Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/47f768-f7a0-4500-bca7-dd919589a27f/1/GJLulx8wP2ulqTapHTQ9szJDHhw.roa
File: GJLulx8wP2ulqTapHTQ9szJDHhw.roa (raw, json)
Hash identifier: ubjYDxvQ7Hx/00xNoaLnrYDjFJYK1+JUDmJtlwPxm6Q=
Subject key identifier: 18:92:EE:97:1F:30:3F:6B:A5:A9:36:A9:1D:34:3D:B3:32:43:1E:1C
Certificate issuer: /CN=bf8c64350a0dfd68a043b221f1860b480ae352de
Certificate serial: 0184D2511B1CA5DD80DC8C45ED1893290283
Authority key identifier: BF:8C:64:35:0A:0D:FD:68:A0:43:B2:21:F1:86:0B:48:0A:E3:52:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4xkNQoN_WigQ7Ih8YYLSArjUt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/47f768-f7a0-4500-bca7-dd919589a27f/1/GJLulx8wP2ulqTapHTQ9szJDHhw.roa
Signing time: Fri 02 Dec 2022 10:10:41 +0000
ROA not before: Fri 02 Dec 2022 10:10:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211936
IP address blocks: 212.23.205.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d2:51:1b:1c:a5:dd:80:dc:8c:45:ed:18:93:29:02:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf8c64350a0dfd68a043b221f1860b480ae352de
Validity
Not Before: Dec 2 10:10:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1892ee971f303f6ba5a936a91d343db332431e1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:19:29:28:d8:a1:dc:86:6f:61:e8:64:29:fc:
18:f1:93:75:3b:c1:be:75:f4:70:b6:36:06:2c:a7:
78:a3:6d:37:a8:e7:d0:51:b4:31:f8:3c:ac:05:fe:
1f:7b:51:36:43:da:da:39:95:85:9b:c7:aa:9e:3c:
a4:55:06:29:21:92:9e:a8:a4:ca:94:ba:65:09:b6:
16:b9:50:cf:76:f6:5d:e2:4b:aa:b5:4c:f7:47:f8:
d7:97:7f:e9:3a:72:cb:a8:e3:7a:02:9c:df:c6:d7:
06:13:19:a9:60:78:02:67:cf:be:11:07:e1:d5:b7:
fc:d8:bd:5b:38:96:44:33:9c:ea:e2:9c:27:f0:cc:
eb:6b:97:f6:40:7a:01:c3:84:ad:ad:e9:8a:d2:37:
5c:06:8c:27:09:0d:be:55:c5:dc:e0:c6:5e:d0:e2:
1e:e7:59:c2:b0:c6:3b:71:19:15:2d:9d:42:88:e4:
13:a6:7b:84:75:da:7c:d5:60:a0:a3:cb:a3:ec:a0:
ff:f8:14:83:51:0a:0f:d3:ca:e1:ee:5f:3b:d9:4c:
0f:5f:b0:72:07:71:fd:6f:22:c9:50:5e:a0:27:03:
49:0e:58:59:e1:f2:37:db:1f:4d:52:68:6f:94:73:
3b:f4:9c:c1:49:e0:7a:a3:a3:91:f5:b9:c8:22:0b:
d7:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:92:EE:97:1F:30:3F:6B:A5:A9:36:A9:1D:34:3D:B3:32:43:1E:1C
X509v3 Authority Key Identifier:
keyid:BF:8C:64:35:0A:0D:FD:68:A0:43:B2:21:F1:86:0B:48:0A:E3:52:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4xkNQoN_WigQ7Ih8YYLSArjUt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/47f768-f7a0-4500-bca7-dd919589a27f/1/GJLulx8wP2ulqTapHTQ9szJDHhw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/47f768-f7a0-4500-bca7-dd919589a27f/1/v4xkNQoN_WigQ7Ih8YYLSArjUt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.205.0/24
Signature Algorithm: sha256WithRSAEncryption
58:5c:ca:bd:0e:ef:ad:32:1c:39:6a:c7:88:02:77:d3:f5:f6:
f3:e4:27:6e:28:8b:1e:6e:9f:3a:83:ff:48:27:c1:5e:5a:ce:
0c:c3:27:bd:65:7c:7f:67:4f:62:d5:0c:6b:fb:8c:2a:cd:03:
36:f2:99:90:48:a0:9d:70:72:02:e5:d6:fb:08:dd:b8:64:ca:
03:6a:12:b0:c9:11:bb:3b:98:dd:35:78:6f:1f:c2:85:54:03:
cf:08:40:db:ec:d3:86:45:1d:f5:35:56:dd:ab:a7:5c:9f:03:
1b:9c:df:4d:92:b0:51:0a:ed:1b:14:fd:4c:e7:74:c6:a9:af:
e9:4a:fa:7e:eb:8e:3d:d6:0e:10:c6:79:14:49:21:bd:cb:0d:
97:f2:92:33:fd:24:c2:c1:70:5d:ba:ed:3e:22:0b:69:9e:ad:
a8:f5:d2:51:d2:13:95:45:3b:3f:77:c5:ae:fa:a4:32:ec:58:
40:40:4c:3a:24:c1:fe:12:90:9c:6d:8c:6c:9a:33:ec:d0:8d:
9b:56:a0:fb:90:9e:ee:06:76:54:33:1d:41:0f:98:71:bd:ab:
df:dd:1d:60:7a:3f:e2:61:47:ec:c3:6a:75:91:00:cc:f9:c0:
d2:7e:04:43:eb:cf:fc:99:fa:3a:c1:ac:b1:99:23:c7:be:d2:
1f:17:4a:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 09:28:51 2025 by rpki-client