Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/6afcbe-6df0-4f77-af34-c61803c34657/1/giZEtebKwrV_K5a1acLqZif6N-k.roa
File: giZEtebKwrV_K5a1acLqZif6N-k.roa (raw, json)
Hash identifier: lzFFffl4lpHRD7ZMSU5Ky5FbKZMuom72Ko9x5UDmCAY=
Subject key identifier: 82:26:44:B5:E6:CA:C2:B5:7F:2B:96:B5:69:C2:EA:66:27:FA:37:E9
Certificate issuer: /CN=7ace176a69ccc9c996e1610925c0b6bdf76b207c
Certificate serial: 01942444BA1AAD0E8FA3A83AEB4AA7496999
Authority key identifier: 7A:CE:17:6A:69:CC:C9:C9:96:E1:61:09:25:C0:B6:BD:F7:6B:20:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/es4XamnMycmW4WEJJcC2vfdrIHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/6afcbe-6df0-4f77-af34-c61803c34657/1/giZEtebKwrV_K5a1acLqZif6N-k.roa
Signing time: Wed 01 Jan 2025 23:47:51 +0000
ROA not before: Wed 01 Jan 2025 23:47:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6730
IP address blocks: 195.245.122.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:ba:1a:ad:0e:8f:a3:a8:3a:eb:4a:a7:49:69:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ace176a69ccc9c996e1610925c0b6bdf76b207c
Validity
Not Before: Jan 1 23:47:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=822644b5e6cac2b57f2b96b569c2ea6627fa37e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:25:29:ff:9c:d8:4e:6b:a5:3c:1f:ea:52:d9:
df:c1:c7:ef:98:be:cf:3c:85:fb:12:a1:b8:e2:7f:
09:33:08:09:0c:68:e5:16:aa:dd:7b:07:b8:28:f5:
94:01:17:13:09:27:c5:d5:bf:7e:f5:da:8d:b0:79:
b8:3b:ab:9e:30:fe:64:63:43:08:3b:ec:85:30:19:
5b:fc:78:73:fc:dc:27:3e:e3:44:d9:6b:39:2c:4e:
a6:bd:74:c8:6b:65:ed:5e:f0:fe:af:79:9a:2e:75:
eb:31:51:96:a3:fb:b8:df:19:f0:6c:0d:7a:04:8a:
a9:81:e0:00:03:5d:8a:d5:21:42:a4:e5:57:e0:d3:
89:1d:ea:eb:81:5e:b5:8d:98:89:f9:dd:0b:e2:5b:
5e:2a:69:7a:19:c9:1b:6c:48:81:2f:22:ee:62:1d:
a1:10:f7:80:e3:90:6c:e1:70:6e:d9:2e:36:21:b1:
38:ec:e0:f0:a8:69:ee:71:9b:cb:a9:3a:b4:73:e5:
4e:92:e3:ff:6a:3f:6f:cf:ac:a7:cd:0a:58:8f:be:
16:1c:c2:f7:b0:0f:64:95:24:11:80:96:69:b5:c5:
0e:3a:e3:0f:9b:ed:3a:75:a0:b5:47:db:f9:ef:5d:
71:8b:46:da:83:83:75:27:64:36:e9:2b:3a:30:7a:
e5:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:26:44:B5:E6:CA:C2:B5:7F:2B:96:B5:69:C2:EA:66:27:FA:37:E9
X509v3 Authority Key Identifier:
keyid:7A:CE:17:6A:69:CC:C9:C9:96:E1:61:09:25:C0:B6:BD:F7:6B:20:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/es4XamnMycmW4WEJJcC2vfdrIHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6afcbe-6df0-4f77-af34-c61803c34657/1/giZEtebKwrV_K5a1acLqZif6N-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6afcbe-6df0-4f77-af34-c61803c34657/1/es4XamnMycmW4WEJJcC2vfdrIHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.245.122.0/23
Signature Algorithm: sha256WithRSAEncryption
44:34:ef:cc:73:4d:54:fc:dd:33:54:75:8f:05:ba:aa:2c:3b:
99:34:9b:06:d2:2f:db:9c:88:6b:21:c9:7b:c5:40:5c:d3:0b:
64:66:eb:a0:1a:18:21:e0:aa:49:23:10:f8:c9:c3:66:72:59:
ba:cf:a4:46:e6:02:ed:08:f6:d6:7e:e3:e7:14:77:6b:70:4d:
08:83:12:71:41:ec:84:52:1a:32:ab:4d:e4:dd:08:32:f6:30:
0a:b0:bc:ef:53:4e:63:9a:3b:f2:8b:47:fe:f7:33:1a:cb:ce:
b3:7b:1c:b6:d6:45:0d:36:c5:a0:a6:f0:c1:7c:a4:4e:0a:a8:
8e:ad:cb:45:e3:6a:42:35:e6:d8:df:eb:d8:49:60:c1:69:50:
ef:29:b5:dd:4d:12:fd:a2:28:64:e7:1a:2c:60:85:27:d2:fa:
19:55:d6:04:be:e3:a8:ce:c7:66:d0:ec:52:7d:a2:4f:51:9e:
36:e0:23:b7:71:ce:64:f9:22:6d:82:1f:d2:6d:20:dc:eb:e9:
b2:83:d6:aa:4e:dc:76:af:1b:93:7c:94:a6:0f:c0:b9:18:98:
2f:8f:2f:4f:f7:46:92:c0:7b:c5:36:96:81:28:01:91:30:a7:
15:33:ac:5c:12:66:4d:9f:9a:73:13:13:77:06:1a:d8:32:bd:
6e:eb:65:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:49:04 2025 by rpki-client