Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/GAqDQRlVlrToiw_9yfbcBMmlCGA.roa
File: GAqDQRlVlrToiw_9yfbcBMmlCGA.roa (raw, json)
Hash identifier: DNfzn17NZbyJhSJC6WVjBBTJVDglLnktFXd2mm5Yt+c=
Subject key identifier: 18:0A:83:41:19:55:96:B4:E8:8B:0F:FD:C9:F6:DC:04:C9:A5:08:60
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0185709503CF8F08A506E44F9B23EBA5E7AE
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/GAqDQRlVlrToiw_9yfbcBMmlCGA.roa
Signing time: Mon 02 Jan 2023 03:44:52 +0000
ROA not before: Mon 02 Jan 2023 03:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3180
IP address blocks: 93.170.14.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:03:cf:8f:08:a5:06:e4:4f:9b:23:eb:a5:e7:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=180a8341195596b4e88b0ffdc9f6dc04c9a50860
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:3c:f3:a5:66:f9:cd:eb:fe:96:86:46:d0:ee:
10:5b:c5:17:95:52:67:46:8f:c0:66:58:fd:7c:4f:
c2:59:cd:40:a6:80:0e:10:08:a3:95:8e:15:42:47:
d1:7f:a8:fc:8d:de:ca:35:76:d9:86:81:23:92:76:
c1:5c:38:d9:cb:a4:88:ba:fb:95:a4:b9:c0:83:48:
70:24:8d:13:6a:9e:a9:a4:46:a8:e6:5b:28:c1:d2:
32:54:48:c2:93:9e:24:90:c4:64:fe:6b:4f:b8:f9:
8b:7a:5b:16:b8:41:06:ff:17:f2:d4:79:a2:b3:51:
ce:50:89:24:24:13:9b:2e:0c:b9:95:5f:e5:d3:2b:
df:4f:da:01:91:8a:96:8d:cf:e6:f9:2d:24:59:53:
a8:71:77:93:02:72:b4:b4:e0:40:7c:42:b2:37:d4:
85:7e:b6:47:1c:44:a4:9b:87:a0:de:72:09:db:23:
a3:b8:5d:76:52:9b:77:b6:9c:4b:0e:44:21:d9:8a:
9b:6b:43:05:cf:f6:84:1a:0d:1c:1c:51:b8:d0:37:
7d:a9:12:1b:70:1a:a7:1a:dd:eb:90:12:21:2b:0b:
52:3b:c6:70:02:d6:7d:07:dd:ba:0c:3c:39:01:dc:
7d:a2:cf:76:7a:f4:40:7b:06:e3:ab:f9:15:e4:fc:
8d:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:0A:83:41:19:55:96:B4:E8:8B:0F:FD:C9:F6:DC:04:C9:A5:08:60
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/GAqDQRlVlrToiw_9yfbcBMmlCGA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.14.0/24
Signature Algorithm: sha256WithRSAEncryption
31:fd:c0:a2:81:b3:d0:f3:7a:80:bf:29:1b:ec:f4:37:f4:a2:
b4:37:e5:2e:a9:ac:be:ec:38:28:fa:d2:ba:ec:bc:a8:d9:bc:
19:5c:36:dc:8e:37:a9:4f:29:2b:32:ef:f3:80:18:41:cf:0c:
b3:bc:b8:b8:1d:8f:9b:86:9c:53:66:db:55:4d:f3:de:06:1a:
f7:c2:05:83:25:01:5b:56:e5:b4:e8:80:53:bc:45:48:ae:2d:
80:b1:b4:42:30:23:e5:5c:6f:d4:d6:ee:df:3d:21:c3:0a:ab:
bf:c7:01:25:19:ea:a3:0a:eb:cf:ae:d7:30:9e:b3:09:f8:ed:
b6:d9:47:d0:92:59:5f:4b:fe:0b:c0:32:65:66:47:73:da:9d:
3f:6f:ad:72:ca:19:69:86:92:36:19:17:f3:67:6e:f7:55:2f:
6c:ca:b2:c0:d4:43:4b:ee:70:44:7d:cb:a5:fc:c2:74:d0:2d:
17:f6:71:15:18:82:88:d1:f1:f6:36:f7:c7:ba:ab:ae:a7:ae:
dc:1d:fe:fe:55:a6:97:f2:bb:39:9a:cf:0c:09:5a:59:95:6f:
fb:91:e4:20:98:6b:89:61:af:eb:be:8f:f3:77:be:72:ed:2e:
9a:a1:3c:0f:c9:7a:18:2f:48:89:9d:92:75:d1:33:1f:d7:75:
9a:d8:ed:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:34:29 2025 by rpki-client