Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/bc9816-8d07-4afe-9ba0-cdef4a8205f6/1/GYGOjgcS8NdUN5LZwUwFKcQ9MLI.roa
File: GYGOjgcS8NdUN5LZwUwFKcQ9MLI.roa (raw, json)
Hash identifier: 3QEQCHBPviDYaVBqOWAcchqprjiizAcvIexptgL6QjA=
Subject key identifier: 19:81:8E:8E:07:12:F0:D7:54:37:92:D9:C1:4C:05:29:C4:3D:30:B2
Certificate issuer: /CN=045df450eacfdd679ef0d08c880a91fc75b8a897
Certificate serial: 157E49
Authority key identifier: 04:5D:F4:50:EA:CF:DD:67:9E:F0:D0:8C:88:0A:91:FC:75:B8:A8:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BF30UOrP3Wee8NCMiAqR_HW4qJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/bc9816-8d07-4afe-9ba0-cdef4a8205f6/1/GYGOjgcS8NdUN5LZwUwFKcQ9MLI.roa
Signing time: Thu 14 Apr 2022 16:04:29 +0000
ROA not before: Thu 14 Apr 2022 16:04:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206284
IP address blocks: 193.17.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1408585 (0x157e49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=045df450eacfdd679ef0d08c880a91fc75b8a897
Validity
Not Before: Apr 14 16:04:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=19818e8e0712f0d7543792d9c14c0529c43d30b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:51:99:ba:4e:21:b3:1c:49:cf:66:4e:1e:01:
47:4b:93:fe:9a:a6:c1:c5:14:5b:49:a0:39:f4:61:
14:c6:0c:d2:e6:82:a6:27:e5:33:ea:32:b7:71:b0:
1a:35:20:75:11:e9:03:7d:6e:9f:00:b8:3a:bb:9a:
4f:0b:4f:7c:e0:c8:68:54:78:f8:8c:17:eb:44:09:
14:be:0f:2d:11:26:08:3a:cb:fb:58:c9:2d:91:4b:
3b:9d:fe:a5:9b:46:8e:bb:b2:f9:c9:4b:5c:c1:9e:
5e:fc:75:43:3e:d2:e0:68:58:0d:65:dd:99:16:56:
da:62:94:30:6c:a2:04:43:5f:fd:65:ae:ee:8b:8d:
43:30:f5:8c:54:ac:04:4a:8c:85:16:ad:d3:e4:cf:
7b:db:a5:42:ec:2b:36:e1:fb:a3:b5:4c:13:4b:0b:
8a:c0:7c:79:47:d3:75:b7:b6:af:7c:05:b4:a0:4b:
c1:11:cb:93:8e:4b:2e:d7:75:e2:b7:81:6e:1c:2b:
ba:0d:13:a4:04:f4:53:d8:5c:50:53:0c:64:ae:ed:
1a:69:92:cf:ac:45:55:65:e1:55:d7:9d:cf:27:70:
1b:00:a5:e1:58:8f:3a:81:07:3d:0a:65:c4:a7:3e:
8b:2d:74:26:51:cf:0b:94:95:ca:dc:21:81:e6:75:
02:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:81:8E:8E:07:12:F0:D7:54:37:92:D9:C1:4C:05:29:C4:3D:30:B2
X509v3 Authority Key Identifier:
keyid:04:5D:F4:50:EA:CF:DD:67:9E:F0:D0:8C:88:0A:91:FC:75:B8:A8:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BF30UOrP3Wee8NCMiAqR_HW4qJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/bc9816-8d07-4afe-9ba0-cdef4a8205f6/1/GYGOjgcS8NdUN5LZwUwFKcQ9MLI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/bc9816-8d07-4afe-9ba0-cdef4a8205f6/1/BF30UOrP3Wee8NCMiAqR_HW4qJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.17.32.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:1b:f4:9a:0a:82:15:fa:11:f6:d2:28:4e:75:f7:02:1d:0c:
bf:58:03:ab:5e:b6:a0:1a:0a:ee:dd:bf:64:02:ec:de:7c:30:
29:08:b7:45:73:10:72:89:20:56:32:be:66:3f:99:c0:29:f9:
79:30:e1:94:90:c5:0a:c9:6f:ce:17:17:78:59:d5:d3:50:21:
dd:be:6b:0e:ae:cc:f7:0f:80:76:8a:30:c0:f5:f3:e6:38:68:
70:09:7e:4e:8d:1b:07:a0:81:b8:96:67:99:a8:f2:99:10:29:
b3:52:4c:02:61:02:f6:73:10:b8:4f:3b:63:f6:8c:83:c0:3e:
a4:47:29:1e:6a:bc:50:49:d7:2e:a6:4d:d3:6f:82:82:30:07:
4d:ea:60:fc:30:86:34:6d:54:f1:94:6e:fe:17:61:a6:4f:65:
bd:49:4a:ed:1b:85:d1:ad:11:c3:b1:ec:9e:a6:3d:57:1c:06:
e8:22:53:52:e1:e2:39:eb:9d:2d:6e:6c:99:f8:ae:0e:0b:8c:
e7:db:56:9f:55:37:4e:0d:24:8b:ce:a8:d6:a8:50:3c:80:1f:
e1:6d:88:ec:99:6a:11:97:34:43:b2:81:dc:55:e6:80:c1:a7:
fa:d4:7c:6f:76:b2:51:cb:d3:7f:b5:54:c7:60:b1:14:e9:0b:
c3:05:4c:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:41:51 2025 by rpki-client