Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/450138-f4b3-4689-b4c9-4f74dbe1b766/1/GF5BVLIowaeYnfvDLVuLxWhrrhk.roa
File: GF5BVLIowaeYnfvDLVuLxWhrrhk.roa (raw, json)
Hash identifier: VSdsRDOCF/IqgJAPbq19efm78PZlxMPpE1AF2A9Jnhg=
Subject key identifier: 18:5E:41:54:B2:28:C1:A7:98:9D:FB:C3:2D:5B:8B:C5:68:6B:AE:19
Certificate issuer: /CN=39b463372b9ddf448b3fc3eaed58441194782d06
Certificate serial: 018570675F596DA0CC9BC8663B89F315ECE7
Authority key identifier: 39:B4:63:37:2B:9D:DF:44:8B:3F:C3:EA:ED:58:44:11:94:78:2D:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ObRjNyud30SLP8Pq7VhEEZR4LQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/450138-f4b3-4689-b4c9-4f74dbe1b766/1/GF5BVLIowaeYnfvDLVuLxWhrrhk.roa
Signing time: Mon 02 Jan 2023 02:55:00 +0000
ROA not before: Mon 02 Jan 2023 02:55:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203614
IP address blocks: 185.253.147.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:5f:59:6d:a0:cc:9b:c8:66:3b:89:f3:15:ec:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39b463372b9ddf448b3fc3eaed58441194782d06
Validity
Not Before: Jan 2 02:55:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=185e4154b228c1a7989dfbc32d5b8bc5686bae19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:5a:4e:50:92:ba:37:68:e4:47:e2:36:31:b6:
45:f5:f3:92:e1:fe:fb:05:cb:39:4a:55:dd:34:9f:
7a:92:55:7a:55:54:b2:c4:b6:f5:f7:3d:06:84:7a:
99:71:33:14:60:b4:d8:0e:e8:c5:58:f4:a0:33:b1:
bb:d2:3a:b5:9a:28:54:e9:12:2a:2e:ee:78:f5:bd:
b6:71:ee:fd:cf:6f:5f:d8:b9:9c:2d:1c:05:7f:ea:
70:89:ae:1b:6d:26:a1:c2:79:2c:56:d7:2f:8e:a7:
97:56:17:9e:c8:63:cd:a3:09:53:b4:fa:d2:6f:c4:
a6:a1:ae:c8:84:ea:cf:9c:99:ff:f5:0b:04:d0:f8:
65:63:58:45:00:ba:d9:12:00:96:a1:bd:62:60:a7:
b9:ef:19:3e:d7:ff:4e:74:d8:6e:38:78:f8:9c:1a:
08:51:c5:6b:1e:16:6f:79:db:84:32:69:61:3d:63:
a4:cc:83:93:34:cf:1d:36:41:73:11:d7:76:ab:34:
a1:e6:29:e7:f4:f0:c8:81:6f:b9:ca:fe:89:45:53:
1a:bd:10:e6:3c:e7:3c:1c:1a:f0:91:74:18:12:50:
1f:a6:3e:6a:cd:ac:be:5f:37:34:10:9f:da:21:3a:
7e:68:6c:0e:40:5f:29:4a:4f:80:d7:c7:87:b2:27:
8f:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:5E:41:54:B2:28:C1:A7:98:9D:FB:C3:2D:5B:8B:C5:68:6B:AE:19
X509v3 Authority Key Identifier:
keyid:39:B4:63:37:2B:9D:DF:44:8B:3F:C3:EA:ED:58:44:11:94:78:2D:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ObRjNyud30SLP8Pq7VhEEZR4LQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/450138-f4b3-4689-b4c9-4f74dbe1b766/1/GF5BVLIowaeYnfvDLVuLxWhrrhk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/450138-f4b3-4689-b4c9-4f74dbe1b766/1/ObRjNyud30SLP8Pq7VhEEZR4LQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.253.147.0/24
Signature Algorithm: sha256WithRSAEncryption
07:43:d0:37:07:e0:51:6a:86:c9:1a:fd:45:bb:a2:50:7b:bd:
73:c2:9b:eb:a5:61:67:8c:dd:7c:09:be:09:d3:60:3b:1f:ad:
bc:85:a0:01:44:ec:01:72:15:22:45:0c:44:d4:d8:e7:38:66:
31:97:37:84:8a:4e:46:f0:ff:24:cf:93:a6:bd:d3:cc:86:02:
31:54:bb:72:d9:78:34:d0:b3:0b:1e:07:f5:98:eb:d4:d4:19:
be:4e:d2:3a:c9:9f:7d:a9:7b:9e:0f:a2:b4:0a:d3:e1:5b:ac:
03:06:23:dd:c5:9d:82:c8:cc:23:b5:b7:7c:bd:f9:22:f8:e4:
9a:71:05:b5:56:9a:92:65:38:c5:a9:17:43:3b:9e:cc:36:a0:
d2:59:f3:99:ef:4e:49:a1:13:36:0b:80:cf:74:a9:14:a6:43:
00:5f:4f:33:6e:56:10:e5:20:cd:21:8d:0e:54:9f:3d:14:b8:
9f:1d:94:bb:13:73:15:ae:4a:e4:00:cd:14:d7:3c:66:01:f2:
b1:be:2f:06:b0:c1:20:b0:56:9a:ad:db:1f:b0:b0:45:c6:b4:
07:a6:34:0d:d4:e4:62:4f:64:fe:1a:c3:a2:aa:65:21:42:27:
90:60:f1:b2:34:f5:fe:74:3e:bc:7b:ec:78:8d:52:6a:f1:71:
1c:3e:11:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:57:34 2025 by rpki-client