Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/fcf157-4e58-4f39-90fd-ef83b359b37f/1/SgGvKoHU3AIKjTBrxWjcEJcE-5s.roa
File: SgGvKoHU3AIKjTBrxWjcEJcE-5s.roa (raw, json)
Hash identifier: EH0pceNUd5mkaJyLCinw7gaae0InoOEH43qQuHsm/P0=
Subject key identifier: 4A:01:AF:2A:81:D4:DC:02:0A:8D:30:6B:C5:68:DC:10:97:04:FB:9B
Certificate issuer: /CN=c6165ef13707cf5a7c3bca9de6da5f13ff015f1a
Certificate serial: 018CC4B929EF719EF0C6E1D50B7D001CF973
Authority key identifier: C6:16:5E:F1:37:07:CF:5A:7C:3B:CA:9D:E6:DA:5F:13:FF:01:5F:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhZe8TcHz1p8O8qd5tpfE_8BXxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/fcf157-4e58-4f39-90fd-ef83b359b37f/1/SgGvKoHU3AIKjTBrxWjcEJcE-5s.roa
Signing time: Mon 01 Jan 2024 11:11:58 +0000
ROA not before: Mon 01 Jan 2024 11:11:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209279
IP address blocks: 185.188.31.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:b9:29:ef:71:9e:f0:c6:e1:d5:0b:7d:00:1c:f9:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6165ef13707cf5a7c3bca9de6da5f13ff015f1a
Validity
Not Before: Jan 1 11:11:58 2024 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4a01af2a81d4dc020a8d306bc568dc109704fb9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:7a:d6:60:cc:55:af:0b:7f:30:9b:b0:66:0f:
97:cf:f4:59:8e:f3:19:98:1b:4a:c2:e0:6b:20:7e:
f9:17:bc:6b:79:3c:f8:6f:74:37:98:53:67:b0:ca:
35:35:df:a7:1f:6d:00:be:36:8f:17:71:3f:e7:06:
29:af:cb:f0:03:0b:9a:5c:cb:fd:e0:5e:52:64:b0:
32:cd:bc:d7:79:d2:9f:86:bc:b5:0a:02:05:97:d8:
02:1d:2c:1f:98:da:fd:d1:d4:a5:ae:3d:25:c7:9b:
fd:6c:5a:6e:ac:33:db:23:18:2c:b8:ca:e1:84:b7:
27:b3:f3:fa:82:c6:89:79:0e:6f:a1:45:79:72:12:
ac:83:6b:7d:f5:67:bb:1b:87:af:f3:16:38:d2:f1:
ba:d6:e7:31:3d:68:66:01:b6:70:c8:6d:b5:fd:5c:
d3:a3:11:12:19:09:e4:a5:da:1c:c0:6d:09:38:b8:
bf:a5:7c:b3:26:84:ac:3e:23:9d:e2:5c:61:1d:fb:
fe:14:fc:e0:95:37:84:d4:db:e5:00:f8:39:e1:a2:
c8:dd:2c:49:35:ce:cd:5a:8a:b6:c0:fe:cb:6c:b4:
66:20:6a:6c:68:a7:4e:95:90:46:e8:e0:d8:cd:e2:
c8:8d:2e:3b:f8:44:cc:6a:c0:81:d9:57:ee:a0:03:
76:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:01:AF:2A:81:D4:DC:02:0A:8D:30:6B:C5:68:DC:10:97:04:FB:9B
X509v3 Authority Key Identifier:
keyid:C6:16:5E:F1:37:07:CF:5A:7C:3B:CA:9D:E6:DA:5F:13:FF:01:5F:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhZe8TcHz1p8O8qd5tpfE_8BXxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/fcf157-4e58-4f39-90fd-ef83b359b37f/1/SgGvKoHU3AIKjTBrxWjcEJcE-5s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/fcf157-4e58-4f39-90fd-ef83b359b37f/1/xhZe8TcHz1p8O8qd5tpfE_8BXxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.188.31.0/24
Signature Algorithm: sha256WithRSAEncryption
75:7b:72:b6:ed:24:47:65:9c:9f:71:2c:cf:d5:d8:24:a9:aa:
e3:78:3f:f3:f6:51:9f:f6:c5:ce:71:83:6c:4d:ef:6f:21:b8:
b2:0c:f5:4f:e3:54:1a:a1:b2:73:36:bd:b6:be:2e:36:4b:4e:
12:fa:89:49:2e:9e:d1:e4:27:2b:3e:c5:aa:5a:3d:de:3d:88:
f9:2f:63:e2:bb:ce:a9:80:71:80:86:12:a3:30:b6:bc:7f:63:
27:a5:a1:91:cb:d2:fe:38:d2:f8:ee:10:83:21:52:3a:40:49:
4b:06:a3:e2:73:ee:9b:24:f1:69:86:1b:f1:6d:b2:65:30:3d:
31:19:8d:6b:24:b7:79:80:d7:a5:8b:73:77:7d:66:29:af:47:
30:11:45:d6:9b:a5:b8:78:1b:30:a0:d7:07:af:6b:2b:b0:45:
ba:32:0e:a4:4a:78:98:a2:ae:3d:da:f1:8b:48:ab:95:82:fb:
1c:e2:af:5a:c0:31:ca:7b:0b:d8:f5:08:85:59:8d:25:c1:8c:
be:1f:ef:72:9e:fc:72:eb:1c:a6:e4:ca:9b:2b:f1:3a:54:74:
6f:39:29:b5:ba:46:1b:c7:17:7c:3c:fe:5e:46:a3:13:c9:1e:
93:a4:96:4d:11:ae:26:bb:aa:fa:37:fb:c5:3d:9e:23:fa:e6:
33:a6:ea:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 07:04:09 2025 by rpki-client