Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/9c0a7e-9963-4c0d-94ac-446d0a7e9404/1/GGZyWS70NVTxPjBMBlxh0MbXaTE.roa
File: GGZyWS70NVTxPjBMBlxh0MbXaTE.roa (raw, json)
Hash identifier: 1aa2Xn0pxuJZN+l47jJL2jajHv4erJ4eXwYWSXuBDuY=
Subject key identifier: 18:66:72:59:2E:F4:35:54:F1:3E:30:4C:06:5C:61:D0:C6:D7:69:31
Certificate issuer: /CN=73dfeea9c7de246e6d7d1a507406285b226f9286
Certificate serial: 01856D8AF3A1410E168A05D1169D6F217EB9
Authority key identifier: 73:DF:EE:A9:C7:DE:24:6E:6D:7D:1A:50:74:06:28:5B:22:6F:92:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c9_uqcfeJG5tfRpQdAYoWyJvkoY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/9c0a7e-9963-4c0d-94ac-446d0a7e9404/1/GGZyWS70NVTxPjBMBlxh0MbXaTE.roa
Signing time: Sun 01 Jan 2023 13:35:00 +0000
ROA not before: Sun 01 Jan 2023 13:35:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204685
IP address blocks: 185.212.251.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:8a:f3:a1:41:0e:16:8a:05:d1:16:9d:6f:21:7e:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73dfeea9c7de246e6d7d1a507406285b226f9286
Validity
Not Before: Jan 1 13:35:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=186672592ef43554f13e304c065c61d0c6d76931
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e8:8a:c1:c8:32:ad:06:e7:5e:e8:bd:9a:f6:
ad:eb:a1:b6:28:f9:62:69:20:7a:3b:d6:b4:be:69:
b1:68:5a:98:66:92:0c:10:e9:76:36:36:55:63:d0:
2f:ee:3c:db:34:2e:d8:ee:b0:e1:70:2b:00:17:d9:
d3:cc:5f:52:85:f8:34:d4:8f:07:0e:46:c2:4e:b4:
71:3f:a1:37:e5:c3:08:5b:5e:3d:5a:15:fb:94:ed:
1d:02:dd:05:7c:62:db:ce:2e:f5:df:dc:a8:ff:4b:
32:0b:8c:ba:a8:60:b6:9e:e8:ec:4a:46:9c:b7:aa:
b7:88:fe:0b:bb:5d:ff:6c:c3:ae:af:bb:4e:89:52:
a0:36:bf:52:90:9c:aa:e4:27:38:bb:0f:c0:5b:56:
a7:16:d2:9b:62:2e:25:4e:74:58:d3:ae:35:70:51:
23:87:2c:e3:16:ee:80:9a:f8:f2:2e:a2:00:c4:41:
6a:a4:d5:7c:07:62:5b:63:13:eb:f2:dd:d2:df:89:
49:ce:02:41:03:ba:08:60:c2:72:cd:18:93:a4:01:
2b:36:7c:c5:11:56:6f:61:ac:17:77:c7:7b:ce:62:
42:86:6b:9e:1d:5a:a3:fd:98:ce:ce:0c:85:d4:8e:
23:b5:25:ce:e1:33:80:fd:07:38:86:b0:a3:d7:de:
70:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:66:72:59:2E:F4:35:54:F1:3E:30:4C:06:5C:61:D0:C6:D7:69:31
X509v3 Authority Key Identifier:
keyid:73:DF:EE:A9:C7:DE:24:6E:6D:7D:1A:50:74:06:28:5B:22:6F:92:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9_uqcfeJG5tfRpQdAYoWyJvkoY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/9c0a7e-9963-4c0d-94ac-446d0a7e9404/1/GGZyWS70NVTxPjBMBlxh0MbXaTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/9c0a7e-9963-4c0d-94ac-446d0a7e9404/1/c9_uqcfeJG5tfRpQdAYoWyJvkoY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.251.0/24
Signature Algorithm: sha256WithRSAEncryption
25:4d:ae:ad:14:71:55:48:e7:71:05:3d:38:50:e4:d7:ef:d2:
61:dd:b7:79:56:db:e9:5e:cb:ca:3a:17:0b:3c:0c:7f:d7:4d:
99:83:0f:dd:b8:c6:54:a9:55:66:86:2a:15:f3:30:06:85:a6:
e0:35:66:2b:01:3a:6c:24:9b:4c:a3:37:74:56:48:36:76:de:
99:aa:cf:87:cf:d0:a5:bd:d2:c1:d9:18:3f:c3:d2:99:18:03:
88:2c:83:99:43:cb:c4:82:13:3a:29:1c:ea:79:76:e5:e8:af:
63:c4:1e:04:7b:2c:0a:98:d7:43:67:18:f7:41:78:e7:e0:2e:
50:13:93:38:17:98:86:45:f9:c2:b1:cb:52:bf:c2:b6:cf:93:
1a:b1:a6:de:4d:4d:ea:af:78:b3:23:20:86:f9:e6:4b:bc:f1:
a7:e3:52:ba:0e:8b:ff:42:f9:41:8a:8a:db:c3:86:50:eb:74:
b8:6a:df:91:41:7c:10:f5:86:72:9b:b8:b6:28:cd:d5:e5:df:
de:91:f5:c0:f9:c4:26:74:6d:47:ce:56:0b:7d:9b:dc:9f:34:
94:fd:b4:e8:cf:56:6f:0a:a4:9c:1e:aa:f9:99:b9:32:31:fa:
46:19:07:66:ad:ef:63:88:5d:b8:f1:7f:d2:27:27:54:83:78:
06:e4:c0:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:55 2024 by rpki-client on console-fra.rpki-client.org