Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/r-ggwCVFmskxMtVMAzwWBvfl0Ds.roa
File: r-ggwCVFmskxMtVMAzwWBvfl0Ds.roa (raw, json)
Hash identifier: ZjdaN3kioLgeT6T34/svX4xBTdG4loKLwJmXlzvOenU=
Subject key identifier: AF:E8:20:C0:25:45:9A:C9:31:32:D5:4C:03:3C:16:06:F7:E5:D0:3B
Certificate issuer: /CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d
Certificate serial: 19F882
Authority key identifier: 79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/r-ggwCVFmskxMtVMAzwWBvfl0Ds.roa
Signing time: Tue 18 Jan 2022 02:45:33 +0000
ROA not before: Tue 18 Jan 2022 02:45:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210000
IP address blocks: 194.156.188.0/24 maxlen: 24
2a12:3fc0:7d12::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1702018 (0x19f882)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d
Validity
Not Before: Jan 18 02:45:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=afe820c025459ac93132d54c033c1606f7e5d03b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:3f:76:91:26:00:5d:0b:e5:2e:c3:fc:63:57:
f7:04:ac:b7:b7:6c:aa:35:e8:0b:3d:97:d0:ed:cb:
07:64:d3:57:75:09:2f:f4:65:88:ff:4c:e7:31:11:
24:93:d2:7e:dc:ea:8a:23:e3:07:07:44:90:9b:9b:
6a:e9:af:2b:10:eb:f6:ca:a6:d1:62:ac:69:60:2d:
62:40:fb:60:44:2c:64:19:e8:0f:e0:c4:86:55:c7:
3b:3b:29:bc:be:34:0d:77:15:de:d7:2b:6c:b9:41:
8f:c7:c0:51:c8:8a:67:9c:f0:a7:8c:59:22:2c:a5:
fe:17:aa:43:d7:a1:8c:5f:53:ce:d5:68:95:aa:d7:
31:57:15:a1:23:07:3e:fc:31:50:d9:bd:9a:60:8f:
be:c9:86:76:d2:c6:6c:5b:91:ce:69:79:1d:b7:b6:
82:e4:f5:2a:da:0b:23:fa:e2:f6:cb:56:b1:98:d9:
14:81:f0:57:1d:8c:c4:ab:c1:27:4a:4f:7e:28:ab:
b1:95:81:73:43:7d:3a:4b:71:b3:ec:6f:2b:16:71:
ae:4e:54:eb:35:5a:5c:4d:f2:9e:b5:cf:49:83:5f:
2b:18:41:67:e9:d0:82:62:a4:d8:be:c7:5a:b7:0a:
8c:c0:06:26:fb:38:39:be:20:7c:66:26:41:d2:99:
fa:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:E8:20:C0:25:45:9A:C9:31:32:D5:4C:03:3C:16:06:F7:E5:D0:3B
X509v3 Authority Key Identifier:
keyid:79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/r-ggwCVFmskxMtVMAzwWBvfl0Ds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.156.188.0/24
IPv6:
2a12:3fc0:7d12::/48
Signature Algorithm: sha256WithRSAEncryption
a6:4a:df:b7:21:e1:c6:ed:57:2b:6d:f2:31:e5:f9:78:11:85:
68:e4:46:c6:53:9d:a1:21:e1:a6:fe:94:dd:ed:c1:1e:ee:e9:
c6:29:b9:5b:8a:19:8c:0c:19:47:d3:2d:e0:99:48:e0:90:d9:
b1:ac:c8:fb:d4:ae:97:91:5d:d1:26:bc:f3:8c:99:f6:4f:7d:
15:08:15:83:ff:2d:35:a4:96:be:11:01:57:2b:71:00:76:55:
1a:86:50:f4:e1:c6:09:6d:93:68:0f:ac:51:28:4d:1f:68:a4:
39:56:41:7b:b7:ae:20:23:6f:f0:d3:f6:5b:63:00:78:31:e4:
04:78:1b:6e:f7:30:e5:21:60:22:43:78:89:c5:35:50:5c:a7:
fb:ca:a3:e2:a7:7a:b0:48:b3:7f:e4:58:e8:0d:de:bb:d5:d1:
60:49:9b:57:39:b1:72:b3:0a:bc:69:23:99:75:b2:91:b3:45:
37:22:64:89:40:87:3f:aa:c0:ff:c8:23:22:29:aa:70:25:30:
81:2b:98:de:79:dd:f8:c8:22:70:2b:bf:4b:6f:0c:ce:36:14:
b4:ad:1f:b7:54:2e:9e:ef:9b:63:c0:78:b1:51:9f:3a:fc:5d:
15:17:74:c5:ba:be:af:a0:be:24:d2:d9:5e:62:cd:a4:ca:e1:
c3:e0:70:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:56:14 2025 by rpki-client