Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/d56693-2254-4a3b-acbb-efaaff0a982f/1/GJthzV3rWTVBkuWVSiVZr-ygCuc.roa
File: GJthzV3rWTVBkuWVSiVZr-ygCuc.roa (raw, json)
Hash identifier: bJsUnUr+qWlPUhvuDhnYSokcS5o4UVQTteebei57Gs8=
Subject key identifier: 18:9B:61:CD:5D:EB:59:35:41:92:E5:95:4A:25:59:AF:EC:A0:0A:E7
Certificate issuer: /CN=47d064fb3e541f23563065e48f300f2cfdfe009a
Certificate serial: 018303F308F56FAD1EFBE23276FAD735ADE9
Authority key identifier: 47:D0:64:FB:3E:54:1F:23:56:30:65:E4:8F:30:0F:2C:FD:FE:00:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R9Bk-z5UHyNWMGXkjzAPLP3-AJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/d56693-2254-4a3b-acbb-efaaff0a982f/1/GJthzV3rWTVBkuWVSiVZr-ygCuc.roa
Signing time: Sat 03 Sep 2022 15:23:22 +0000
ROA not before: Sat 03 Sep 2022 15:23:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 195.244.28.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:03:f3:08:f5:6f:ad:1e:fb:e2:32:76:fa:d7:35:ad:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47d064fb3e541f23563065e48f300f2cfdfe009a
Validity
Not Before: Sep 3 15:23:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=189b61cd5deb59354192e5954a2559afeca00ae7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:26:96:13:83:67:ea:8e:1f:79:41:c6:22:d9:
0d:11:c2:41:ef:b8:34:a3:ee:8e:87:83:78:72:4a:
6a:13:e4:4c:8f:f6:60:61:f0:ca:9c:b6:82:96:21:
4a:79:47:52:28:6a:0f:aa:c8:b9:6c:4b:66:10:ec:
e7:82:d5:a5:57:18:f5:be:6d:45:f6:0b:c7:c7:7c:
10:9f:72:b2:0e:70:19:6f:e3:a2:96:b0:c7:38:fb:
0f:bf:98:bb:e8:89:6b:97:68:b0:ee:04:61:bf:52:
44:7b:c8:ee:d9:08:54:75:27:67:95:4a:3e:00:18:
92:5c:24:fa:88:59:67:b8:a0:b7:77:06:4a:50:89:
3e:fb:59:4c:eb:82:56:f6:5c:4d:ba:29:18:18:bf:
5f:77:13:39:6e:ae:cb:88:16:43:48:24:6e:14:e9:
46:7f:26:61:c7:55:bf:45:95:27:2d:a0:e7:ac:00:
39:45:e6:66:8b:6b:fd:04:2d:d7:73:f5:19:e0:5a:
a1:d3:89:e3:a2:66:21:b4:8f:2f:b2:07:d5:66:e2:
25:9a:9e:b6:a1:65:46:6e:64:b3:e3:92:1a:3e:3d:
84:ee:5f:90:cd:6e:dd:f8:fc:bd:bf:81:2b:69:de:
b7:47:b8:7c:c7:49:05:71:f3:2e:d6:51:02:56:5f:
a6:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:9B:61:CD:5D:EB:59:35:41:92:E5:95:4A:25:59:AF:EC:A0:0A:E7
X509v3 Authority Key Identifier:
keyid:47:D0:64:FB:3E:54:1F:23:56:30:65:E4:8F:30:0F:2C:FD:FE:00:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R9Bk-z5UHyNWMGXkjzAPLP3-AJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d56693-2254-4a3b-acbb-efaaff0a982f/1/GJthzV3rWTVBkuWVSiVZr-ygCuc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d56693-2254-4a3b-acbb-efaaff0a982f/1/R9Bk-z5UHyNWMGXkjzAPLP3-AJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.244.28.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:52:b7:c9:83:eb:2c:fe:96:97:f0:6a:cb:18:26:83:8d:76:
