Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/GLw6hjFuKPLEwb-cYw0ywtQhxFc.roa
File: GLw6hjFuKPLEwb-cYw0ywtQhxFc.roa (raw, json)
Hash identifier: 4ZZZAQTA0qpaurDvjCK7XDdFgkMkY2Q+q/YSrPX61hc=
Subject key identifier: 18:BC:3A:86:31:6E:28:F2:C4:C1:BF:9C:63:0D:32:C2:D4:21:C4:57
Certificate issuer: /CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Certificate serial: 0194ABE56B991A29CCB08E1437F4376CCB5A
Authority key identifier: 6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/GLw6hjFuKPLEwb-cYw0ywtQhxFc.roa
Signing time: Tue 28 Jan 2025 07:52:06 +0000
ROA not before: Tue 28 Jan 2025 07:52:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 2914
IP address blocks: 213.18.208.0/22 maxlen: 24
213.18.220.0/22 maxlen: 24
217.177.8.0/22 maxlen: 24
217.177.40.0/22 maxlen: 24
217.177.44.0/22 maxlen: 24
217.177.48.0/22 maxlen: 24
217.177.52.0/22 maxlen: 24
217.177.80.0/22 maxlen: 24
217.177.84.0/22 maxlen: 24
217.180.40.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ab:e5:6b:99:1a:29:cc:b0:8e:14:37:f4:37:6c:cb:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Validity
Not Before: Jan 28 07:52:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=18bc3a86316e28f2c4c1bf9c630d32c2d421c457
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:c2:d3:9a:1c:f0:75:4c:a5:c9:49:55:bd:b3:
94:e3:de:7b:33:e7:97:e3:02:fe:ba:fe:0f:9c:52:
78:65:bf:28:08:9c:6d:4f:fa:d6:8f:b6:3f:cc:37:
b6:48:4e:54:73:db:8a:d6:c2:c6:3c:dc:21:09:ab:
40:54:98:8f:1d:8e:ff:33:09:a6:51:8c:97:b6:38:
51:b8:b0:79:52:d3:12:3a:7e:49:43:9f:f4:6a:5b:
a4:f8:57:22:55:50:d6:87:5b:94:3e:5a:96:78:78:
f6:d7:ea:56:c8:0c:f9:37:a8:46:9e:50:65:fe:54:
a2:1f:7e:a1:04:fc:18:2c:99:55:67:00:6b:54:74:
1c:65:1e:fd:f4:e6:9a:a2:d5:b9:30:91:ca:d6:fa:
cf:f3:1b:8a:1e:1c:4c:50:44:36:7b:d5:0f:f1:a0:
a5:70:28:eb:57:3c:78:8d:4d:f4:20:f4:62:c5:c0:
8d:12:a0:ec:3c:6e:fe:99:58:8b:e6:ab:60:c2:db:
8c:37:03:42:41:37:42:87:7c:48:1f:e2:ae:c8:bd:
51:18:a1:40:bd:c8:a9:ec:14:62:85:45:42:df:b9:
ca:ae:2e:a1:67:a3:ae:82:ac:3b:ee:37:f6:2e:27:
41:77:68:92:b2:9a:14:fd:bc:c9:da:f0:61:a9:e4:
c2:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:BC:3A:86:31:6E:28:F2:C4:C1:BF:9C:63:0D:32:C2:D4:21:C4:57
X509v3 Authority Key Identifier:
keyid:6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/GLw6hjFuKPLEwb-cYw0ywtQhxFc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.18.208.0/22
213.18.220.0/22
217.177.8.0/22
217.177.40.0-217.177.55.255
217.177.80.0/21
217.180.40.0/22
Signature Algorithm: sha256WithRSAEncryption
a5:b9:ab:a1:d8:75:8b:99:2f:8c:f8:3d:ef:8e:3a:78:19:11:
1f:c5:a2:9c:d7:0b:0f:aa:1e:7f:4b:8f:35:2e:b1:5b:29:6e:
0f:b5:b0:91:ec:5a:3b:54:1c:a7:c7:2b:6e:1a:1a:65:34:34:
57:07:bb:82:98:7f:79:85:26:a2:c6:0b:16:34:e6:d3:93:32:
66:c8:a0:40:02:c1:11:d1:28:78:57:f4:a3:77:14:d7:65:8f:
21:9f:ab:c6:01:df:99:5b:7c:52:49:2c:39:31:ab:ac:35:9d:
a9:80:a6:f6:ce:91:42:83:ac:19:d1:66:60:a6:67:20:da:00:
89:5c:b0:4c:cb:aa:6e:ca:a3:b5:f2:22:94:1f:9e:3f:cd:78:
e0:5d:3e:ea:42:7c:ba:e3:a7:94:90:9a:18:3d:26:c5:e7:11:
16:a8:c4:84:70:43:0c:03:29:08:a5:33:9b:a5:fe:54:57:4e:
20:ca:76:4d:60:9e:2a:13:9c:b7:5c:8b:6a:f1:31:8c:15:37:
4d:79:3d:bf:64:2b:0c:59:15:07:99:5c:25:bc:d5:7b:ec:a5:
b8:96:ca:5f:61:82:68:28:d8:cc:c6:cb:47:26:e9:75:bf:59:
88:38:2d:13:44:0c:3d:47:90:7c:51:0d:fd:50:2f:3c:15:b0:
bb:60:85:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:52:28 2025 by rpki-client