Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/d5950a-efe0-4468-8d0e-03a5eacbfb18/1/GW50QPIRZM2rsBIzIP-0eeThtIQ.roa
File: GW50QPIRZM2rsBIzIP-0eeThtIQ.roa (raw, json)
Hash identifier: 3Rl9Ntko9fvsHXaaijn96OhUGMsaODjCfmpxvCy4qe8=
Subject key identifier: 19:6E:74:40:F2:11:64:CD:AB:B0:12:33:20:FF:B4:79:E4:E1:B4:84
Certificate issuer: /CN=d98c5222ce91c12a35020acfdaaa5298071890a4
Certificate serial: 0185715E6C1A929D302DFAA5597F3100A644
Authority key identifier: D9:8C:52:22:CE:91:C1:2A:35:02:0A:CF:DA:AA:52:98:07:18:90:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2YxSIs6RwSo1AgrP2qpSmAcYkKQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/d5950a-efe0-4468-8d0e-03a5eacbfb18/1/GW50QPIRZM2rsBIzIP-0eeThtIQ.roa
Signing time: Mon 02 Jan 2023 07:24:51 +0000
ROA not before: Mon 02 Jan 2023 07:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9044
IP address blocks: 195.137.175.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:5e:6c:1a:92:9d:30:2d:fa:a5:59:7f:31:00:a6:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d98c5222ce91c12a35020acfdaaa5298071890a4
Validity
Not Before: Jan 2 07:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=196e7440f21164cdabb0123320ffb479e4e1b484
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:cf:4a:7f:58:32:42:ad:66:05:cd:e0:47:a4:
ca:e7:17:73:03:b6:40:4d:98:e9:74:dd:f3:3b:17:
82:94:af:8f:3f:f7:1c:72:b4:d7:75:ed:73:91:73:
bd:ab:06:11:fa:7a:9f:99:37:ab:f5:98:da:16:fe:
69:01:cc:b7:d8:ad:25:12:81:bd:48:a4:c5:b2:4e:
de:b6:b6:5e:ad:71:01:b0:5d:25:98:f2:e0:62:c6:
da:b7:25:20:0d:0e:fd:7e:ca:50:43:aa:20:44:3c:
ae:16:91:03:e4:3e:ab:d2:79:43:ac:54:30:d6:2b:
33:c4:45:08:ef:79:f0:8f:06:ab:10:c5:07:ee:e7:
8d:0b:8d:7f:aa:55:7a:b6:6d:1f:19:2f:36:ea:7d:
d0:95:68:98:d3:b2:9f:31:b8:b1:c3:f5:c6:64:ac:
1e:b1:b0:c8:a5:06:11:90:95:6a:37:52:10:81:b3:
57:87:48:e5:a3:b3:b1:a5:40:22:91:90:65:22:43:
0f:3c:5c:5d:98:a8:58:78:49:c6:ca:e0:8c:b8:b4:
83:06:ef:61:b5:18:30:e7:21:73:3b:6d:6a:e0:4b:
98:e9:ef:3b:40:d7:63:a7:90:65:4d:16:af:c0:69:
f5:23:ec:1d:ec:20:00:3c:52:7a:7e:d8:84:a7:ac:
bc:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:6E:74:40:F2:11:64:CD:AB:B0:12:33:20:FF:B4:79:E4:E1:B4:84
X509v3 Authority Key Identifier:
keyid:D9:8C:52:22:CE:91:C1:2A:35:02:0A:CF:DA:AA:52:98:07:18:90:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2YxSIs6RwSo1AgrP2qpSmAcYkKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/d5950a-efe0-4468-8d0e-03a5eacbfb18/1/GW50QPIRZM2rsBIzIP-0eeThtIQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/d5950a-efe0-4468-8d0e-03a5eacbfb18/1/2YxSIs6RwSo1AgrP2qpSmAcYkKQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.137.175.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:5f:df:30:ea:45:3c:e8:5e:4b:9b:cb:46:f8:a6:98:4b:81:
e2:db:ee:d8:4d:3f:a8:6c:df:f5:4b:7a:c1:ac:8b:3c:f8:22:
93:05:0e:f2:32:e2:45:71:01:1d:2a:e4:b7:4a:f1:fc:1e:72:
ab:63:a8:a5:d2:cf:5d:94:19:7f:17:aa:9a:36:74:52:72:59:
01:3a:cf:cf:31:73:10:27:2a:e9:7c:a2:ab:65:1c:ae:c3:59:
c0:e6:92:b8:31:da:98:f6:01:51:fb:e3:3b:9d:6e:7c:2f:2f:
60:26:01:14:ae:9e:31:e6:55:74:f5:b6:58:ca:40:7a:7b:b4:
bc:0a:73:78:f9:10:61:3b:a0:f9:c4:0b:a3:49:d6:0a:f4:a1:
7e:ac:e9:63:d2:27:47:71:e1:6b:20:77:15:bb:71:b6:89:76:
a6:07:6e:ec:b1:1c:ff:bd:50:74:7e:ca:4f:e7:d3:bc:a4:23:
5e:50:4e:f7:9d:27:93:df:af:34:76:90:24:b4:97:3e:df:8b:
fd:01:70:88:0f:56:d8:c8:6c:e9:77:25:f7:17:41:ac:a5:07:
ac:1b:88:d3:bd:5f:c8:9b:a5:25:a5:25:a6:ff:71:a7:8a:75:
6d:f8:29:0c:3d:51:f7:84:e1:00:f9:0f:a2:7c:e6:94:4e:3a:
f0:78:a6:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:20:11 2025 by rpki-client