Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/GPBna_IoKKdQyaNksGJT2yWTCj4.roa
File: GPBna_IoKKdQyaNksGJT2yWTCj4.roa (raw, json)
Hash identifier: TAihNlvs0SdUgl2vxovWMBnyUqa0RWqHLKo09+4ZR88=
Subject key identifier: 18:F0:67:6B:F2:28:28:A7:50:C9:A3:64:B0:62:53:DB:25:93:0A:3E
Certificate issuer: /CN=53799560453dcf4af31f9b2a40cd238b8457c5de
Certificate serial: 01941F8C1D5720757908761179D8EC0CFEF0
Authority key identifier: 53:79:95:60:45:3D:CF:4A:F3:1F:9B:2A:40:CD:23:8B:84:57:C5:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U3mVYEU9z0rzH5sqQM0ji4RXxd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/GPBna_IoKKdQyaNksGJT2yWTCj4.roa
Signing time: Wed 01 Jan 2025 01:47:43 +0000
ROA not before: Wed 01 Jan 2025 01:47:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205176
IP address blocks: 185.227.116.0/22 maxlen: 22
185.227.116.0/24 maxlen: 24
2a0c:aa00::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:1d:57:20:75:79:08:76:11:79:d8:ec:0c:fe:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53799560453dcf4af31f9b2a40cd238b8457c5de
Validity
Not Before: Jan 1 01:47:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=18f0676bf22828a750c9a364b06253db25930a3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:99:36:1b:41:76:87:94:89:9f:bf:cf:f0:7a:
c7:49:f2:39:8f:0a:76:83:2b:7e:06:71:78:89:40:
23:1f:0d:ec:a3:2c:27:6e:bb:62:84:cb:b6:e3:74:
d3:93:29:cd:98:81:c9:97:73:d1:7b:4b:ac:87:3a:
c1:f2:e3:4b:8b:7a:29:5f:44:fd:a6:c8:ed:d9:84:
77:7f:bb:04:54:32:77:12:0c:8f:5b:af:39:48:15:
63:e5:1c:e1:92:83:bd:f6:15:43:9a:d4:90:91:3a:
77:bc:17:a9:92:aa:1d:f7:82:cc:ab:90:90:05:8d:
f8:4f:85:22:2b:a0:ec:70:5c:76:09:21:95:ed:2e:
08:16:71:26:5d:b9:c6:ae:3b:e5:51:3e:d4:9d:8a:
a5:f3:34:88:22:ed:66:db:41:2c:80:c2:39:50:e5:
e6:ff:83:95:3a:5a:15:c7:0c:ba:e5:f5:31:dc:d2:
05:49:cc:2b:26:bc:31:c6:78:dd:11:b3:5b:7d:9c:
09:f4:b5:b6:1b:3f:2c:e7:a0:ce:89:91:55:13:e8:
3a:26:88:e5:5d:a0:a5:6e:78:cf:7e:9c:95:7e:73:
ba:64:1d:be:3c:1e:7d:8e:44:a6:82:92:ed:a2:ac:
af:e8:0f:a1:51:e4:43:9f:b8:41:db:7c:bd:80:e3:
45:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:F0:67:6B:F2:28:28:A7:50:C9:A3:64:B0:62:53:DB:25:93:0A:3E
X509v3 Authority Key Identifier:
keyid:53:79:95:60:45:3D:CF:4A:F3:1F:9B:2A:40:CD:23:8B:84:57:C5:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U3mVYEU9z0rzH5sqQM0ji4RXxd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/GPBna_IoKKdQyaNksGJT2yWTCj4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/U3mVYEU9z0rzH5sqQM0ji4RXxd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.227.116.0/22
IPv6:
2a0c:aa00::/29
Signature Algorithm: sha256WithRSAEncryption
52:31:04:13:b8:d3:6d:b0:fa:24:45:1f:e5:85:ab:26:35:d7:
74:dc:1e:03:0d:be:79:f8:99:51:9e:85:57:90:4e:a5:86:a5:
71:b0:59:03:b8:30:1b:55:31:10:c8:81:5d:8e:56:5e:4b:53:
67:0a:be:c7:59:d5:e3:90:fd:d7:a4:fb:18:fb:88:ec:a2:c2:
63:e6:35:87:37:47:ce:ca:c4:76:24:52:5b:3a:25:e4:c3:25:
e1:15:88:cb:db:12:75:2c:b6:a3:56:c3:3e:fc:92:2e:1e:a3:
37:07:26:29:00:de:74:53:8f:e4:3c:5a:a7:4f:96:54:f4:3e:
0a:65:b8:0f:ec:b6:15:64:f6:8c:ab:eb:56:7a:5e:26:98:4a:
b4:6e:56:94:7b:85:af:b5:d5:c2:5f:ea:94:ea:ea:9e:e3:f9:
07:ff:4e:fe:06:2b:d7:33:4d:13:31:73:fd:cf:da:23:6a:f5:
22:80:a4:4a:d5:b1:a4:5f:3b:8b:3a:13:c7:3a:51:b1:0f:38:
a0:6a:c8:cf:db:83:d0:00:61:d1:93:9f:4c:c9:cf:9d:78:28:
b7:16:0d:0f:be:42:0d:e2:90:dd:a3:be:ea:e9:11:7f:77:5d:
25:8f:ab:d2:55:04:d9:21:1d:12:c9:6d:cb:80:c1:21:a3:c9:
0f:80:14:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 13:05:45 2025 by rpki-client