a-ab9e-1cd2e2d14597/1/GBEma5NGE8hCn4rw99LM7W8tmKo.roa
Signing time: Sun 01 Jan 2023 05:35:02 +0000
ROA not before: Sun 01 Jan 2023 05:35:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58061
IP address blocks: 176.56.38.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:d3:85:f1:d6:45:9d:89:71:6a:cc:15:75:cf:7c:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95eccf8b46745bc256821529e58703b98e6b6567
Validity
Not Before: Jan 1 05:35:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1811266b934613c8429f8af0f7d2cced6f2d98aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:c4:73:95:42:c2:88:78:7c:0e:2f:f0:bf:2c:
87:71:cc:58:5c:59:77:db:7c:3c:b7:87:c0:9d:62:
31:0b:0d:32:8a:04:a5:c4:da:c8:7a:1f:6f:7c:dd:
2b:d4:a0:3d:2e:f7:fa:8f:72:20:88:65:cf:ed:59:
aa:6f:50:b7:f8:c2:41:c1:73:d8:7b:55:1a:8a:45:
ba:85:e0:fd:1f:7c:49:20:6f:88:b3:71:2a:b0:99:
65:11:4d:7a:20:49:87:9a:e3:a9:e1:53:86:e9:0f:
bd:9d:22:12:8a:5f:ec:dd:08:43:c9:46:4f:bb:ed:
40:ec:aa:de:53:98:0e:06:00:d7:ac:36:bd:1f:2b:
28:a2:66:d4:fe:ac:3a:71:5d:1a:a4:55:81:48:53:
9a:ba:b2:2f:1d:a1:13:40:b3:c3:0d:f5:3f:ed:09:
91:8f:9f:4d:06:32:15:38:f8:d2:3c:3c:6b:be:63:
32:be:2a:60:2e:dd:ee:d9:37:97:f5:37:fc:03:5d:
60:fc:d8:bf:4b:84:64:b3:08:b0:11:f2:1a:ba:73:
99:f5:40:8c:08:5e:14:7b:f0:97:ad:d8:5d:57:ee:
6b:fa:4d:b7:7f:01:bf:8d:f4:29:b8:81:d9:23:06:
f2:7e:63:22:e7:f8:1c:16:d7:8e:01:71:b2:c4:15:
14:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:11:26:6B:93:46:13:C8:42:9F:8A:F0:F7:D2:CC:ED:6F:2D:98:AA
X509v3 Authority Key Identifier:
keyid:95:EC:CF:8B:46:74:5B:C2:56:82:15:29:E5:87:03:B9:8E:6B:65:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lezPi0Z0W8JWghUp5YcDuY5rZWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/da43f3-8c2f-485a-ab9e-1cd2e2d14597/1/GBEma5NGE8hCn4rw99LM7W8tmKo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/da43f3-8c2f-485a-ab9e-1cd2e2d14597/1/lezPi0Z0W8JWghUp5YcDuY5rZWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.56.38.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:d2:49:ba:7a:6d:8c:c9:1a:42:08:e5:fd:64:be:2f:f8:fb:
83:d0:3e:4d:4e:3f:67:73:40:9c:52:86:2e:51:56:0e:23:b8:
dd:c8:88:82:57:a4:47:6a:2d:3e:5d:70:3c:e6:5e:39:2b:cf:
52:ee:20:ed:78:38:b6:b9:78:53:29:fa:d6:62:d8:31:16:bc:
67:ff:e4:ea:73:3c:3c:08:c2:68:10:80:f8:34:41:ad:62:de:
b5:3a:83:5a:ff:59:5e:32:7f:58:26:2b:f0:67:dc:1d:59:eb:
71:a4:bc:86:88:7e:2c:40:eb:0f:f4:eb:94:70:39:fc:b1:aa:
21:09:25:50:7c:90:9f:2b:78:75:73:1a:a5:d8:48:4b:62:f2:
28:69:63:0b:6b:e4:38:38:5b:a8:ef:3d:fb:4d:0a:8a:ed:fc:
63:f2:ba:57:a6:b7:e7:64:87:3e:cf:bb:6f:4b:7e:eb:ad:a3:
99:30:c8:21:59:68:14:37:dc:37:5b:8e:2a:e8:db:54:5f:31:
4e:fc:58:a1:79:27:7f:b5:f2:1e:a7:01:6e:3c:d8:1b:d3:3d:
75:21:36:82:8f:47:6d:c5:fe:cd:f2:b5:fc:37:ad:9d:bf:f7:
f6:97:e0:3d:c5:a7:4e:52:7f:62:ff:38:4f:0b:6f:29:41:7e:
47:c1:66:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:23:45 2025 by rpki-client