Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/CSdBKAAdfW7cwun5izwk606xA6w.roa
File: CSdBKAAdfW7cwun5izwk606xA6w.roa (raw, json)
Hash identifier: Ig/6bzx+3zQBa9AHiPdoQd7yxLAcSLLT7yZ9/s6Z7Bk=
Subject key identifier: 09:27:41:28:00:1D:7D:6E:DC:C2:E9:F9:8B:3C:24:EB:4E:B1:03:AC
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 0194221F6E12B1C626F1ABDC48152E53981A
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/CSdBKAAdfW7cwun5izwk606xA6w.roa
Signing time: Wed 01 Jan 2025 13:47:52 +0000
ROA not before: Wed 01 Jan 2025 13:47:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61112
IP address blocks: 185.81.28.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:6e:12:b1:c6:26:f1:ab:dc:48:15:2e:53:98:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Jan 1 13:47:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=09274128001d7d6edcc2e9f98b3c24eb4eb103ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e8:48:e6:82:aa:15:44:13:3e:3d:8c:7f:a2:
42:8a:6b:d7:a7:e4:2e:84:22:64:35:60:8d:94:d4:
3f:db:ac:fa:65:85:6f:0c:b7:03:33:b6:5c:20:58:
e2:4b:c1:3d:8d:f5:36:ff:c6:ca:a2:ab:e0:d8:74:
26:0e:3c:d7:9c:20:b5:71:16:ed:c7:e1:1e:e4:f4:
85:b6:85:23:97:a4:ac:a8:17:9f:7c:db:46:99:2b:
07:2a:9a:eb:c0:d8:a6:f7:ea:2f:e7:d1:0b:5a:e8:
42:ab:d3:d1:13:de:61:97:4c:a2:99:bf:e1:5f:07:
91:27:aa:56:69:e7:b9:98:63:cd:ae:74:24:fb:e8:
72:9a:ad:f2:fb:57:91:e8:fe:53:9e:6d:6d:85:06:
a0:88:82:c1:96:48:ac:36:ce:f0:7e:8b:d4:31:34:
24:b2:f9:b4:ab:d0:bc:a5:d4:8c:7f:7c:a2:e2:6e:
a1:73:5d:da:0a:fa:c2:d4:43:19:cb:a4:93:37:79:
8d:c4:52:7f:2a:c9:30:fe:9f:65:ab:2e:f3:40:53:
bd:81:eb:af:03:b7:3d:37:c3:9c:b3:ef:dd:0d:31:
02:49:bb:9c:26:9c:64:dc:59:65:1c:d2:b0:6a:52:
a9:1d:64:a0:23:36:3f:7c:ff:36:a2:68:b1:17:7f:
f4:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:27:41:28:00:1D:7D:6E:DC:C2:E9:F9:8B:3C:24:EB:4E:B1:03:AC
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/CSdBKAAdfW7cwun5izwk606xA6w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.28.0/23
Signature Algorithm: sha256WithRSAEncryption
98:8b:d5:b3:4d:88:a6:db:20:58:74:aa:a3:29:c2:e0:c3:60:
a4:0d:7f:ef:8f:2f:a2:d0:9b:fe:3e:5b:cb:37:ee:c6:75:a6:
82:08:74:c0:04:6c:1d:76:1e:c0:a5:d1:af:4a:b2:90:8b:28:
0f:89:d2:04:0e:ca:62:2f:10:f3:80:8d:64:b7:f6:dd:b4:a1:
2a:ab:f1:8a:c6:9d:15:06:a9:ba:61:ee:ac:d2:d8:0f:21:16:
64:24:6d:45:1e:1d:f3:c2:01:1d:02:a0:b7:8a:3a:68:e9:26:
0f:aa:0b:63:22:45:ce:2e:51:bb:64:b2:d8:f4:a6:1f:b7:59:
e9:7f:02:54:6c:45:a2:29:da:9a:c6:2c:5a:b8:d2:15:28:f0:
58:6d:fa:87:67:57:cd:ee:3f:fd:55:7c:8c:5a:9d:7e:72:56:
89:56:aa:c7:d5:4e:61:87:c1:37:7c:5a:61:71:80:42:3a:48:
d3:47:0f:45:09:e2:a6:c9:ec:1c:0c:0d:66:d4:c9:53:a3:1a:
bd:7f:e7:9b:71:86:75:45:3c:7a:ae:25:5c:b3:85:09:ba:e9:
49:84:8e:8e:64:96:9f:1b:5b:af:76:f1:28:67:a4:a7:bd:bd:
e3:9a:b5:bd:72:5a:9e:fc:4b:61:fc:0a:81:63:d7:5f:3e:20:
ca:a8:38:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:27:42 2025 by rpki-client