Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/d354b5-9031-45ef-8b4f-02d1f71208d0/1/GwjiH9CrSKmBHXu6n24gpQsJuwA.roa
File: GwjiH9CrSKmBHXu6n24gpQsJuwA.roa (raw, json)
Hash identifier: wcfvbIJwEL4V7dFGZTCwlt7nfqbJ0Ba+EBwBqQA73Ps=
Subject key identifier: 1B:08:E2:1F:D0:AB:48:A9:81:1D:7B:BA:9F:6E:20:A5:0B:09:BB:00
Certificate issuer: /CN=f5f6a2ccd3b2e51d19cf38fc141ec9425d77cf2a
Certificate serial: 0188916C45370B7B72B14B0255EB314901BB
Authority key identifier: F5:F6:A2:CC:D3:B2:E5:1D:19:CF:38:FC:14:1E:C9:42:5D:77:CF:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9faizNOy5R0Zzzj8FB7JQl13zyo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/d354b5-9031-45ef-8b4f-02d1f71208d0/1/GwjiH9CrSKmBHXu6n24gpQsJuwA.roa
Signing time: Tue 06 Jun 2023 15:56:11 +0000
ROA not before: Tue 06 Jun 2023 15:56:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51765
IP address blocks: 146.19.39.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:91:6c:45:37:0b:7b:72:b1:4b:02:55:eb:31:49:01:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5f6a2ccd3b2e51d19cf38fc141ec9425d77cf2a
Validity
Not Before: Jun 6 15:56:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b08e21fd0ab48a9811d7bba9f6e20a50b09bb00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:77:17:e7:48:6b:e3:8d:57:93:bb:1f:2d:3e:
f9:b3:4c:7d:43:ef:6f:da:6c:40:0c:0a:62:40:13:
bc:86:e0:08:70:6f:b1:8d:d4:64:23:6e:bf:04:1d:
81:31:ca:78:ac:db:37:43:be:6f:c3:2d:dd:51:6d:
f0:0d:86:c3:63:28:ad:7c:a4:3e:55:af:d7:47:72:
37:6b:57:2a:2e:e2:54:42:54:4d:48:78:8a:1c:32:
4f:db:82:bf:75:7b:f9:44:01:9e:88:2d:e2:3d:94:
1b:01:10:8e:b5:3f:f2:77:48:c4:20:4f:9f:e8:37:
fa:a2:90:0c:b4:63:56:4f:1d:fb:0b:32:5b:eb:2d:
9c:da:07:fa:8b:50:07:33:b5:5d:02:09:e9:76:f2:
aa:13:4f:e2:0b:07:34:b3:b0:a0:70:9e:4d:01:98:
f4:53:ae:27:6a:f2:8e:05:ec:40:73:ae:30:5e:cf:
f9:ad:38:f1:70:f2:56:48:b1:fe:a5:c9:82:43:21:
4b:2c:cc:95:d7:c1:71:f4:df:6e:a4:ba:0e:74:c6:
0c:5e:b5:81:03:16:d3:1e:76:bb:ba:c1:01:c4:db:
f8:c4:f6:22:70:43:4a:c4:d2:94:14:de:93:ce:88:
46:69:3f:1e:9d:46:21:0e:03:a4:2e:ba:b2:f7:4d:
63:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:08:E2:1F:D0:AB:48:A9:81:1D:7B:BA:9F:6E:20:A5:0B:09:BB:00
X509v3 Authority Key Identifier:
keyid:F5:F6:A2:CC:D3:B2:E5:1D:19:CF:38:FC:14:1E:C9:42:5D:77:CF:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9faizNOy5R0Zzzj8FB7JQl13zyo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/d354b5-9031-45ef-8b4f-02d1f71208d0/1/GwjiH9CrSKmBHXu6n24gpQsJuwA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/d354b5-9031-45ef-8b4f-02d1f71208d0/1/9faizNOy5R0Zzzj8FB7JQl13zyo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.39.0/24
Signature Algorithm: sha256WithRSAEncryption
83:e9:9c:7c:ba:af:c8:60:30:ea:8a:68:88:db:5c:a0:a2:db:
e3:39:29:9e:62:f5:74:70:b7:c7:26:5e:70:6b:42:24:c2:e0:
f2:54:73:6e:a0:9d:e2:bd:19:a4:b3:38:a8:e6:0e:ad:66:0a:
51:a8:d5:ec:39:4e:39:9f:a5:12:e6:9d:fb:98:98:e5:93:f9:
22:b6:b7:04:84:ee:0b:3b:5f:7a:e2:67:dc:4a:1f:36:34:16:
0d:f2:f3:d8:7d:d3:c4:b9:17:04:15:bd:1c:e4:7c:3a:07:24:
32:61:a3:48:32:54:89:34:00:ab:a6:8b:e7:15:84:a2:fc:f2:
b5:2a:32:87:ce:5d:4a:8c:29:bb:fc:95:13:7c:5a:aa:79:78:
1c:65:f8:ce:df:0f:9d:94:2c:3d:46:29:a4:40:ad:a8:f8:ab:
9a:e2:9a:fc:86:4b:cc:66:14:54:ed:a9:82:83:2b:5d:35:7a:
62:d9:29:fc:a5:7a:13:6e:81:77:dd:90:5a:27:da:34:14:4f:
6f:cf:bf:16:f5:b3:29:f4:85:bd:a4:60:32:de:7c:49:f7:ff:
b6:b1:fd:ac:a8:bb:c1:01:ad:5f:3f:a6:e5:49:5e:9f:bd:1a:
ca:a0:b3:e7:22:47:a7:da:89:05:1d:a2:0a:af:a6:98:a3:71:
d2:7e:38:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 11:50:29 2025 by rpki-client