Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/8d9f77-4684-4d82-ae38-31e50bab716e/1/gq5QbYLmKExu3_jiX8nvuPbkj4s.roa
File: gq5QbYLmKExu3_jiX8nvuPbkj4s.roa (raw, json)
Hash identifier: CUD+O9KICmmQQx1gdUSevF1umi42aYgBLH/jxWWsdAY=
Subject key identifier: 82:AE:50:6D:82:E6:28:4C:6E:DF:F8:E2:5F:C9:EF:B8:F6:E4:8F:8B
Certificate issuer: /CN=7c57532e1cfd31c72732e44e3539ff6e096c2a47
Certificate serial: 0194266A0B4B5385ED291EEC949A1B07210B
Authority key identifier: 7C:57:53:2E:1C:FD:31:C7:27:32:E4:4E:35:39:FF:6E:09:6C:2A:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fFdTLhz9MccnMuRONTn_bglsKkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/8d9f77-4684-4d82-ae38-31e50bab716e/1/gq5QbYLmKExu3_jiX8nvuPbkj4s.roa
Signing time: Thu 02 Jan 2025 09:47:51 +0000
ROA not before: Thu 02 Jan 2025 09:47:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209242
IP address blocks: 213.241.198.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6a:0b:4b:53:85:ed:29:1e:ec:94:9a:1b:07:21:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c57532e1cfd31c72732e44e3539ff6e096c2a47
Validity
Not Before: Jan 2 09:47:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=82ae506d82e6284c6edff8e25fc9efb8f6e48f8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:20:a5:67:d7:c7:9b:e2:47:17:5a:92:dc:8a:
58:ee:f8:e9:1f:c2:ec:9b:75:ea:77:d3:b2:96:9a:
aa:96:cf:90:4c:84:41:84:47:49:92:8e:5c:0c:b2:
3d:d7:c4:9f:94:ff:69:c2:6e:a5:38:4a:bb:1a:4b:
7a:e3:52:f7:66:e6:9a:e9:98:ed:a4:bc:82:72:ca:
03:f4:3f:4a:48:31:c0:bc:81:56:81:28:a3:45:ec:
e2:6c:70:8f:19:15:7d:49:5f:f7:17:66:a0:b9:34:
c6:91:de:59:8f:73:e5:f1:f7:1f:9c:87:c7:f7:d2:
b9:d0:6f:32:84:33:d4:bb:d1:f2:c4:b9:b1:ea:12:
e6:b4:db:1b:ea:25:53:7e:d4:4c:ec:42:77:dc:48:
d0:1d:33:a8:61:0e:1d:69:15:bc:57:00:de:10:13:
f4:cb:37:28:e4:4d:31:21:b8:7a:35:00:89:2c:5c:
31:e6:2c:4a:30:e4:70:78:7a:75:9e:b8:e3:b2:bf:
0d:c0:6c:a0:7b:8c:37:62:4b:22:d9:b6:db:4d:fa:
56:5f:ae:fc:4b:cf:28:25:bd:33:a5:47:37:a4:99:
bb:a2:79:b9:fe:c4:53:5d:bd:30:ac:b1:67:02:d7:
78:65:06:22:87:8a:3f:55:d1:27:02:6f:80:55:55:
b7:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:AE:50:6D:82:E6:28:4C:6E:DF:F8:E2:5F:C9:EF:B8:F6:E4:8F:8B
X509v3 Authority Key Identifier:
keyid:7C:57:53:2E:1C:FD:31:C7:27:32:E4:4E:35:39:FF:6E:09:6C:2A:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fFdTLhz9MccnMuRONTn_bglsKkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/8d9f77-4684-4d82-ae38-31e50bab716e/1/gq5QbYLmKExu3_jiX8nvuPbkj4s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/8d9f77-4684-4d82-ae38-31e50bab716e/1/fFdTLhz9MccnMuRONTn_bglsKkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.241.198.0/24
Signature Algorithm: sha256WithRSAEncryption
99:64:35:91:de:b9:3e:d1:8b:19:6b:e3:98:e3:79:f0:0a:4b:
a3:fd:15:8a:a2:a7:05:77:09:3f:fa:2a:14:c7:46:77:a4:bf:
60:66:ee:91:a1:22:b8:28:b4:9e:be:f7:a1:38:1b:08:5f:9f:
21:e4:9b:e5:ed:dd:ad:23:78:ce:2e:dc:e5:be:31:1f:e4:24:
b6:20:92:2c:11:52:8e:47:d3:2f:b9:c3:61:93:29:9f:a0:51:
82:72:ff:74:23:95:63:fd:a6:78:30:e5:84:f9:c7:00:0e:fa:
34:be:ea:41:70:b8:de:30:1c:f3:3c:86:06:69:36:d0:3e:7d:
d4:68:ac:4a:c4:2a:3a:07:51:d3:d7:0c:68:d4:86:3a:25:86:
0d:c8:68:3c:27:9d:0d:7f:fe:8d:e4:dc:75:5f:d6:94:bf:24:
3a:7e:f8:43:c2:9e:d1:45:fd:83:1b:a7:1b:31:1a:e9:e3:29:
48:be:d4:e9:78:c7:25:8b:8e:5a:d7:11:57:7c:b4:0f:34:7f:
61:5e:b3:da:69:dd:87:57:44:46:9c:5b:b1:ab:83:22:67:24:
27:77:4f:65:97:43:60:b5:c4:25:56:69:a6:7f:aa:f0:e3:f3:
47:d8:2b:4d:bc:11:5e:71:84:b1:77:0c:67:67:2d:98:7b:9d:
a4:a1:0f:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 07:54:25 2025 by rpki-client