Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/e2ee66-41a2-4f08-8ed9-0907ee1e3d52/1/Ghk__EufXRXOQXGCalH34VVlERk.roa
File: Ghk__EufXRXOQXGCalH34VVlERk.roa (raw, json)
Hash identifier: iJjF7gPcMbffRIyjzhGCltxjk1WVsWRpP/wJXIhQulY=
Subject key identifier: 1A:19:3F:FC:4B:9F:5D:15:CE:41:71:82:6A:51:F7:E1:55:65:11:19
Certificate issuer: /CN=38227faf7513610334320ad9b3f95be1ff1099c5
Certificate serial: 018CC9BBF982E21B36767E315F22BF1F6619
Authority key identifier: 38:22:7F:AF:75:13:61:03:34:32:0A:D9:B3:F9:5B:E1:FF:10:99:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCJ_r3UTYQM0MgrZs_lb4f8QmcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/e2ee66-41a2-4f08-8ed9-0907ee1e3d52/1/Ghk__EufXRXOQXGCalH34VVlERk.roa
Signing time: Tue 02 Jan 2024 10:33:08 +0000
ROA not before: Tue 02 Jan 2024 10:33:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57523
IP address blocks: 152.89.196.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bb:f9:82:e2:1b:36:76:7e:31:5f:22:bf:1f:66:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38227faf7513610334320ad9b3f95be1ff1099c5
Validity
Not Before: Jan 2 10:33:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1a193ffc4b9f5d15ce4171826a51f7e155651119
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:67:75:5b:bd:77:f1:94:7d:e6:9c:09:9f:33:
27:c8:3f:61:12:2f:83:87:ab:98:13:3b:35:11:77:
2d:92:7d:12:98:04:ac:18:3e:48:9f:84:fa:75:03:
80:b3:d7:bc:41:ce:25:3b:ba:29:93:e6:e3:21:b7:
66:bb:eb:6d:ff:a5:81:67:2f:78:49:c4:01:75:d2:
79:26:64:4d:b2:4d:2d:5f:fb:9f:14:9b:c2:58:08:
66:44:b3:72:ad:72:13:b6:16:bc:a6:d6:86:d5:d0:
16:d6:bf:d5:f4:02:6f:68:9d:c0:cc:5c:e0:0f:36:
cc:06:ec:2f:49:63:a8:b7:4b:c9:ad:6b:95:24:72:
b4:91:6a:a9:c9:86:a1:f5:55:67:c9:61:3a:45:72:
7e:dc:75:4f:17:74:8d:63:e4:48:cf:71:11:cb:f0:
fd:0e:1d:3c:64:66:2d:4c:e2:14:f8:c5:6d:1e:36:
3f:d1:ee:a0:82:c7:ad:19:a5:84:9f:98:30:31:13:
ee:50:3d:fb:97:ec:bf:1e:50:65:f5:f2:1b:36:b3:
a2:eb:8e:f6:86:76:47:f9:d0:f1:56:07:7f:e3:97:
91:33:bc:79:95:29:5f:63:2c:16:a1:96:26:a0:3e:
14:50:07:dc:9c:cc:9d:fe:57:64:4c:dc:1c:57:37:
5a:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:19:3F:FC:4B:9F:5D:15:CE:41:71:82:6A:51:F7:E1:55:65:11:19
X509v3 Authority Key Identifier:
keyid:38:22:7F:AF:75:13:61:03:34:32:0A:D9:B3:F9:5B:E1:FF:10:99:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCJ_r3UTYQM0MgrZs_lb4f8QmcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/e2ee66-41a2-4f08-8ed9-0907ee1e3d52/1/Ghk__EufXRXOQXGCalH34VVlERk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/e2ee66-41a2-4f08-8ed9-0907ee1e3d52/1/OCJ_r3UTYQM0MgrZs_lb4f8QmcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.89.196.0/24
Signature Algorithm: sha256WithRSAEncryption
54:a5:f4:57:0b:45:65:06:35:8f:89:60:ef:38:3f:1a:06:21:
01:7e:9f:a1:c6:c5:fa:6c:77:11:0f:5c:03:00:b1:26:81:c2:
ef:06:cb:12:73:78:1a:f0:8b:14:0a:49:84:1b:07:44:c5:1c:
8c:4f:14:5f:c9:68:af:cd:95:80:ea:1a:2c:ff:f0:f6:4f:55:
bc:fe:00:c3:26:e9:44:a8:32:a6:8d:12:88:fa:6e:e1:50:8f:
33:45:8c:df:da:fe:46:be:7f:f8:b0:d3:d3:0c:f4:65:a1:7f:
7f:8c:7b:ed:72:0c:ee:ce:79:f0:1a:6f:b2:53:b8:59:2f:38:
bd:a3:ab:00:1c:b7:88:3e:48:74:f1:d1:a2:24:05:c3:3c:5e:
58:50:6b:27:02:94:8c:87:2d:6f:dc:a9:a8:0a:3d:50:85:30:
bf:4e:00:c9:78:d4:dd:3a:d6:7d:84:35:60:91:9b:43:7c:6b:
b1:59:87:4e:94:9c:4a:38:4a:49:23:3b:f0:39:ee:8b:a5:f9:
12:62:3d:9a:a8:ca:be:ce:cf:11:28:26:2b:82:03:7f:1b:18:
c5:57:9f:2f:9a:99:45:03:43:51:fb:f2:0c:2b:b9:94:4c:ad:
20:4a:21:ae:7d:bd:d0:26:f6:7b:7d:90:8f:c4:d3:61:54:66:
14:8d:f0:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:39 2024 by rpki-client on console-ams.rpki-client.org