Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/GBIF4ZPb0FErKX4U7bGeR2_jZbc.roa
File: GBIF4ZPb0FErKX4U7bGeR2_jZbc.roa (raw, json)
Hash identifier: 7rz5wOQSeZCaiz+y/cyuHY/S502wBNjjROOj5YhuUfE=
Subject key identifier: 18:12:05:E1:93:DB:D0:51:2B:29:7E:14:ED:B1:9E:47:6F:E3:65:B7
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 019455CD1672D3333DA86DAA7D41BB82DAD0
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/GBIF4ZPb0FErKX4U7bGeR2_jZbc.roa
Signing time: Sat 11 Jan 2025 14:38:11 +0000
ROA not before: Sat 11 Jan 2025 14:38:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215625
IP address blocks: 188.132.238.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:55:cd:16:72:d3:33:3d:a8:6d:aa:7d:41:bb:82:da:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 11 14:38:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=181205e193dbd0512b297e14edb19e476fe365b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:be:8d:88:df:59:57:be:11:69:9d:67:94:f5:
bc:af:09:ac:40:4c:e9:41:cd:06:77:2f:77:a1:95:
83:39:23:58:16:1d:b2:8a:f1:a8:c5:ce:d1:22:a7:
f5:59:d5:81:f5:88:ef:ff:8e:91:ba:c3:4e:ed:fb:
03:e5:0b:44:db:45:66:be:67:4b:9a:3a:cd:27:57:
80:8e:0c:c8:89:4c:44:35:a4:2c:60:28:6e:c4:05:
6c:82:48:68:c7:82:ec:b8:87:1f:61:46:46:ce:00:
5c:66:47:62:77:28:11:47:d2:9b:04:d0:01:5f:1a:
4c:ac:71:8e:fd:ea:2c:1a:6f:55:09:88:f0:5a:ae:
54:0d:0b:f3:32:da:29:cd:a0:84:30:a9:21:22:e8:
01:e0:2c:a4:2d:79:14:18:8a:3c:ba:b8:e0:40:3c:
39:d1:26:47:50:de:a9:5d:48:fe:f1:16:e2:18:62:
e3:42:30:5c:62:91:d1:ce:54:5f:54:e2:96:92:0e:
49:0d:0a:79:af:64:82:5e:27:da:49:21:e6:48:0b:
e5:21:dd:f4:cb:67:0b:72:ab:bd:a8:7b:0b:d9:78:
61:61:4f:02:44:99:83:2b:85:5b:60:be:ae:02:d6:
a4:67:3a:3f:ef:7e:63:43:1e:4f:09:5c:28:ef:bc:
78:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:12:05:E1:93:DB:D0:51:2B:29:7E:14:ED:B1:9E:47:6F:E3:65:B7
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/GBIF4ZPb0FErKX4U7bGeR2_jZbc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.238.0/24
Signature Algorithm: sha256WithRSAEncryption
24:fc:d2:48:d2:10:53:18:7a:05:39:d5:ec:3c:d1:82:8c:37:
0a:d6:6a:d8:ce:86:c4:bb:d5:e2:12:77:3f:ee:e9:9a:45:b6:
fe:92:22:d4:b3:c9:dd:62:c7:08:00:dc:1a:0e:3d:5d:a8:d5:
76:7f:e2:12:17:31:e5:d4:80:5b:cb:41:c8:90:e8:f7:2e:b0:
fb:f1:23:f3:6d:7f:2c:e7:83:6d:7f:26:d6:81:9e:f6:96:f5:
f2:1c:59:35:46:87:7f:33:0c:c8:93:45:79:25:4c:c6:b8:31:
83:2f:0e:38:7c:bd:32:18:42:1d:f4:fd:cd:e2:93:db:71:d9:
f6:87:ed:56:f4:3e:b7:8f:bc:6f:0d:41:6b:05:32:7d:80:11:
73:b5:ba:f8:b8:32:2f:df:77:8a:b1:4f:b1:b1:3a:97:77:ec:
f2:7e:2b:29:15:b2:33:c2:93:69:e3:3f:56:92:87:34:fa:ac:
4c:bd:09:4b:a2:54:23:d5:f6:81:86:a2:0f:1b:74:f2:b0:62:
12:5a:02:db:40:fe:78:c4:ec:af:86:b7:60:fb:1c:6b:ea:46:
ea:78:5b:0c:82:06:b5:ad:df:de:13:48:ab:0c:b1:de:f4:8b:
a9:74:26:de:7b:88:d3:f3:40:6c:a7:24:5e:71:37:59:fd:a2:
85:7a:15:2f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZRVzRZy0zM9qG2qfUG7gtrQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5ZDU3NDQ3ZTM0MjBiODUzODc1YjZmYTQwMzcyYWFkZTMx
OTJjYTIwHhcNMjUwMTExMTQzODExWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxODEyMDVlMTkzZGJkMDUxMmIyOTdlMTRlZGIxOWU0NzZmZTM2NWI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv76NiN9ZV74RaZ1nlPW8rwmsQEzp
Qc0Gdy93oZWDOSNYFh2yivGoxc7RIqf1WdWB9Yjv/46RusNO7fsD5QtE20VmvmdL
mjrNJ1eAjgzIiUxENaQsYChuxAVsgkhox4LsuIcfYUZGzgBcZkdidygRR9KbBNAB
XxpMrHGO/eosGm9VCYjwWq5UDQvzMtopzaCEMKkhIugB4CykLXkUGIo8urjgQDw5
0SZHUN6pXUj+8RbiGGLjQjBcYpHRzlRfVOKWkg5JDQp5r2SCXifaSSHmSAvlId30
y2cLcqu9qHsL2XhhYU8CRJmDK4VbYL6uAtakZzo/735jQx5PCVwo77x4kQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBgSBeGT29BRKyl+FO2xnkdv42W3MB8GA1UdIwQY
MBaAFMnVdEfjQguFOHW2+kA3Kq3jGSyiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTkt
NGUxOThmMGE2MDEzLzEvR0JJRjRaUGIwRkVyS1g0VTdiR2VSMl9qWmJjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTktNGUxOThmMGE2MDEz
LzEveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvITuMA0G
CSqGSIb3DQEBCwUAA4IBAQAk/NJI0hBTGHoFOdXsPNGCjDcK1mrYzobEu9XiEnc/
7umaRbb+kiLUs8ndYscIANwaDj1dqNV2f+ISFzHl1IBby0HIkOj3LrD78SPzbX8s
54NtfybWgZ72lvXyHFk1Rod/MwzIk0V5JUzGuDGDLw44fL0yGEId9P3N4pPbcdn2
h+1W9D63j7xvDUFrBTJ9gBFztbr4uDIv33eKsU+xsTqXd+zyfispFbIzwpNp4z9W
koc0+qxMvQlLolQj1faBhqIPG3TysGISWgLbQP54xOyvhrdg+xxr6kbqeFsMgga1
rd/eE0irDLHe9IupdCbee4jT80BspyRecTdZ/aKFehUv
-----END CERTIFICATE-----
Generated at Wed Apr 9 09:11:16 2025 by rpki-client