a1:f4:bc:17:3d:44:aa:46:33:9b:c0:38:9d:ed:db:3b:bf:51:
76:92:8a:cd:a6:36:d9:7f:e0:0a:01:ec:69:5b:d7:5a:e3:3d:
24:dc:d1:65:ce:f3:3c:7a:9b:00:09:bd:a4:11:99:a9:bc:6c:
0d:40:39:25:4e:23:f2:ea:c8:41:6e:53:e1:23:61:37:8b:e1:
37:e7:83:d6:c0:4b:cb:97:e8:2f:61:f1:c6:b5:5b:ec:2a:17:
af:c0:49:cf:2f:63:88:42:f0:43:4c:ca:0c:18:9b:1d:3f:46:
2e:dd:ae:bd:88:5b:e8:ad:84:64:de:ad:52:3b:bd:e6:2b:de:
81:fc:81:57:25:b6:8e:82:1c:b4:cd:6c:95:04:09:1f:af:bc:
f4:b3:ed:38:b3:81:47:d6:a8:01:2a:1d:17:ea:ee:7a:51:c3:
57:67:67:c3:51:da:fc:28:59:07:00:91:e8:b3:ad:22:3e:bd:
70:1e:03:30:6c:d8:d3:b4:b5:15:42:52:f4:99:db:33:d0:fd:
69:78:dd:fa:2f:9b:69:75:44:3b:2d:e9:3f:df:7d:fb:61:3f:
d9:09:b7:e5:c6:a9:2d:08:3f:86:0b:77:32:19:c9:a1:48:81:
70:de:ae:cb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYMD8wj1b60e++IydvrXNa3pMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ3ZDA2NGZiM2U1NDFmMjM1NjMwNjVlNDhmMzAwZjJjZmRm
ZTAwOWEwHhcNMjIwOTAzMTUyMzIyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxODliNjFjZDVkZWI1OTM1NDE5MmU1OTU0YTI1NTlhZmVjYTAwYWU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApiaWE4Nn6o4feUHGItkNEcJB77g0
o+6Oh4N4ckpqE+RMj/ZgYfDKnLaCliFKeUdSKGoPqsi5bEtmEOzngtWlVxj1vm1F
9gvHx3wQn3KyDnAZb+OilrDHOPsPv5i76Ilrl2iw7gRhv1JEe8ju2QhUdSdnlUo+
ABiSXCT6iFlnuKC3dwZKUIk++1lM64JW9lxNuikYGL9fdxM5bq7LiBZDSCRuFOlG
fyZhx1W/RZUnLaDnrAA5ReZmi2v9BC3Xc/UZ4Fqh04njomYhtI8vsgfVZuIlmp62
oWVGbmSz45IaPj2E7l+QzW7d+Py9v4Erad63R7h8x0kFcfMu1lECVl+maQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBibYc1d61k1QZLllUolWa/soArnMB8GA1UdIwQY
MBaAFEfQZPs+VB8jVjBl5I8wDyz9/gCaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUjlCay16NVVIeU5XTUdYa2p6QVBMUDMtQUpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC9kNTY2OTMtMjI1NC00YTNiLWFjYmIt
ZWZhYWZmMGE5ODJmLzEvR0p0aHpWM3JXVFZCa3VXVlNpVlpyLXlnQ3VjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OC9kNTY2OTMtMjI1NC00YTNiLWFjYmItZWZhYWZmMGE5ODJm
LzEvUjlCay16NVVIeU5XTUdYa2p6QVBMUDMtQUpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBw/QcMA0G
CSqGSIb3DQEBCwUAA4IBAQB9UrfJg+ss/paX8GrLGCaDjXah9LwXPUSqRjObwDid
7ds7v1F2korNpjbZf+AKAexpW9da4z0k3NFlzvM8epsACb2kEZmpvGwNQDklTiPy
6shBblPhI2E3i+E354PWwEvLl+gvYfHGtVvsKhevwEnPL2OIQvBDTMoMGJsdP0Yu
3a69iFvorYRk3q1SO73mK96B/IFXJbaOghy0zWyVBAkfr7z0s+04s4FH1qgBKh0X
6u56UcNXZ2fDUdr8KFkHAJHos60iPr1wHgMwbNjTtLUVQlL0mdsz0P1peN36L5tp
dUQ7Lek/3337YT/ZCbflxqktCD+GC3cyGcmhSIFw3q7L
-----END CERTIFICATE-----
Generated at Sun Apr 6 23:44:33 2025 by rpki-client