Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/e5965a-0a27-4587-8ac6-5cc28426c588/1/gGe8JgqWH_cRXvcEmWtHkjylXaM.roa
File: gGe8JgqWH_cRXvcEmWtHkjylXaM.roa (raw, json)
Hash identifier: g81fDqwXXgUswsp5sJSrU0ht2uh5xrGxEUxNT9pOJ9s=
Subject key identifier: 80:67:BC:26:0A:96:1F:F7:11:5E:F7:04:99:6B:47:92:3C:A5:5D:A3
Certificate issuer: /CN=50b49fa114a0ec3553c72132dbc56a2ebbef79df
Certificate serial: 018573685311DADEDCDAECE38C13213AC87E
Authority key identifier: 50:B4:9F:A1:14:A0:EC:35:53:C7:21:32:DB:C5:6A:2E:BB:EF:79:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ULSfoRSg7DVTxyEy28VqLrvved8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/e5965a-0a27-4587-8ac6-5cc28426c588/1/gGe8JgqWH_cRXvcEmWtHkjylXaM.roa
Signing time: Mon 02 Jan 2023 16:54:54 +0000
ROA not before: Mon 02 Jan 2023 16:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 89.106.205.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:68:53:11:da:de:dc:da:ec:e3:8c:13:21:3a:c8:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50b49fa114a0ec3553c72132dbc56a2ebbef79df
Validity
Not Before: Jan 2 16:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8067bc260a961ff7115ef704996b47923ca55da3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7c:44:d4:61:ba:dc:39:44:66:23:ed:af:81:
e3:c7:d0:a2:34:e9:8c:fa:75:2e:dd:8a:ee:8b:09:
f4:1a:a9:03:74:eb:d2:01:9c:fe:cd:2d:1c:06:05:
04:aa:64:32:d7:e4:1b:fe:9e:1a:f6:c1:59:94:f9:
7e:36:cd:ea:a7:9f:a9:32:b0:69:ea:0c:58:7a:5b:
1d:a9:64:ad:ea:79:37:9b:30:00:d4:cf:05:39:e7:
80:63:d3:cb:90:da:12:6a:be:85:fa:82:70:2b:ba:
03:e0:ce:80:1d:47:6a:f5:0a:6d:a0:76:ef:18:88:
df:8a:da:80:f5:d7:9b:4f:aa:c6:14:6f:40:65:e2:
15:1a:89:3a:2d:0b:3b:8f:c4:77:b7:17:28:b5:37:
98:0c:3a:f1:6b:3f:ae:20:5c:9c:f8:44:42:73:df:
85:84:63:93:93:d3:65:e2:ce:c4:1e:41:59:c7:c8:
63:d4:43:d0:9d:f2:33:43:20:92:ee:6e:1d:da:3c:
9c:81:62:c9:d1:de:aa:fd:03:63:05:3d:08:94:7d:
ef:a4:14:33:52:ff:54:f5:9e:d6:3b:c1:91:d5:8f:
ec:c3:ef:0f:9f:22:65:de:17:ba:9f:16:ab:ab:25:
09:29:c0:fa:84:10:a8:ed:f2:9b:6d:9b:84:48:b5:
3e:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:67:BC:26:0A:96:1F:F7:11:5E:F7:04:99:6B:47:92:3C:A5:5D:A3
X509v3 Authority Key Identifier:
keyid:50:B4:9F:A1:14:A0:EC:35:53:C7:21:32:DB:C5:6A:2E:BB:EF:79:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ULSfoRSg7DVTxyEy28VqLrvved8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/e5965a-0a27-4587-8ac6-5cc28426c588/1/gGe8JgqWH_cRXvcEmWtHkjylXaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/e5965a-0a27-4587-8ac6-5cc28426c588/1/ULSfoRSg7DVTxyEy28VqLrvved8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.106.205.0/24
Signature Algorithm: sha256WithRSAEncryption
18:54:f4:f5:cd:3a:da:17:43:42:bf:01:99:09:fe:ba:fe:fc:
d1:73:30:e3:0b:26:78:b1:e3:13:5b:9e:5a:0b:2d:b4:6a:ca:
35:82:2f:b1:1f:5e:b8:5a:4a:0f:75:00:bf:f1:45:5d:de:ba:
fc:e4:96:2d:0e:aa:16:c7:b6:0b:04:58:8c:fd:d2:5e:32:50:
b1:08:8f:d4:22:48:8d:64:83:0e:df:ed:e3:89:66:4b:22:51:
3b:d7:90:b7:56:ae:43:9f:0f:91:bb:7d:44:46:9b:41:1c:58:
6c:4b:cf:26:db:d7:fb:0a:8a:76:93:85:31:44:09:61:de:a5:
11:c3:5d:ec:68:c3:0d:f6:12:1f:6a:46:1e:9f:86:ed:57:03:
40:ca:cc:ac:0e:d7:0a:2a:38:38:a4:1d:e3:e9:38:3d:27:ac:
47:86:7a:fa:c6:bd:f0:0d:87:a4:74:21:f5:3f:c3:4e:68:df:
fc:5d:5a:77:00:01:da:dd:a7:df:6c:65:4d:f2:8e:85:2e:76:
81:ea:93:a2:48:9c:59:16:7f:21:26:80:2c:3f:c0:71:cd:99:
7e:36:da:fd:55:f6:b5:43:c5:b3:73:45:c6:3b:bd:f8:2f:96:
4e:fe:a3:b8:ca:c7:30:00:5b:d0:2c:96:d7:17:16:87:b5:80:
4f:ef:4a:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:13:47 2025 by rpki-client