Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/5d0b7d-db96-4387-93ec-8469cf659101/1/gLKpyPGbqCEdbx2uKWZ-HtuhLy0.roa
File: gLKpyPGbqCEdbx2uKWZ-HtuhLy0.roa (raw, json)
Hash identifier: f77sZOCl1dYzZqqQSp/e70T40ZHDdgkRvhdb7798S4A=
Subject key identifier: 80:B2:A9:C8:F1:9B:A8:21:1D:6F:1D:AE:29:66:7E:1E:DB:A1:2F:2D
Certificate issuer: /CN=77c7b457f9af042924142373ce090f7fa876257e
Certificate serial: 01942369E309B7CFA9E8793F736E1A224A4A
Authority key identifier: 77:C7:B4:57:F9:AF:04:29:24:14:23:73:CE:09:0F:7F:A8:76:25:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d8e0V_mvBCkkFCNzzgkPf6h2JX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/5d0b7d-db96-4387-93ec-8469cf659101/1/gLKpyPGbqCEdbx2uKWZ-HtuhLy0.roa
Signing time: Wed 01 Jan 2025 19:48:49 +0000
ROA not before: Wed 01 Jan 2025 19:48:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49037
IP address blocks: 185.1.72.0/24 maxlen: 32
2001:7f8:a3::/48 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:e3:09:b7:cf:a9:e8:79:3f:73:6e:1a:22:4a:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77c7b457f9af042924142373ce090f7fa876257e
Validity
Not Before: Jan 1 19:48:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=80b2a9c8f19ba8211d6f1dae29667e1edba12f2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fd:82:b5:a8:00:d1:dd:2b:ae:e7:fd:31:ef:db:
3c:32:45:8f:d6:4b:e3:ca:a0:0f:cc:3f:fa:d7:92:
67:d0:09:d8:5d:6a:5e:7a:0b:94:7e:50:a5:07:8c:
7a:3f:56:5a:34:f1:f8:0e:88:65:0f:66:4e:aa:c5:
8f:30:f1:8c:f7:8f:f7:d3:95:ed:42:37:53:6a:12:
ca:af:3d:a5:5f:c6:e9:b2:24:05:b5:7c:c9:53:6f:
03:28:d8:10:30:49:74:67:d2:85:46:89:46:63:f7:
06:3b:23:6b:9e:5b:a6:7a:6c:3d:84:48:84:55:27:
2a:92:49:ec:d6:b7:c6:79:c6:4b:ac:72:96:6c:91:
52:df:68:35:09:27:4f:6c:de:ac:ef:05:74:c9:aa:
b8:a4:aa:8f:87:e9:72:9c:5a:b1:54:d6:f3:27:50:
73:86:ea:4f:ff:28:51:34:8c:71:50:89:0e:4e:24:
62:5e:2f:bb:eb:69:00:42:2e:67:1d:c9:ca:d2:be:
c6:f3:30:81:56:38:b4:7b:3d:fd:04:dc:21:a0:31:
b7:0f:89:a4:77:22:7e:d1:a5:a7:69:48:ee:e7:b8:
3c:19:a0:ab:f4:5f:80:8b:8f:30:ed:31:62:49:11:
0a:50:8d:37:85:cc:56:12:b7:5f:4a:78:78:50:f5:
dd:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:B2:A9:C8:F1:9B:A8:21:1D:6F:1D:AE:29:66:7E:1E:DB:A1:2F:2D
X509v3 Authority Key Identifier:
keyid:77:C7:B4:57:F9:AF:04:29:24:14:23:73:CE:09:0F:7F:A8:76:25:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8e0V_mvBCkkFCNzzgkPf6h2JX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5d0b7d-db96-4387-93ec-8469cf659101/1/gLKpyPGbqCEdbx2uKWZ-HtuhLy0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5d0b7d-db96-4387-93ec-8469cf659101/1/d8e0V_mvBCkkFCNzzgkPf6h2JX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.72.0/24
