Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/GrEOTQkByobllXG9Cr4dof5DVFU.roa
File: GrEOTQkByobllXG9Cr4dof5DVFU.roa (raw, json)
Hash identifier: ZgU5u4AUADDrzjMFaGCx+7LGWYYgeU6vXWKocG/7ulg=
Subject key identifier: 1A:B1:0E:4D:09:01:CA:86:E5:95:71:BD:0A:BE:1D:A1:FE:43:54:55
Certificate issuer: /CN=8e747481f2c98fbb70dca8d65c23de4fca37583d
Certificate serial: 01856ED4BFEF628F2BEDE9FD4C5864DEED42
Authority key identifier: 8E:74:74:81:F2:C9:8F:BB:70:DC:A8:D6:5C:23:DE:4F:CA:37:58:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jnR0gfLJj7tw3KjWXCPeT8o3WD0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/GrEOTQkByobllXG9Cr4dof5DVFU.roa
Signing time: Sun 01 Jan 2023 19:35:14 +0000
ROA not before: Sun 01 Jan 2023 19:35:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207710
IP address blocks: 185.177.78.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:bf:ef:62:8f:2b:ed:e9:fd:4c:58:64:de:ed:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e747481f2c98fbb70dca8d65c23de4fca37583d
Validity
Not Before: Jan 1 19:35:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1ab10e4d0901ca86e59571bd0abe1da1fe435455
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:c0:ba:89:69:4c:09:49:9f:23:5d:b5:ce:4d:
b9:91:7a:22:3c:6f:c9:47:93:d0:ee:32:aa:bf:3e:
e5:ab:61:89:8c:65:f3:b6:6c:cd:42:ed:fd:80:26:
50:66:8e:43:d4:8e:1c:95:64:83:8f:b8:88:aa:08:
1d:f5:b0:01:0c:d8:e0:40:f1:91:72:01:e5:05:e8:
dd:d7:71:29:ce:d1:4f:eb:d2:08:60:53:6f:20:6f:
94:10:36:d6:3e:8e:6e:77:eb:41:bd:8f:e3:54:23:
8c:44:a4:a0:34:7b:e7:e6:cc:87:db:93:55:eb:c8:
b0:9a:1a:b3:1f:4c:b5:12:42:a0:48:be:3b:a5:66:
89:f3:20:25:49:eb:d4:1b:79:ee:8c:e8:43:14:7b:
36:bf:b7:18:e5:05:ec:dc:b8:35:43:03:2c:37:a9:
f2:cb:44:19:cb:34:bc:a2:7a:35:6c:5d:52:5a:4e:
92:f8:dd:46:df:89:31:a9:84:af:dc:35:37:08:48:
6d:ce:ab:c2:4d:15:1e:64:f1:78:1f:14:81:93:a7:
75:52:80:eb:2c:fd:2d:26:29:16:3a:03:97:e9:ae:
7a:b2:70:00:7a:c9:b9:4e:da:51:37:8f:f7:ba:f1:
b3:01:42:9d:80:b5:1d:10:85:0f:94:40:3d:fc:f5:
bd:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:B1:0E:4D:09:01:CA:86:E5:95:71:BD:0A:BE:1D:A1:FE:43:54:55
X509v3 Authority Key Identifier:
keyid:8E:74:74:81:F2:C9:8F:BB:70:DC:A8:D6:5C:23:DE:4F:CA:37:58:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jnR0gfLJj7tw3KjWXCPeT8o3WD0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/GrEOTQkByobllXG9Cr4dof5DVFU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/jnR0gfLJj7tw3KjWXCPeT8o3WD0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.78.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:51:8d:75:fd:dd:40:fa:44:a2:3a:9d:8e:95:2d:d0:ea:ba:
65:8d:bb:fd:6d:9b:1b:2b:f8:49:81:ad:37:b6:a0:ec:45:b0:
a6:cc:83:95:8a:b2:49:39:45:2d:58:a7:7b:fe:61:af:a5:d9:
16:ad:a3:79:1b:b0:63:11:af:da:4d:b8:a3:93:d0:1a:7f:e0:
45:2f:45:02:91:14:5d:88:9b:0d:08:72:95:24:7a:36:28:36:
ab:70:ea:99:c0:f0:23:ed:c0:cb:a8:b2:46:d9:08:58:ff:42:
53:2e:ff:eb:df:7a:67:6a:75:51:4a:bc:cc:17:71:d1:b1:44:
24:b2:bc:5c:20:91:71:7a:ce:6b:ed:46:74:63:90:fd:51:b2:
ff:29:2c:e6:ff:a5:e6:02:9b:d4:e2:cc:a8:6d:c6:2e:92:c9:
aa:e2:56:94:b0:6c:9f:35:eb:c4:ad:92:8e:6a:5e:15:a7:c4:
f7:46:79:c9:0a:4a:b1:fe:07:76:0b:6f:08:df:3e:b2:29:20:
93:01:1b:fd:34:1d:99:2e:ab:0f:ff:9a:3f:2e:8e:8d:fd:83:
15:05:85:96:a3:e1:39:c9:59:f7:5a:e0:70:b7:04:e1:c9:bc:
ad:72:91:85:89:b0:c1:8b:05:dc:91:11:55:58:e4:02:f7:9e:
46:5e:ff:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:44 2024 by rpki-client on console-ams.rpki-client.org