Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/GPi9BP7PLilbYqM8-naFUdzga3c.roa
File: GPi9BP7PLilbYqM8-naFUdzga3c.roa (raw, json)
Hash identifier: AXD3yklxQOZxSfL1ppnXzjEGS9WXfohoDJQAmsM/LaM=
Subject key identifier: 18:F8:BD:04:FE:CF:2E:29:5B:62:A3:3C:FA:76:85:51:DC:E0:6B:77
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 01850592BB7E26C99A4E692ECF431968D507
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/GPi9BP7PLilbYqM8-naFUdzga3c.roa
Signing time: Mon 12 Dec 2022 09:03:00 +0000
ROA not before: Mon 12 Dec 2022 09:03:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 91.198.123.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:05:92:bb:7e:26:c9:9a:4e:69:2e:cf:43:19:68:d5:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Dec 12 09:03:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=18f8bd04fecf2e295b62a33cfa768551dce06b77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:3d:68:5f:c7:d2:0c:51:bc:c0:99:03:43:c8:
6a:34:3d:46:17:e2:02:ad:63:98:58:dd:e8:70:a1:
5b:46:42:0e:65:d3:cf:10:d2:70:0a:31:25:17:5d:
36:56:34:cd:b2:9c:40:c3:bc:dc:91:2f:6f:b8:5a:
fd:e9:c4:a6:85:13:c1:8a:20:70:e9:7e:af:a1:4a:
7d:f6:06:a0:00:4b:b1:89:a6:d9:f2:72:0a:18:0d:
04:2a:c3:25:90:ac:a5:9f:80:c5:e8:0c:fd:fa:77:
11:f9:0c:64:87:b4:62:8d:c0:72:02:b8:0d:5d:c7:
11:9d:b1:9d:be:92:04:9d:f1:d6:b2:52:02:ec:52:
df:52:49:31:ce:62:48:7e:c2:04:50:fd:31:a7:cf:
b7:a0:eb:4b:a5:50:e4:f5:24:01:bb:bc:ac:9c:7e:
da:bb:43:b0:e4:b2:bc:45:fd:17:dc:2d:b7:32:8e:
dc:32:4b:a3:77:f2:13:20:ab:e5:77:2e:92:1b:af:
e7:08:70:92:67:47:8d:94:62:60:cd:9e:f4:48:3b:
d6:58:c8:72:c4:fb:1b:ec:f0:94:68:e5:b3:3d:21:
c4:f5:68:73:bd:88:2d:65:f8:40:47:52:a2:65:5e:
e1:04:2a:fd:b6:69:a0:9c:7e:2b:7b:01:10:0b:71:
86:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:F8:BD:04:FE:CF:2E:29:5B:62:A3:3C:FA:76:85:51:DC:E0:6B:77
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/GPi9BP7PLilbYqM8-naFUdzga3c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.123.0/24
Signature Algorithm: sha256WithRSAEncryption
06:54:5c:be:50:de:d2:b7:29:71:63:06:55:9f:32:aa:f2:f6:
46:64:c2:63:94:96:93:20:61:f0:33:c6:27:a8:ad:de:fd:29:
f6:ac:fc:94:52:04:9b:2d:b3:55:7d:b3:09:fe:90:83:00:d5:
45:5b:3e:5d:a8:a8:86:41:9c:80:cc:08:7b:70:a8:42:2f:7e:
1b:c6:a2:f9:54:aa:2d:55:94:3d:57:63:1c:94:3a:b7:d6:94:
bb:c1:87:c8:77:28:df:b2:f0:63:ee:c5:72:e2:eb:6f:78:69:
40:b7:78:c5:48:b4:ca:4c:05:f4:23:a9:df:33:5c:5d:6c:b7:
73:7b:d0:dd:de:dc:af:57:f2:27:a6:96:93:e5:22:76:af:40:
c8:01:1e:2e:af:5b:96:b8:ba:00:c6:a1:51:f3:ed:a7:79:dd:
2a:10:69:af:20:03:6c:e4:e1:88:4a:29:f6:af:3e:0a:ab:5b:
3c:48:9b:f9:65:76:87:8b:19:f9:c2:15:36:3e:64:2c:63:a8:
a1:a5:fa:c0:77:94:61:41:70:17:ae:bc:34:c5:e5:d8:d8:22:
e5:37:fc:3a:bd:69:90:a1:58:72:6a:a3:a2:e0:67:0d:5f:f8:
20:f0:44:11:0f:60:06:75:c9:75:fd:43:2d:52:c7:98:21:28:
09:b4:29:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:16:19 2025 by rpki-client