Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/gRJ_kEzLai8RjsgR7KR1B7fqqd0.roa
File: gRJ_kEzLai8RjsgR7KR1B7fqqd0.roa (raw, json)
Hash identifier: BWGErKCzY0p8OiPlBqC5wuAsq4xMsn6zsQeaVv5Ybhs=
Subject key identifier: 81:12:7F:90:4C:CB:6A:2F:11:8E:C8:11:EC:A4:75:07:B7:EA:A9:DD
Certificate issuer: /CN=b05d28d16626bc5dcabf2e915435782b96e14071
Certificate serial: 212A949A
Authority key identifier: B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/gRJ_kEzLai8RjsgR7KR1B7fqqd0.roa
Signing time: Sat 01 Jan 2022 13:00:37 +0000
ROA not before: Sat 01 Jan 2022 13:00:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208153
IP address blocks: 147.181.62.0/23 maxlen: 24
2a04:9a00:1110::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 556438682 (0x212a949a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b05d28d16626bc5dcabf2e915435782b96e14071
Validity
Not Before: Jan 1 13:00:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81127f904ccb6a2f118ec811eca47507b7eaa9dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:2b:1f:c8:69:e6:be:cf:d4:07:16:6f:1c:58:
13:c5:7e:9b:b2:73:1a:e8:21:a5:37:bf:9d:1d:c9:
4b:15:cd:5b:19:56:76:58:d5:1a:fd:3d:5d:78:f1:
09:68:08:ec:64:7f:81:c4:27:6c:78:41:5f:74:f9:
32:0a:f1:78:71:07:86:08:80:bf:02:cf:95:a5:29:
84:92:4d:6f:c4:66:32:f7:d5:cf:22:e9:05:f3:03:
8b:c0:76:39:cf:91:40:29:59:1e:6e:8f:14:27:16:
ec:15:ed:3c:43:4c:34:de:60:d6:0a:e9:86:4b:9f:
e8:f6:ff:57:75:11:10:57:5f:8d:68:eb:7b:eb:c4:
4f:c3:c4:df:e0:68:93:0a:42:c4:1e:c1:0c:f4:5b:
87:3b:df:b1:f2:22:43:94:fd:64:da:a0:5a:d4:e5:
e6:e5:ba:a7:60:b6:5c:e7:29:47:0e:80:af:cc:b5:
b2:33:94:e9:6b:dc:fc:0d:3a:cf:32:f2:37:a1:d5:
90:55:6d:db:9e:95:03:51:88:2c:ce:30:07:f9:3d:
c5:af:80:55:c3:d6:26:93:8f:14:ce:df:af:19:b1:
9f:28:65:84:27:ee:72:eb:17:c4:32:1e:30:4d:12:
21:44:95:51:a0:2b:f0:b3:f9:b5:7c:82:0f:af:26:
2c:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:12:7F:90:4C:CB:6A:2F:11:8E:C8:11:EC:A4:75:07:B7:EA:A9:DD
X509v3 Authority Key Identifier:
keyid:B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/gRJ_kEzLai8RjsgR7KR1B7fqqd0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.181.62.0/23
IPv6:
2a04:9a00:1110::/48
Signature Algorithm: sha256WithRSAEncryption
8f:60:b1:60:6c:1a:37:9e:50:08:8a:63:03:85:99:0a:5c:3d:
7a:ee:04:a4:ae:e6:c3:43:28:3e:94:e6:91:f7:c1:bd:14:50:
9e:76:4f:52:7a:9d:0e:a7:13:b8:ad:99:d4:cc:d2:15:f6:c2:
b4:c0:92:99:37:b4:1f:bc:eb:30:a0:4c:19:ad:b4:34:a9:5a:
8d:ff:18:96:13:79:c6:47:22:52:60:62:66:ee:05:63:b9:2f:
6a:64:13:5f:7f:fe:28:fb:e9:91:20:b2:0f:76:06:2a:56:82:
ad:dc:d3:9a:8c:6d:ac:5d:10:27:e7:61:8e:55:e6:56:a3:43:
58:0a:cc:aa:56:98:c7:51:8f:55:a7:ee:78:27:2f:98:58:16:
50:b3:ac:dc:b4:55:b7:3e:9b:cf:7b:61:1d:8e:cd:52:60:8a:
10:7f:24:cd:a7:a2:e9:91:1c:d4:3e:77:e9:f6:b7:ea:f7:23:
02:cf:d9:24:c5:9b:d1:0a:02:e7:c8:8b:cd:dd:55:0e:e6:de:
49:63:98:fd:98:40:08:9b:2d:03:26:7c:6d:81:d3:50:64:16:
55:62:9e:fc:ab:58:1a:98:89:8e:51:73:77:5e:34:ee:67:0c:
4e:a7:55:6c:a2:1f:ff:06:0f:b0:33:7f:ff:4d:f6:df:d2:f1:
25:83:7f:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:40:51 2025 by rpki-client