Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/855755-c848-47a3-aba6-0876042a6c57/1/gXoM1G6bViF_pB4jEwWbn5BdPyI.roa
File: gXoM1G6bViF_pB4jEwWbn5BdPyI.roa (raw, json)
Hash identifier: mpo09ZpcSf8GKHXcXqHczCtUj/GvdNZzlDdv83MPNXA=
Subject key identifier: 81:7A:0C:D4:6E:9B:56:21:7F:A4:1E:23:13:05:9B:9F:90:5D:3F:22
Certificate issuer: /CN=8168598fea04d38c1bcfa327994aa09eedf30334
Certificate serial: 0230DD91
Authority key identifier: 81:68:59:8F:EA:04:D3:8C:1B:CF:A3:27:99:4A:A0:9E:ED:F3:03:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gWhZj-oE04wbz6MnmUqgnu3zAzQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/855755-c848-47a3-aba6-0876042a6c57/1/gXoM1G6bViF_pB4jEwWbn5BdPyI.roa
Signing time: Sat 01 Jan 2022 04:51:31 +0000
ROA not before: Sat 01 Jan 2022 04:51:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 139.28.240.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36756881 (0x230dd91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8168598fea04d38c1bcfa327994aa09eedf30334
Validity
Not Before: Jan 1 04:51:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=817a0cd46e9b56217fa41e2313059b9f905d3f22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d4:ce:2d:7e:6d:aa:4b:bf:6e:04:23:b1:a1:
01:52:ef:4d:b1:44:fd:96:e2:de:28:b2:f6:b3:c6:
43:ef:1f:d7:34:59:0b:c7:f9:a6:8a:57:7b:ca:74:
da:8c:b1:ce:20:ab:ed:b1:fb:38:41:45:f9:41:e8:
ed:3f:e6:57:ea:9f:a2:1d:31:5b:2a:d6:31:5d:1b:
62:02:92:5d:ab:70:10:bf:be:70:bd:0f:46:66:71:
ab:21:47:20:16:b6:e8:11:7a:2a:8c:ab:28:69:b6:
6b:3c:6a:ed:69:8c:1e:ae:2a:13:5d:8a:c7:43:be:
5a:6c:9d:71:d1:89:f3:ae:38:24:00:e1:d7:8e:01:
63:8e:7a:28:7f:ad:fd:ea:cb:20:be:0f:45:7a:2c:
7e:92:32:ef:31:68:f7:e3:94:8e:44:1b:10:ad:79:
33:c8:be:7b:8b:bc:6d:8d:17:2b:76:52:e3:71:e4:
43:f6:c4:0f:c6:da:2f:17:c7:4c:df:1f:d7:8f:b2:
ba:5d:9c:34:6e:9b:c9:06:fa:e6:76:23:59:0f:21:
10:e0:a1:54:cf:1c:90:b9:f7:5c:10:fa:79:70:92:
62:85:db:e4:2d:4e:a9:ff:e1:2a:0b:5c:f9:41:20:
b2:1d:a7:89:5d:8b:51:b3:b1:84:92:8b:20:22:43:
48:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:7A:0C:D4:6E:9B:56:21:7F:A4:1E:23:13:05:9B:9F:90:5D:3F:22
X509v3 Authority Key Identifier:
keyid:81:68:59:8F:EA:04:D3:8C:1B:CF:A3:27:99:4A:A0:9E:ED:F3:03:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gWhZj-oE04wbz6MnmUqgnu3zAzQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/855755-c848-47a3-aba6-0876042a6c57/1/gXoM1G6bViF_pB4jEwWbn5BdPyI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/855755-c848-47a3-aba6-0876042a6c57/1/gWhZj-oE04wbz6MnmUqgnu3zAzQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.240.0/22
Signature Algorithm: sha256WithRSAEncryption
24:45:bc:68:94:5f:df:ba:0c:9b:89:80:4d:07:7c:ab:27:57:
ff:bf:75:1a:1b:5f:91:63:70:8a:b4:1a:20:8c:2a:e5:b1:25:
24:31:ce:70:df:c8:38:9d:4c:f2:92:f2:92:64:cd:fd:62:77:
c1:00:d2:af:f1:cb:81:ea:4c:2f:b4:60:4e:fc:ae:57:aa:c5:
83:e2:8e:aa:16:6d:5c:40:1a:84:ff:28:22:90:ff:e4:20:4f:
61:0c:0b:e4:bc:15:2b:ca:4e:12:54:f6:ed:dd:d8:d3:2c:c1:
12:8b:d9:22:5a:d4:d5:40:61:aa:28:62:11:a7:c8:ef:38:a6:
ba:56:77:71:11:7a:ac:cb:00:74:33:1a:66:44:b4:0b:93:12:
30:91:eb:04:6f:8c:0c:9d:d2:0c:90:3f:9e:80:94:04:5a:4e:
be:15:1f:a7:cb:c1:b0:bb:ec:97:ed:be:f2:a1:94:3b:41:8e:
e7:05:06:4d:20:5d:64:00:b8:7d:8e:92:2f:f0:93:c2:10:02:
41:f0:9c:8c:62:03:92:e6:a7:1e:69:08:64:2a:9d:3b:be:d6:
83:29:68:b9:31:79:cc:1c:5c:a9:2d:68:83:69:47:2c:30:fa:
03:d8:34:ce:c1:1e:93:55:78:76:54:46:78:21:b4:73:06:51:
c7:a8:79:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:00:42 2025 by rpki-client