Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/b4e503-574b-4565-9217-c511a3e912b6/1/GSndTXoc8xWBynRYSOSImTWizWI.roa
File: GSndTXoc8xWBynRYSOSImTWizWI.roa (raw, json)
Hash identifier: m9YHTlxhLFxSnEdQXQV56My1RhJzuPVGWH107hhpQxQ=
Subject key identifier: 19:29:DD:4D:7A:1C:F3:15:81:CA:74:58:48:E4:88:99:35:A2:CD:62
Certificate issuer: /CN=e4c86da3f483246518d368034bc86113906a55a3
Certificate serial: 019420681E3846463C75C970BB77E6B59234
Authority key identifier: E4:C8:6D:A3:F4:83:24:65:18:D3:68:03:4B:C8:61:13:90:6A:55:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Mhto_SDJGUY02gDS8hhE5BqVaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/b4e503-574b-4565-9217-c511a3e912b6/1/GSndTXoc8xWBynRYSOSImTWizWI.roa
Signing time: Wed 01 Jan 2025 05:48:01 +0000
ROA not before: Wed 01 Jan 2025 05:48:01 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6762
IP address blocks: 185.10.120.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:1e:38:46:46:3c:75:c9:70:bb:77:e6:b5:92:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4c86da3f483246518d368034bc86113906a55a3
Validity
Not Before: Jan 1 05:48:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1929dd4d7a1cf31581ca745848e4889935a2cd62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:86:14:60:b5:2c:2a:56:1e:aa:a9:67:63:ce:
fb:d9:35:95:39:c8:98:4c:fb:96:1b:21:08:ef:48:
83:f3:4f:fd:d6:1a:57:84:d5:3a:f9:57:0e:45:21:
da:09:ba:5b:d2:40:e2:cd:99:c8:51:c1:d5:df:16:
58:dd:fc:f0:eb:d0:e1:1c:1d:8b:97:1e:56:f1:c4:
30:31:69:03:01:4b:ce:16:0c:14:58:4b:9e:71:a7:
ae:3e:30:1f:10:ae:c8:84:89:e5:87:ef:42:68:ca:
5b:5b:11:92:d4:fe:95:16:b0:17:a7:03:88:76:cf:
0c:e6:58:11:82:19:6f:21:2e:ba:60:6b:d2:24:4f:
a2:19:eb:8a:1d:1f:29:86:03:aa:43:ee:7c:b9:3c:
9c:19:79:7e:50:10:94:fe:d8:d9:5e:72:29:26:61:
f5:86:15:d1:3f:3e:03:a3:bd:a5:d0:95:9d:3f:b0:
dc:26:ed:c9:76:f1:a1:c0:44:e0:18:1d:8c:a9:04:
7d:68:8b:c3:46:14:6f:18:f7:7b:b5:9d:08:d0:a2:
99:9c:ab:52:e0:c3:04:2a:fc:2b:76:cc:d3:8a:f3:
d6:18:80:03:81:35:b4:e2:81:e0:3e:0c:31:1e:49:
fe:1f:78:73:18:4f:57:aa:50:7d:e8:fb:9e:2e:e4:
b1:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:29:DD:4D:7A:1C:F3:15:81:CA:74:58:48:E4:88:99:35:A2:CD:62
X509v3 Authority Key Identifier:
keyid:E4:C8:6D:A3:F4:83:24:65:18:D3:68:03:4B:C8:61:13:90:6A:55:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Mhto_SDJGUY02gDS8hhE5BqVaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/b4e503-574b-4565-9217-c511a3e912b6/1/GSndTXoc8xWBynRYSOSImTWizWI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/b4e503-574b-4565-9217-c511a3e912b6/1/5Mhto_SDJGUY02gDS8hhE5BqVaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.10.120.0/23
Signature Algorithm: sha256WithRSAEncryption
84:7e:7f:10:7a:59:4c:e9:b9:5c:9b:6e:ba:03:28:33:83:7e:
6d:2f:a3:4c:90:df:02:45:a0:3b:38:4e:50:e9:cc:7c:80:3a:
3d:00:89:fe:cc:df:6a:9a:ee:85:be:7b:2a:6d:5e:a0:73:5d:
92:84:51:ef:03:e7:f8:27:f8:7b:42:b6:cf:b3:52:4e:86:10:
e0:ec:14:98:04:29:bb:77:87:34:6b:ef:25:c6:36:5c:25:e9:
e7:44:6d:c8:93:f2:08:5f:06:19:da:e6:b1:9f:43:dd:3c:a2:
a7:47:e4:a8:38:a7:f2:4e:7e:47:cc:5f:e0:94:27:e9:4a:4d:
ee:22:cc:f2:6a:3e:6d:9f:d4:fd:cf:70:32:27:ed:93:25:b3:
c9:af:39:24:7a:64:1d:a2:5b:15:6b:a5:3d:8e:a8:92:95:d9:
64:60:51:5f:14:8d:55:87:c8:51:20:8f:ad:fb:48:3c:d6:30:
11:cd:02:61:0d:05:f3:10:19:40:7f:20:c8:ca:80:63:e4:7b:
3f:0e:e8:d9:8d:4e:85:55:6c:93:a2:ca:3f:a9:d7:f2:4f:bb:
dd:30:bc:42:b6:87:e1:b2:c1:ca:b7:3b:7f:e2:d4:f1:de:47:
e0:4d:02:92:c5:05:a0:1f:b1:2a:36:b8:1f:f7:ab:51:e3:84:
10:3a:28:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:35:22 2025 by rpki-client