Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/5be0bd-695b-453c-9bf4-a6ecb89918b4/1/GMDc_i7m1W9Oi9irckZB3LW-654.roa
File: GMDc_i7m1W9Oi9irckZB3LW-654.roa (raw, json)
Hash identifier: 1Sv/CejSfUOx3xJs+7wo6WY94sGzCFjEk6tL9SDU2yE=
Subject key identifier: 18:C0:DC:FE:2E:E6:D5:6F:4E:8B:D8:AB:72:46:41:DC:B5:BE:EB:9E
Certificate issuer: /CN=9de68c02854f9dc6785912249522ab7509937e48
Certificate serial: 0184AA649BB9BA7B103312A1B74B89174BCA
Authority key identifier: 9D:E6:8C:02:85:4F:9D:C6:78:59:12:24:95:22:AB:75:09:93:7E:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/neaMAoVPncZ4WRIklSKrdQmTfkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/5be0bd-695b-453c-9bf4-a6ecb89918b4/1/GMDc_i7m1W9Oi9irckZB3LW-654.roa
Signing time: Thu 24 Nov 2022 16:07:10 +0000
ROA not before: Thu 24 Nov 2022 16:07:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 212.23.203.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:aa:64:9b:b9:ba:7b:10:33:12:a1:b7:4b:89:17:4b:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9de68c02854f9dc6785912249522ab7509937e48
Validity
Not Before: Nov 24 16:07:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=18c0dcfe2ee6d56f4e8bd8ab724641dcb5beeb9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:28:4c:76:ec:57:21:95:4d:a4:bc:a5:9d:5b:
f1:9f:b4:54:72:15:b5:08:50:e2:e1:05:c1:ba:8c:
75:69:cc:cb:d7:07:e0:0a:cc:6f:84:ae:1b:fb:82:
4e:79:a3:ec:d0:4b:9f:04:70:67:fe:c1:9d:14:62:
1f:c3:74:b9:9d:fb:e3:a6:5b:9c:59:f7:c0:48:ae:
91:03:c1:65:83:5d:ef:84:21:b1:09:88:98:bb:0c:
5b:f8:9f:6b:62:b4:83:0a:8b:f2:60:e8:25:07:4c:
d2:ad:34:d2:1a:9c:5b:2b:a5:30:7a:3d:f3:b3:de:
7b:93:24:3c:ec:b7:de:6f:78:31:7c:40:a0:4f:49:
5b:02:97:a4:0f:7a:06:bd:dd:93:e0:f6:98:85:0f:
54:ff:cb:de:67:39:a0:4a:ac:c0:45:0a:38:f9:16:
13:5b:71:60:68:e7:f3:58:9b:59:9a:21:d0:fb:19:
fe:27:85:45:d1:03:1a:6b:23:c2:be:3b:85:d6:40:
bf:f1:3d:14:93:1f:33:7e:f2:36:be:92:80:a6:b0:
48:81:f4:e5:c1:77:53:83:14:01:3a:7c:73:55:a8:
79:31:e9:f1:21:da:b5:ad:48:12:ab:53:c6:d5:bf:
8e:96:8e:b2:4c:3d:3f:4d:7e:32:93:9d:37:b6:97:
0b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:C0:DC:FE:2E:E6:D5:6F:4E:8B:D8:AB:72:46:41:DC:B5:BE:EB:9E
X509v3 Authority Key Identifier:
keyid:9D:E6:8C:02:85:4F:9D:C6:78:59:12:24:95:22:AB:75:09:93:7E:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/neaMAoVPncZ4WRIklSKrdQmTfkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/5be0bd-695b-453c-9bf4-a6ecb89918b4/1/GMDc_i7m1W9Oi9irckZB3LW-654.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/5be0bd-695b-453c-9bf4-a6ecb89918b4/1/neaMAoVPncZ4WRIklSKrdQmTfkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.203.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:dd:41:3d:d1:a7:82:84:d2:0b:79:50:7a:68:16:45:6f:17:
7d:06:e9:1b:5b:4e:c8:34:77:c0:8e:a0:fa:6d:7c:dd:43:52:
f6:fc:bb:47:07:6b:56:f6:97:70:56:1d:02:a1:9b:f0:c1:75:
26:a8:35:61:cc:c8:f8:90:06:90:53:04:48:65:e3:a7:ab:15:
c0:ec:2c:7f:c9:d2:66:50:df:26:f9:38:21:4a:ce:d7:59:77:
0b:4f:22:0d:03:10:23:91:e8:9a:d2:d8:f1:a3:5f:4b:10:0e:
ed:2c:82:9e:9e:62:5b:d9:fd:fe:ba:99:be:71:92:3e:de:29:
f5:c8:de:4e:e3:b0:a7:9a:47:fe:3a:a9:5f:55:7d:95:0f:d9:
e2:4b:e7:96:aa:fd:2c:ee:30:d6:99:7f:b5:8d:8d:d5:24:5a:
55:e5:c4:02:c3:fc:49:72:79:0f:69:f6:38:6c:29:4f:5b:57:
fb:fe:a6:a2:65:a4:50:61:99:7a:d5:78:5f:fa:c4:c2:5c:80:
c1:d6:0e:a9:8d:56:53:7f:2c:65:78:a3:5d:6a:a1:5e:51:41:
40:e8:45:9c:5e:b2:7c:b6:6e:72:be:34:ac:20:55:9f:f6:82:
e0:72:72:02:95:5d:6f:82:41:62:0c:eb:db:29:2b:4e:e6:da:
05:31:6e:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:09:29 2025 by rpki-client