Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/5c7c7d-4d2e-483c-89cd-26816ca92ca0/1/GgNgTlMDxBI-sgP8SMSjTw_F_VM.roa
File: GgNgTlMDxBI-sgP8SMSjTw_F_VM.roa (raw, json)
Hash identifier: Ty+cmkaaAA9T426GZvZYK5GuygToSIgMx8Djs4PimfU=
Subject key identifier: 1A:03:60:4E:53:03:C4:12:3E:B2:03:FC:48:C4:A3:4F:0F:C5:FD:53
Certificate issuer: /CN=1954e32570bbfb9af11c2381e81c797c2f40087c
Certificate serial: 01942068152E59F61F5B29A1A555C613047E
Authority key identifier: 19:54:E3:25:70:BB:FB:9A:F1:1C:23:81:E8:1C:79:7C:2F:40:08:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GVTjJXC7-5rxHCOB6Bx5fC9ACHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/5c7c7d-4d2e-483c-89cd-26816ca92ca0/1/GgNgTlMDxBI-sgP8SMSjTw_F_VM.roa
Signing time: Wed 01 Jan 2025 05:47:59 +0000
ROA not before: Wed 01 Jan 2025 05:47:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 14618
IP address blocks: 144.2.170.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:15:2e:59:f6:1f:5b:29:a1:a5:55:c6:13:04:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1954e32570bbfb9af11c2381e81c797c2f40087c
Validity
Not Before: Jan 1 05:47:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1a03604e5303c4123eb203fc48c4a34f0fc5fd53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:3d:2e:ff:3d:40:95:8b:a6:3f:41:52:70:00:
a1:19:5b:8b:9f:42:15:f4:91:03:b6:0a:66:ea:5d:
23:30:b3:dc:6b:bd:94:d8:ea:83:03:5d:c3:c0:f4:
c9:84:93:ac:0e:c7:13:68:55:3e:13:d5:fd:e9:f7:
f8:6a:7f:5d:eb:f4:83:a8:da:38:4a:77:2c:69:ce:
a2:15:ce:10:b5:4e:40:b1:45:30:90:0e:ec:bc:1c:
7c:cb:99:cb:9c:aa:2f:cc:94:75:b9:35:cc:73:98:
28:07:0f:86:02:25:59:de:3c:66:d4:f2:0e:ea:c2:
91:db:1d:ce:77:22:5c:90:71:5b:39:ed:2a:75:da:
07:32:3b:49:12:35:52:7f:ea:59:75:82:1d:cd:2f:
d8:3c:49:1c:bd:b9:17:f2:30:19:07:e0:34:25:2c:
b5:33:c6:2d:9f:d1:0b:58:cb:bf:32:65:be:5c:96:
d4:13:92:c0:43:46:29:9c:48:5c:e8:26:95:1e:12:
18:07:ca:5d:96:50:cf:fa:76:08:54:a1:4d:01:7c:
35:fc:d6:a9:de:ea:38:09:a4:22:40:a5:d9:4e:b3:
eb:a8:34:18:04:c8:06:c7:08:55:03:5f:82:f9:4a:
5f:ff:f5:8a:bb:d3:a6:4f:e5:b6:89:72:0f:ab:49:
f9:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:03:60:4E:53:03:C4:12:3E:B2:03:FC:48:C4:A3:4F:0F:C5:FD:53
X509v3 Authority Key Identifier:
keyid:19:54:E3:25:70:BB:FB:9A:F1:1C:23:81:E8:1C:79:7C:2F:40:08:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GVTjJXC7-5rxHCOB6Bx5fC9ACHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/5c7c7d-4d2e-483c-89cd-26816ca92ca0/1/GgNgTlMDxBI-sgP8SMSjTw_F_VM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/5c7c7d-4d2e-483c-89cd-26816ca92ca0/1/GVTjJXC7-5rxHCOB6Bx5fC9ACHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.2.170.0/24
Signature Algorithm: sha256WithRSAEncryption
42:ed:e6:50:44:f2:64:4d:3b:e2:49:96:97:42:f2:a8:a8:54:
d0:a0:83:fa:49:97:77:04:89:fd:25:60:34:67:d7:a9:61:2d:
20:2f:c8:4f:e1:77:19:a9:f6:66:b0:37:aa:67:4f:ea:cb:56:
e6:86:52:26:a3:d7:52:4e:93:e7:d7:98:f8:71:bb:87:b9:40:
f7:b4:6a:6f:c8:05:5d:48:85:f7:62:b9:0f:8a:27:91:b7:65:
01:de:6e:c0:92:eb:12:ac:c9:93:8b:b3:35:ea:27:b8:d7:07:
c0:4c:0f:58:e0:11:3c:b5:2a:d5:0f:29:50:58:aa:b5:43:24:
88:df:8f:f6:f8:41:1a:f9:23:1a:ed:0c:31:af:e3:97:49:75:
dd:83:07:0a:03:25:73:5d:0e:95:24:a0:02:0b:33:fa:46:4f:
ad:f5:68:af:bd:93:23:9a:ff:ca:7a:d0:9a:78:fb:99:da:c4:
45:c1:b6:a7:f6:16:f6:33:34:aa:e2:de:d4:12:76:d9:0e:ee:
69:7c:ca:fd:d6:75:a9:32:e9:1c:f8:f6:a0:c9:e8:24:76:90:
0c:bf:ec:70:0c:aa:7f:d0:20:26:73:01:0e:b4:f7:85:8b:76:
eb:67:cb:a4:eb:33:7a:1d:d2:d5:fc:60:01:05:53:69:b3:8a:
b2:36:ca:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 23:41:08 2025 by rpki-client