IPv6:
2001:7f8:a3::/48
Signature Algorithm: sha256WithRSAEncryption
1c:7c:9b:5b:8b:32:e7:a7:65:4f:e1:ca:f0:80:d0:e4:a2:98:
2a:0d:07:7d:a3:83:d2:fa:5d:bf:65:2f:3d:f7:66:07:86:0b:
59:8c:ce:b8:60:04:f6:08:a0:29:0c:02:b0:e0:a2:56:5c:96:
32:ee:13:fd:ac:68:90:75:87:71:ad:5a:c5:6c:6b:9e:1a:a2:
79:b6:03:2c:34:f5:36:af:e9:3f:95:93:e8:f5:d6:de:ff:b0:
fa:ed:9d:ac:4d:e3:b7:c6:37:60:c4:63:0a:4e:5e:2e:43:12:
33:c8:b5:10:80:47:e0:1a:79:19:32:77:bf:a5:24:c6:7e:7a:
59:99:58:13:79:43:58:df:d3:34:db:31:80:15:b0:70:62:65:
f5:55:ef:70:21:b3:cc:1c:39:84:d6:f1:02:cd:6b:09:99:4c:
d4:af:ec:e2:30:96:ca:1f:40:51:f0:3e:9a:33:0c:f5:cb:e9:
96:39:96:4c:22:e9:4b:f2:ab:00:41:b8:13:f9:1b:b9:2b:31:
8b:3b:a9:53:d2:f4:ea:94:11:a0:25:85:31:ae:a3:8d:4f:b8:
60:88:6d:57:d6:7a:04:87:bc:28:65:ad:4c:61:d9:fd:18:69:
76:01:3d:55:48:c4:78:d4:f8:6c:ae:5f:51:56:a1:a6:0a:7d:
ba:94:2c:02
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZQjaeMJt8+p6Hk/c24aIkpKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3YzdiNDU3ZjlhZjA0MjkyNDE0MjM3M2NlMDkwZjdmYTg3
NjI1N2UwHhcNMjUwMTAxMTk0ODQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MGIyYTljOGYxOWJhODIxMWQ2ZjFkYWUyOTY2N2UxZWRiYTEyZjJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/YK1qADR3Suu5/0x79s8MkWP1kvj
yqAPzD/615Jn0AnYXWpeeguUflClB4x6P1ZaNPH4DohlD2ZOqsWPMPGM94/305Xt
QjdTahLKrz2lX8bpsiQFtXzJU28DKNgQMEl0Z9KFRolGY/cGOyNrnlumemw9hEiE
VScqkkns1rfGecZLrHKWbJFS32g1CSdPbN6s7wV0yaq4pKqPh+lynFqxVNbzJ1Bz
hupP/yhRNIxxUIkOTiRiXi+762kAQi5nHcnK0r7G8zCBVji0ez39BNwhoDG3D4mk
dyJ+0aWnaUju57g8GaCr9F+Ai48w7TFiSREKUI03hcxWErdfSnh4UPXd8wIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFICyqcjxm6ghHW8drilmfh7boS8tMB8GA1UdIwQY
MBaAFHfHtFf5rwQpJBQjc84JD3+odiV+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZDhlMFZfbXZCQ2trRkNOenpna1BmNmgySlg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS81ZDBiN2QtZGI5Ni00Mzg3LTkzZWMt
ODQ2OWNmNjU5MTAxLzEvZ0xLcHlQR2JxQ0VkYngydUtXWi1IdHVoTHkwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS81ZDBiN2QtZGI5Ni00Mzg3LTkzZWMtODQ2OWNmNjU5MTAx
LzEvZDhlMFZfbXZCQ2trRkNOenpna1BmNmgySlg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAuQFIMA8E
AgACMAkDBwAgAQf4AKMwDQYJKoZIhvcNAQELBQADggEBABx8m1uLMuenZU/hyvCA
0OSimCoNB32jg9L6Xb9lLz33ZgeGC1mMzrhgBPYIoCkMArDgolZcljLuE/2saJB1
h3GtWsVsa54aonm2Ayw09Tav6T+Vk+j11t7/sPrtnaxN47fGN2DEYwpOXi5DEjPI
tRCAR+AaeRkyd7+lJMZ+elmZWBN5Q1jf0zTbMYAVsHBiZfVV73Ahs8wcOYTW8QLN
awmZTNSv7OIwlsofQFHwPpozDPXL6ZY5lkwi6UvyqwBBuBP5G7krMYs7qVPS9OqU
EaAlhTGuo41PuGCIbVfWegSHvChlrUxh2f0YaXYBPVVIxHjU+GyuX1FWoaYKfbqU
LAI=
-----END CERTIFICATE-----
Generated at Mon Apr 7 03:56:04 2025 by rpki-client