Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/gwONvQnaMRMPnAL1e4CUE1IAPK8.roa
File: gwONvQnaMRMPnAL1e4CUE1IAPK8.roa (raw, json)
Hash identifier: KAK9WgMW+rSqhOEdwNeZ/ru+7SF/IiuRhZQt7eubX5M=
Subject key identifier: 83:03:8D:BD:09:DA:31:13:0F:9C:02:F5:7B:80:94:13:52:00:3C:AF
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 018748D472788B4C782EC812C4482BE38076
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/gwONvQnaMRMPnAL1e4CUE1IAPK8.roa
Signing time: Mon 03 Apr 2023 20:34:55 +0000
ROA not before: Mon 03 Apr 2023 20:34:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207508
IP address blocks: 45.136.7.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:48:d4:72:78:8b:4c:78:2e:c8:12:c4:48:2b:e3:80:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Apr 3 20:34:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=83038dbd09da31130f9c02f57b80941352003caf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:25:76:96:03:38:bb:e1:3e:57:e2:a0:be:ea:
99:f4:6f:7e:32:7a:7e:b4:da:42:aa:40:0b:35:e0:
f8:41:99:4e:0c:b4:0f:cf:cd:f4:1a:0a:3e:23:1c:
2f:61:67:15:67:d9:bb:59:99:45:c3:30:a9:7a:da:
df:b9:48:2a:07:39:32:38:2a:52:e0:ed:0a:8e:56:
1e:82:63:a1:5b:06:02:61:5f:5a:56:1c:2d:08:27:
b7:7e:fe:f2:44:8c:d4:53:59:b9:66:f3:60:74:7a:
d3:da:8f:f8:b6:8b:12:c3:c8:51:18:0f:94:7a:ea:
df:93:69:b6:db:dd:b6:68:c7:3a:b4:5c:a7:bb:02:
7e:52:cb:2f:9b:85:dd:e4:f0:fe:44:7b:fe:61:84:
2a:0d:1d:a7:7e:80:e7:0d:7f:e0:3d:18:c5:af:77:
e1:a0:c6:2c:e4:d9:ad:1c:83:8a:27:44:6e:f7:d2:
8e:0f:ca:d3:a0:8d:63:eb:5b:0b:bb:17:bc:75:0c:
f2:58:5f:b6:32:9f:ce:39:7a:30:11:50:21:be:8a:
06:1c:1b:b6:eb:5d:95:1e:2e:45:8d:7f:b5:5c:2d:
73:cf:67:5c:c7:70:30:46:1d:54:df:6e:c7:dc:57:
fa:9e:4d:98:ab:57:06:76:8e:be:cc:1b:e5:a2:a1:
26:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:03:8D:BD:09:DA:31:13:0F:9C:02:F5:7B:80:94:13:52:00:3C:AF
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/gwONvQnaMRMPnAL1e4CUE1IAPK8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.7.0/24
Signature Algorithm: sha256WithRSAEncryption
14:e0:e0:6e:11:ef:41:22:78:70:49:56:8e:a2:ca:8f:1e:eb:
d0:8f:70:1a:53:99:c0:3a:99:2d:0d:8a:f4:e3:3a:2d:5f:8e:
71:b9:74:54:0e:49:08:02:0b:68:d5:73:ba:2b:65:fc:eb:5e:
f3:6a:40:7b:2b:d0:3d:e1:bc:4d:1d:46:d0:ac:e8:cd:64:69:
fd:61:12:7d:2d:2a:b7:3a:bc:cc:1e:da:0a:b9:62:6b:64:88:
bd:bf:91:04:aa:af:e7:83:0e:02:6c:06:e6:2a:52:c7:df:33:
50:0a:09:90:15:4c:c2:93:d6:3c:86:53:0b:2b:55:46:d3:2e:
f5:a1:de:fc:d8:86:59:9e:14:e5:44:43:63:43:ad:e8:85:6a:
a6:b3:4c:d7:5e:31:f5:3e:94:90:6d:1c:6f:00:a6:9d:12:2b:
10:eb:95:e3:09:5a:4f:80:62:08:b0:52:49:da:76:30:1e:93:
9f:fb:f3:c9:1e:83:20:b7:fa:27:3a:a4:f0:51:23:9d:38:41:
17:49:d0:0b:67:8b:19:ee:d9:c9:a3:7e:07:19:e9:6e:11:bd:
78:1c:77:0b:55:04:05:2c:11:98:41:19:ef:65:17:29:e7:4d:
21:44:7a:a4:c2:47:da:c8:2e:01:89:0e:3c:9a:2f:c3:39:f5:
3e:b9:80:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:39:52 2025 by rpki-client