Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/4d6b88-20c6-4c42-8799-4b917592357c/1/GzZOn0FMwyF0PqvIWI6Nnb-Vd4g.roa
File: GzZOn0FMwyF0PqvIWI6Nnb-Vd4g.roa (raw, json)
Hash identifier: 5J/Uh3Vu4lMEWtHw6mjugw4/PpXu0iZuwIZUgCw3aCM=
Subject key identifier: 1B:36:4E:9F:41:4C:C3:21:74:3E:AB:C8:58:8E:8D:9D:BF:95:77:88
Certificate issuer: /CN=e45b9daeaa034255ea33114f58b88c1c3e3c7caf
Certificate serial: 0194258F28EF535B6D8DFEDC7502B3D8CD64
Authority key identifier: E4:5B:9D:AE:AA:03:42:55:EA:33:11:4F:58:B8:8C:1C:3E:3C:7C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5FudrqoDQlXqMxFPWLiMHD48fK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/4d6b88-20c6-4c42-8799-4b917592357c/1/GzZOn0FMwyF0PqvIWI6Nnb-Vd4g.roa
Signing time: Thu 02 Jan 2025 05:48:46 +0000
ROA not before: Thu 02 Jan 2025 05:48:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41632
IP address blocks: 195.138.215.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:28:ef:53:5b:6d:8d:fe:dc:75:02:b3:d8:cd:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e45b9daeaa034255ea33114f58b88c1c3e3c7caf
Validity
Not Before: Jan 2 05:48:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1b364e9f414cc321743eabc8588e8d9dbf957788
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:13:1f:e8:0d:cc:d2:ff:e8:52:cb:28:ce:89:
66:49:aa:7c:bd:1d:a8:e6:c2:61:97:06:f6:23:bf:
42:89:85:31:49:5c:71:cc:01:35:51:df:12:77:d3:
dc:f4:83:44:c0:4e:b5:3e:d9:9a:6b:3b:f3:6b:02:
92:10:1a:63:b8:33:c6:f9:74:f5:cf:6d:3a:05:da:
e7:f9:c5:0e:9a:75:ff:67:e5:84:0e:5d:cc:44:2b:
aa:b8:df:91:b2:f0:be:c3:3b:bc:d1:b0:e3:f8:db:
9b:2f:63:eb:23:57:bf:04:f8:a2:15:5a:3f:38:d9:
b1:89:77:93:f2:89:56:b5:95:69:c8:a0:1f:92:76:
67:59:5a:8d:49:54:04:10:e7:5b:42:b0:21:53:8d:
ce:d2:72:2b:83:22:62:78:33:32:4e:c6:c6:dd:08:
90:da:90:77:c9:34:65:f2:5f:49:67:fe:6e:26:e7:
c6:33:f4:7d:4c:7e:9c:d9:93:ee:55:a1:04:c2:38:
25:6a:14:d8:45:6a:c1:d2:e0:a1:51:aa:04:98:90:
fb:52:2c:0f:d4:d6:f8:6d:78:27:17:a1:03:a7:d4:
24:1d:5f:9d:1f:30:a8:de:ca:6c:39:9f:c6:6a:a2:
27:b0:86:40:5b:51:5c:65:68:4f:1f:a0:fc:72:5d:
b1:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:36:4E:9F:41:4C:C3:21:74:3E:AB:C8:58:8E:8D:9D:BF:95:77:88
X509v3 Authority Key Identifier:
keyid:E4:5B:9D:AE:AA:03:42:55:EA:33:11:4F:58:B8:8C:1C:3E:3C:7C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5FudrqoDQlXqMxFPWLiMHD48fK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/4d6b88-20c6-4c42-8799-4b917592357c/1/GzZOn0FMwyF0PqvIWI6Nnb-Vd4g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/4d6b88-20c6-4c42-8799-4b917592357c/1/5FudrqoDQlXqMxFPWLiMHD48fK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.138.215.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:91:17:c2:1b:ae:e0:d0:d5:84:f7:a2:e2:50:f7:41:ee:09:
bb:5d:cc:c7:a3:fa:71:62:4f:72:8a:76:84:e4:80:e4:66:e6:
e1:d3:82:f6:ef:ea:29:d5:27:c3:80:53:b6:54:39:f6:a7:ac:
69:27:ae:5d:46:38:c4:0a:cb:0c:9b:cc:ef:7e:d6:e6:34:df:
62:b8:09:ee:ff:c3:c7:f2:80:b5:46:2d:76:f1:d5:19:b7:de:
0c:8a:fe:69:5e:6b:3a:bd:81:43:0d:5c:b4:f7:88:c0:11:28:
58:d2:1a:90:bb:36:57:7a:36:63:0f:44:4d:ad:93:1f:b6:df:
20:79:d8:02:f6:95:f9:31:a2:a0:dd:11:fd:c9:c7:cf:80:6e:
58:ab:51:70:09:7e:ea:26:18:99:bc:54:85:d8:40:52:1a:87:
21:3e:20:df:bc:f8:94:cd:7b:c4:ba:38:8c:5c:17:3f:f8:8f:
54:04:f9:58:6f:cd:d0:2b:ff:d7:54:35:63:42:2d:84:cc:ee:
25:4f:38:43:98:6b:03:82:34:f2:a4:b6:4c:e4:f7:32:c1:6f:
c8:31:3d:79:3b:d5:9f:c8:20:ab:d2:3c:40:7d:da:1c:1e:ae:
f4:3b:35:85:41:3e:95:4a:ee:ab:77:94:d4:ca:34:f6:89:0c:
06:11:77:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 12:29:11 2025 by rpki-client