Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/03160f-1f57-4d02-86e7-78d09b48be06/1/GRgTWLUWhElPgzejA186MjYgaWw.roa
File: GRgTWLUWhElPgzejA186MjYgaWw.roa (raw, json)
Hash identifier: c7XcovcHvLz3So7L6h1WHDYf+sk21OPyBmYraA//f7w=
Subject key identifier: 19:18:13:58:B5:16:84:49:4F:83:37:A3:03:5F:3A:32:36:20:69:6C
Certificate issuer: /CN=3b642a0e74ac3d26fdf1bf66b1778c348884b577
Certificate serial: 0111FE15
Authority key identifier: 3B:64:2A:0E:74:AC:3D:26:FD:F1:BF:66:B1:77:8C:34:88:84:B5:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O2QqDnSsPSb98b9msXeMNIiEtXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/03160f-1f57-4d02-86e7-78d09b48be06/1/GRgTWLUWhElPgzejA186MjYgaWw.roa
Signing time: Sat 01 Jan 2022 10:56:40 +0000
ROA not before: Sat 01 Jan 2022 10:56:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48314
IP address blocks: 152.89.236.0/24 maxlen: 24
152.89.237.0/24 maxlen: 24
152.89.238.0/24 maxlen: 24
152.89.239.0/24 maxlen: 24
152.89.236.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17956373 (0x111fe15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b642a0e74ac3d26fdf1bf66b1778c348884b577
Validity
Not Before: Jan 1 10:56:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=19181358b51684494f8337a3035f3a323620696c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d3:61:07:6c:a1:7d:19:33:97:92:b5:23:f5:
90:ed:bd:6d:16:45:3c:2c:d3:67:b6:47:62:61:c6:
7a:98:68:1f:c4:b8:d5:8b:c8:67:da:d4:b9:0f:e4:
c0:36:d6:6b:3c:f5:6b:4a:02:45:9c:e0:f8:a7:cf:
85:57:85:3d:f0:86:87:c1:a7:ac:2f:5d:b7:1e:82:
9c:63:5f:79:ba:dd:5d:60:da:b6:a4:6f:95:a3:6a:
33:e7:fe:5d:33:a2:28:8d:28:42:73:1b:20:7e:ee:
17:32:b1:a0:24:a4:20:9f:af:50:5a:c5:91:5a:bf:
bb:4b:89:bd:44:59:e8:2c:a8:2b:aa:cb:b4:af:78:
2d:18:b0:f1:20:3e:a3:99:9b:66:5c:68:7f:87:24:
50:56:13:12:31:06:8e:83:96:4c:de:96:9f:70:d3:
33:b2:fc:2f:70:4d:e6:94:6a:48:ee:9a:c0:24:f4:
75:a6:24:12:4f:53:05:f8:42:96:d5:61:12:30:30:
9b:37:60:19:6e:c4:fd:2e:4a:8b:fa:d2:1d:7a:5e:
6b:a3:4a:37:0c:f2:b6:36:17:ee:51:c7:be:cd:1c:
ef:07:3e:dc:99:9b:ce:44:a1:7d:a1:59:58:ee:27:
6f:5e:1e:e6:7e:5a:4b:6f:0f:1d:e5:c4:0b:27:dc:
69:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:18:13:58:B5:16:84:49:4F:83:37:A3:03:5F:3A:32:36:20:69:6C
X509v3 Authority Key Identifier:
keyid:3B:64:2A:0E:74:AC:3D:26:FD:F1:BF:66:B1:77:8C:34:88:84:B5:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O2QqDnSsPSb98b9msXeMNIiEtXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/03160f-1f57-4d02-86e7-78d09b48be06/1/GRgTWLUWhElPgzejA186MjYgaWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/03160f-1f57-4d02-86e7-78d09b48be06/1/O2QqDnSsPSb98b9msXeMNIiEtXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.89.236.0/22
Signature Algorithm: sha256WithRSAEncryption
ac:c1:62:dd:33:3f:64:2f:9d:96:96:6a:9f:34:45:c7:6c:91:
3f:57:61:77:fc:7f:a5:75:a5:d3:58:06:9f:d1:2c:c6:3a:c9:
76:04:98:ff:67:ac:64:a0:32:cd:7b:1b:e2:2f:79:a3:8c:a7:
1f:2c:61:d8:e7:52:46:05:4b:ac:bb:44:1b:9e:61:68:b7:3c:
91:80:19:35:93:18:85:4f:cc:e9:b5:e6:de:66:03:62:b8:1c:
9e:4f:76:33:a7:8a:6e:5d:27:d3:7f:58:b8:47:b1:fa:23:24:
56:75:9a:a8:46:4a:63:66:0a:fd:0f:34:46:cd:36:30:79:f1:
e1:6a:f4:60:8d:9d:95:66:c8:c7:77:96:9b:51:f7:5c:46:7f:
ad:8f:ef:c5:36:1e:0c:07:8c:8a:df:af:fd:34:84:f1:82:48:
a7:64:2b:ce:b3:19:d6:fa:88:6a:9a:bc:3f:2c:38:68:5b:a1:
50:32:cc:0c:1b:67:a1:a3:b2:c7:2d:ed:8c:04:7b:6c:77:98:
85:40:b5:a5:6d:55:b5:a8:23:99:ce:11:17:3b:71:7d:5e:d9:
9c:a1:37:d7:72:fe:0f:1f:ef:f3:6c:f3:f5:ab:07:bf:9f:2c:
f5:7a:f8:76:03:a7:c1:96:29:3c:ee:8c:be:1b:0d:cf:fd:9e:
3f:c2:4e:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:44 2025 by rpki-client