Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/gvaTZUWlv6jOLEEH9S96xzBVDYc.roa
File: gvaTZUWlv6jOLEEH9S96xzBVDYc.roa (raw, json)
Hash identifier: InB0PO2umz3NJu2ZhlFJ4sgFt6+pFof0zzTrwHlTYUw=
Subject key identifier: 82:F6:93:65:45:A5:BF:A8:CE:2C:41:07:F5:2F:7A:C7:30:55:0D:87
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 282F13A3
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/gvaTZUWlv6jOLEEH9S96xzBVDYc.roa
Signing time: Sat 01 Jan 2022 16:09:48 +0000
ROA not before: Sat 01 Jan 2022 16:09:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204514
IP address blocks: 146.158.79.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 674173859 (0x282f13a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82f6936545a5bfa8ce2c4107f52f7ac730550d87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b5:c8:f1:18:d8:57:18:8d:63:c6:be:55:39:
d2:91:df:17:ca:de:0a:3f:9b:a9:3c:69:a2:3c:94:
09:30:00:63:eb:4e:94:0c:ff:52:42:c8:99:b0:ed:
85:1d:3e:62:f3:40:91:e4:c1:96:34:78:55:14:17:
cd:35:74:26:6d:24:27:d0:38:40:42:d2:eb:db:2b:
01:a9:c9:95:f1:21:ed:07:4b:fd:4d:1e:96:79:d2:
6e:81:be:4d:a3:f9:c5:b4:27:96:9b:8f:de:31:59:
3a:20:26:48:ce:5d:15:71:38:de:83:c8:b9:6e:32:
5a:e7:e9:6c:c1:78:fb:c0:f8:09:b0:f1:38:3a:22:
8f:6b:40:2a:18:1a:3a:14:8a:bc:9b:b5:0c:5e:f0:
6b:c7:39:18:a1:3b:59:6d:45:2b:bf:c6:a4:94:89:
a3:d6:c5:93:49:55:6e:bd:d2:ef:cc:80:d7:f7:27:
67:9e:fc:cf:1f:12:71:04:f4:9f:de:bd:62:0c:ff:
0f:d6:e6:27:98:e0:fe:41:c8:cf:88:d6:c8:74:0f:
48:54:29:66:2d:6e:f8:8d:c1:2f:ae:06:b7:ee:f5:
26:44:0b:31:f0:d7:07:fd:4f:07:f0:bf:ac:d1:6c:
a7:c3:6a:52:0a:68:e4:7d:39:5a:5a:aa:93:8f:82:
d0:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:F6:93:65:45:A5:BF:A8:CE:2C:41:07:F5:2F:7A:C7:30:55:0D:87
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/gvaTZUWlv6jOLEEH9S96xzBVDYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.158.79.0/24
Signature Algorithm: sha256WithRSAEncryption
29:2f:5c:82:a3:ad:18:70:84:33:e9:c7:30:4e:aa:2b:2d:18:
8e:18:ed:b6:a8:69:b3:49:44:59:cb:78:b7:7c:1b:a3:75:29:
8d:5a:01:a4:92:cf:e5:36:27:e2:5a:74:c6:76:00:fd:1e:a1:
23:98:01:c3:16:c3:81:27:55:4d:da:ab:c3:4a:00:9a:c6:e4:
18:9f:3e:a7:95:ad:bf:ed:dd:cc:25:c3:c2:3f:80:09:5e:bf:
ac:c5:53:db:7a:a5:a6:d5:62:64:23:b0:ae:50:7c:ba:01:52:
1d:6c:90:1a:49:b4:5b:af:d9:92:aa:a4:23:48:5d:b6:06:8f:
0f:d2:7f:a6:5c:44:57:14:4b:64:06:d0:cd:01:10:df:18:08:
0c:a4:13:74:c5:54:e9:e8:35:b8:0d:4b:6c:c0:0b:f5:0d:7c:
21:68:fd:0e:9a:11:a1:b5:5c:e7:33:2c:e6:d5:bf:6f:97:a3:
c4:23:67:f3:f2:03:d3:4a:e7:75:27:29:e6:a7:3b:49:82:86:
0e:07:39:ec:38:8b:a1:a1:19:3a:9b:6a:31:7f:6f:e5:d6:20:
3a:f1:72:29:d2:6c:e8:2f:dc:f7:54:8f:23:31:5f:0d:33:31:
9c:d8:4c:54:a4:c6:cd:ac:43:bd:6f:0d:95:05:78:4b:a2:78:
ef:a3:2e:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:36:34 2025 by rpki-client