Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/gwZlbP2atQF_kNgkgBdxi_Zf5Ec.roa
File: gwZlbP2atQF_kNgkgBdxi_Zf5Ec.roa (raw, json)
Hash identifier: o4qnNwYhn8xcqf3VMZET7Ys89UIyYgPgzmDSQYKn5FM=
Subject key identifier: 83:06:65:6C:FD:9A:B5:01:7F:90:D8:24:80:17:71:8B:F6:5F:E4:47
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0194222014D9D2560A23452403D6AE425EBE
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/gwZlbP2atQF_kNgkgBdxi_Zf5Ec.roa
Signing time: Wed 01 Jan 2025 13:48:35 +0000
ROA not before: Wed 01 Jan 2025 13:48:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 3170
IP address blocks: 185.218.100.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:14:d9:d2:56:0a:23:45:24:03:d6:ae:42:5e:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 1 13:48:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8306656cfd9ab5017f90d8248017718bf65fe447
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:95:c0:35:4c:44:24:8c:a8:11:b5:6d:8c:cc:
7a:a8:0e:85:61:bd:37:88:0a:b7:37:ff:ff:cd:2b:
e6:f2:ef:a7:df:58:32:3f:c8:d2:3e:45:89:77:79:
6d:0a:08:84:ba:66:1f:65:f3:0f:46:eb:ba:39:b1:
33:f4:f9:55:f3:51:ae:60:89:cd:30:bf:3b:05:65:
13:bd:e7:86:41:bf:3b:d6:00:65:4e:d8:4c:5f:0b:
3d:4d:b3:96:be:78:f7:bf:1f:4f:15:e3:0a:9f:d7:
de:b8:e3:f3:6d:4d:86:1d:0f:fa:a6:66:43:72:ea:
87:5d:bd:da:f8:dd:2f:a6:d9:34:9e:65:f8:5d:55:
4f:d1:58:08:0b:57:a4:dd:c2:95:77:cf:5d:ed:75:
ea:57:4a:90:c7:71:0f:b1:0f:64:3d:5d:0b:07:af:
a5:d1:92:18:ae:bd:d6:2c:45:f1:02:9f:00:73:68:
b1:e7:b7:a6:1a:c1:88:da:3d:6f:5a:09:6f:a8:34:
80:ae:ef:51:65:18:c2:7f:f1:e7:93:4f:0d:26:23:
fc:ef:1e:2d:58:62:89:a1:54:55:dd:8f:c3:48:7f:
37:40:c3:e8:6c:17:98:19:5e:c8:b1:43:07:95:6e:
5c:01:b7:4a:4a:e9:38:89:ff:1b:f8:f0:5d:26:15:
02:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:06:65:6C:FD:9A:B5:01:7F:90:D8:24:80:17:71:8B:F6:5F:E4:47
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/gwZlbP2atQF_kNgkgBdxi_Zf5Ec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.100.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:87:46:8b:8d:7a:8e:3d:b0:35:30:3b:fc:92:fb:d7:34:d8:
4d:ae:d7:7f:77:2c:78:d3:3a:8f:f5:75:8f:70:38:96:79:7a:
fc:3a:29:4c:2f:b3:ed:22:45:c8:76:8a:f6:0b:24:b4:ef:8a:
ad:2d:3f:c0:54:53:c5:8f:80:2d:20:d2:b3:22:20:98:33:6a:
95:3e:f6:4e:fa:b5:f0:29:32:70:33:39:37:09:2f:bc:16:fd:
b1:6d:bc:c7:1f:b5:6d:03:47:50:ba:76:ec:ba:b4:5a:92:8d:
b5:21:a2:e2:d6:11:c4:85:ba:9c:95:d7:95:41:59:55:93:9d:
5f:93:23:9f:20:b9:3d:87:7a:33:22:f9:58:ad:e1:d7:db:4b:
ed:d9:cb:f9:3a:e4:d0:08:dd:ef:5b:ba:6b:f6:fc:ce:d0:ee:
89:75:d8:7a:e0:bb:c8:ca:01:ff:45:5e:55:a2:ff:5c:72:71:
b7:1c:ab:e8:7c:49:14:ad:f2:bf:9b:ae:d9:3f:58:64:ba:7c:
ae:dd:84:fd:2f:0d:73:fe:dd:ba:98:b6:e7:23:8c:bc:08:76:
84:c9:c6:90:cc:3b:ff:5b:b8:40:ee:0e:e2:cb:79:53:e1:39:
74:0e:2e:e7:a7:d6:10:db:58:9a:59:36:2a:de:ce:95:d2:c1:
cd:c5:cc:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 21:21:09 2025 by rpki-client