Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/48cb86-2750-4d6a-8a71-1be525576863/1/GwBEBvAR3yW1yb3TXubMIRO8E1Q.roa
File: GwBEBvAR3yW1yb3TXubMIRO8E1Q.roa (raw, json)
Hash identifier: iwDyoZXcE/TXKl3z0rK73Cx1hbzOwSV8XOCkWp4O6nQ=
Subject key identifier: 1B:00:44:06:F0:11:DF:25:B5:C9:BD:D3:5E:E6:CC:21:13:BC:13:54
Certificate issuer: /CN=c8f6f5dec09bc7a1203045699ba058295d38e346
Certificate serial: 01857227CE1F4573C55D42FCB3C321FD4F39
Authority key identifier: C8:F6:F5:DE:C0:9B:C7:A1:20:30:45:69:9B:A0:58:29:5D:38:E3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yPb13sCbx6EgMEVpm6BYKV0440Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/48cb86-2750-4d6a-8a71-1be525576863/1/GwBEBvAR3yW1yb3TXubMIRO8E1Q.roa
Signing time: Mon 02 Jan 2023 11:04:49 +0000
ROA not before: Mon 02 Jan 2023 11:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207239
IP address blocks: 195.64.140.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:27:ce:1f:45:73:c5:5d:42:fc:b3:c3:21:fd:4f:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8f6f5dec09bc7a1203045699ba058295d38e346
Validity
Not Before: Jan 2 11:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b004406f011df25b5c9bdd35ee6cc2113bc1354
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:60:32:de:c7:5d:3e:62:48:7a:76:e5:0c:74:
2a:70:a2:6f:3e:40:85:b4:df:d2:17:3c:2c:dd:0e:
4f:73:c4:2d:94:ad:61:39:e1:73:9d:26:1d:b5:13:
0b:5e:f9:6e:96:bd:5c:1b:1e:f6:6f:02:4f:38:cb:
7c:a0:c2:4f:f8:e0:78:10:f9:e8:95:94:e8:df:59:
bd:19:c5:f7:cf:41:00:99:b6:52:de:0d:9b:91:64:
14:8a:ae:d4:f8:07:88:f2:1d:98:0d:8a:60:ed:ce:
a7:40:f0:48:de:0a:9e:05:17:18:5a:ea:ee:72:c7:
25:73:3a:72:90:a1:63:52:e2:c3:41:64:95:63:cb:
3a:8f:ee:10:c1:5c:04:64:10:8b:13:1c:41:01:d8:
54:97:c6:b4:ea:d6:00:e2:b4:6a:c5:11:5a:27:5c:
f2:df:8d:79:22:93:73:3c:be:35:7c:24:c5:f0:43:
54:d2:d7:f2:9b:8c:89:3c:f2:b3:5f:24:0d:59:10:
f3:61:88:05:13:32:73:61:f4:0a:77:65:70:ef:b6:
d3:71:44:6e:ea:54:b1:87:f2:0e:aa:70:49:4b:22:
c1:a6:8b:8f:6c:27:23:be:fc:23:26:83:3b:83:72:
ed:11:84:31:cc:76:99:5d:42:5b:ce:3c:72:36:61:
e8:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:00:44:06:F0:11:DF:25:B5:C9:BD:D3:5E:E6:CC:21:13:BC:13:54
X509v3 Authority Key Identifier:
keyid:C8:F6:F5:DE:C0:9B:C7:A1:20:30:45:69:9B:A0:58:29:5D:38:E3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yPb13sCbx6EgMEVpm6BYKV0440Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/48cb86-2750-4d6a-8a71-1be525576863/1/GwBEBvAR3yW1yb3TXubMIRO8E1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/48cb86-2750-4d6a-8a71-1be525576863/1/yPb13sCbx6EgMEVpm6BYKV0440Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.140.0/24
Signature Algorithm: sha256WithRSAEncryption
08:c5:8c:b0:ce:7b:b5:90:fe:8b:72:fc:71:b0:ec:8d:18:3c:
08:c2:3e:51:d9:62:0b:e7:23:bf:5d:5f:01:66:01:ed:3d:a3:
60:72:4a:99:87:76:60:77:a9:78:0d:df:2d:be:99:5d:82:bd:
c9:93:a8:e6:4e:c1:66:fa:97:fe:a6:00:c5:51:dd:2b:e4:96:
2d:d5:bc:1e:97:db:e1:fb:f3:1b:0f:a2:3a:2f:3d:d1:ea:9d:
ab:05:09:21:f8:f9:dc:6d:31:b8:01:87:6f:d3:37:e1:05:6b:
36:ad:58:42:92:e8:9f:91:17:41:6c:34:eb:05:a7:94:68:75:
a8:96:a2:43:12:c5:84:21:7c:47:8c:07:32:a8:16:1a:5a:d1:
7b:a9:e6:e1:47:0f:a9:89:dc:21:35:75:fc:1c:4a:b0:f0:88:
7d:2a:7f:f3:e6:94:29:da:38:38:ea:06:20:65:4d:d5:87:e2:
6f:76:47:03:19:4b:25:49:50:0b:42:a6:72:e3:fc:b9:ec:82:
6c:95:35:0b:b2:d5:d4:51:ad:81:5a:4e:fc:00:9a:37:01:cc:
56:e0:21:2f:d8:3b:fc:76:ce:e6:0e:b5:6c:b8:85:b0:72:33:
e2:0c:c9:0a:2a:36:22:51:ad:b3:bd:8f:16:00:da:cb:c0:cd:
22:e2:a3:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 18:44:22 2025 by rpki-client