Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/daff4f-42e1-4fef-a4e8-9ef964c6b569/1/GmaH8MZ3jCgRApr3O8r29Yf_Y3Q.roa
File: GmaH8MZ3jCgRApr3O8r29Yf_Y3Q.roa (raw, json)
Hash identifier: AEnGSZrZpoD1Upi5w+g/lTP/rNSH8wfnp2lbDGvoLts=
Subject key identifier: 1A:66:87:F0:C6:77:8C:28:11:02:9A:F7:3B:CA:F6:F5:87:FF:63:74
Certificate issuer: /CN=0378e22b02510d29f8c184a6f663eb98fd1d6aa7
Certificate serial: 0185723A3A689AF7CF38C99AE22053B88C41
Authority key identifier: 03:78:E2:2B:02:51:0D:29:F8:C1:84:A6:F6:63:EB:98:FD:1D:6A:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A3jiKwJRDSn4wYSm9mPrmP0daqc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/daff4f-42e1-4fef-a4e8-9ef964c6b569/1/GmaH8MZ3jCgRApr3O8r29Yf_Y3Q.roa
Signing time: Mon 02 Jan 2023 11:24:56 +0000
ROA not before: Mon 02 Jan 2023 11:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56457
IP address blocks: 185.201.254.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:3a:3a:68:9a:f7:cf:38:c9:9a:e2:20:53:b8:8c:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0378e22b02510d29f8c184a6f663eb98fd1d6aa7
Validity
Not Before: Jan 2 11:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a6687f0c6778c2811029af73bcaf6f587ff6374
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:17:1c:73:a5:d1:e6:10:44:16:c8:f9:9e:49:
e1:ef:c2:43:73:bf:25:2d:87:66:d8:40:78:ef:77:
63:4c:00:fc:b9:c0:62:02:5e:f2:4f:0a:7f:1e:3f:
6b:9d:07:8c:49:9e:56:61:0c:7d:12:ca:d7:14:de:
c3:1e:76:93:6c:e0:d6:ce:99:3e:e3:2b:d2:e2:21:
9a:c0:f0:47:03:3e:78:4a:dd:da:f2:ba:30:89:e2:
2d:2b:bf:8e:4c:3d:be:7c:e9:4c:f5:0d:03:90:a8:
61:94:e9:05:97:f0:42:ab:ed:7b:bb:ee:07:cb:a1:
b1:19:40:9d:36:c5:ce:9f:e5:06:1f:38:71:30:80:
cd:8a:e6:48:6c:f1:48:01:bf:c8:29:25:d2:a2:63:
bc:de:07:95:dd:83:1e:02:93:6d:12:5d:61:dc:33:
d2:f9:c9:fb:20:46:c6:af:f9:cf:95:2c:7c:5c:cf:
6f:3b:68:74:ce:81:bf:d8:d6:67:b2:5b:63:7e:a7:
5b:76:f9:64:3f:0a:23:08:3c:6c:a5:f0:09:88:a6:
3a:25:37:f7:9a:aa:99:f3:d7:ca:e3:b7:3c:59:c1:
f1:93:1d:9d:ff:8e:85:25:24:fc:92:45:54:59:e8:
9d:17:c7:d5:36:a4:5c:b1:a9:86:29:3c:35:2c:d2:
d3:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:66:87:F0:C6:77:8C:28:11:02:9A:F7:3B:CA:F6:F5:87:FF:63:74
X509v3 Authority Key Identifier:
keyid:03:78:E2:2B:02:51:0D:29:F8:C1:84:A6:F6:63:EB:98:FD:1D:6A:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A3jiKwJRDSn4wYSm9mPrmP0daqc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/daff4f-42e1-4fef-a4e8-9ef964c6b569/1/GmaH8MZ3jCgRApr3O8r29Yf_Y3Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/daff4f-42e1-4fef-a4e8-9ef964c6b569/1/A3jiKwJRDSn4wYSm9mPrmP0daqc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.201.254.0/24
Signature Algorithm: sha256WithRSAEncryption
01:d3:52:cc:03:4b:61:3e:60:3a:a5:83:10:8f:07:ec:1c:da:
05:b1:3f:ae:2d:19:be:56:e7:48:79:cd:96:7e:a0:2a:65:19:
44:7f:6c:59:26:6f:e8:2c:0c:fc:bd:c9:bc:de:bc:b5:7a:d8:
d0:c6:8a:4d:10:22:8c:a2:45:1c:d5:4c:96:43:2f:82:af:ca:
1b:10:27:c2:48:6a:74:77:2b:c8:9b:ba:2e:58:0d:f7:55:f8:
5b:fa:24:d5:ad:3b:34:28:f4:5d:ff:a7:36:4c:4b:59:90:54:
b7:df:cf:86:4c:71:b5:ed:87:aa:cc:ec:73:94:84:ff:6d:74:
fb:d0:47:3f:0a:01:de:11:85:9a:3f:30:4b:7a:a4:fe:4c:57:
9c:eb:e0:27:c8:c0:2b:03:fa:72:58:bf:48:88:f2:40:8c:dd:
8d:b5:8a:a1:49:da:9d:e7:45:99:67:6a:17:34:c1:cd:2b:c0:
52:d5:95:15:f6:2f:3a:8b:6c:7b:6c:73:47:88:7d:ac:6e:57:
ec:89:87:f6:6d:4f:a3:6c:a8:45:3d:75:eb:1a:8a:98:2b:68:
5a:ee:0e:f1:23:5f:2f:bf:f0:6b:0b:ea:b1:46:c7:a6:6d:e3:
f4:29:a0:83:3c:66:7b:fb:17:2a:3e:2c:37:a3:d9:52:3c:a6:
9f:bb:56:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:12:38 2025 by rpki-client