Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/8e2067-283b-4e4e-b67e-69f33fe1b530/1/gaLphM1A_moGiALt3CRC2ndoaVY.roa
File: gaLphM1A_moGiALt3CRC2ndoaVY.roa (raw, json)
Hash identifier: 3zCVRytJAz7EydYXmCr5U7I8CEvPHa4z1gbLc/C+dCU=
Subject key identifier: 81:A2:E9:84:CD:40:FE:6A:06:88:02:ED:DC:24:42:DA:77:68:69:56
Certificate issuer: /CN=162e48329c8be8ef209e9958da66ab0240145e19
Certificate serial: 01942521D4CE40673E80B8B418B4E9933F4D
Authority key identifier: 16:2E:48:32:9C:8B:E8:EF:20:9E:99:58:DA:66:AB:02:40:14:5E:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fi5IMpyL6O8gnplY2marAkAUXhk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/8e2067-283b-4e4e-b67e-69f33fe1b530/1/gaLphM1A_moGiALt3CRC2ndoaVY.roa
Signing time: Thu 02 Jan 2025 03:49:21 +0000
ROA not before: Thu 02 Jan 2025 03:49:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60893
IP address blocks: 185.144.20.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:d4:ce:40:67:3e:80:b8:b4:18:b4:e9:93:3f:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=162e48329c8be8ef209e9958da66ab0240145e19
Validity
Not Before: Jan 2 03:49:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=81a2e984cd40fe6a068802eddc2442da77686956
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:50:22:b8:05:55:b0:26:25:8d:fd:10:fb:09:
30:98:76:56:98:9d:c6:c8:60:69:b9:92:76:10:52:
2e:f1:c0:f9:f2:2b:70:41:0d:af:a5:c6:44:13:e8:
c3:39:d0:37:1c:e5:00:b9:6f:e5:06:77:2e:bd:a4:
90:26:6f:a9:e7:b3:35:8a:f1:6b:9c:05:7c:f9:d5:
b9:bd:e3:18:d1:b3:85:64:25:29:2f:27:29:6b:35:
d9:00:d5:ee:e1:b0:ff:95:75:19:9e:e8:ee:96:d6:
2b:99:39:ed:63:84:eb:fb:80:c5:bf:37:c8:f2:8f:
45:90:e2:78:25:bf:98:9f:1b:ef:7f:0e:b7:d2:77:
ce:35:58:4e:d5:ec:5f:b0:fe:73:54:d6:d7:17:0d:
40:86:a9:c0:42:8b:54:89:75:78:79:5a:65:9e:62:
60:55:de:18:fb:50:de:2a:34:67:b2:89:b1:ad:53:
f0:00:ce:2f:0c:a1:74:12:e1:19:a2:57:44:8b:9e:
c8:79:ab:59:8f:d4:77:2c:2e:0b:dc:4b:fe:de:b4:
e9:00:7b:95:3f:16:3e:27:c8:6d:f1:6a:8f:b5:96:
c1:00:da:41:34:43:43:63:17:aa:44:78:93:5d:5b:
22:c1:a1:51:5f:ec:2b:74:a6:5b:4d:54:3a:40:ca:
31:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:A2:E9:84:CD:40:FE:6A:06:88:02:ED:DC:24:42:DA:77:68:69:56
X509v3 Authority Key Identifier:
keyid:16:2E:48:32:9C:8B:E8:EF:20:9E:99:58:DA:66:AB:02:40:14:5E:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fi5IMpyL6O8gnplY2marAkAUXhk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/8e2067-283b-4e4e-b67e-69f33fe1b530/1/gaLphM1A_moGiALt3CRC2ndoaVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/8e2067-283b-4e4e-b67e-69f33fe1b530/1/Fi5IMpyL6O8gnplY2marAkAUXhk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.20.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:08:b7:0b:43:ff:32:ad:3f:aa:1d:17:b5:11:55:78:3f:46:
2c:e5:5a:2c:9e:53:15:f3:e6:01:61:10:71:b0:51:80:94:59:
6d:5a:d0:66:2e:88:8d:37:63:57:9f:3f:89:49:c2:ca:64:c0:
45:3b:6d:f8:4b:ad:33:c7:0a:d8:de:a6:76:57:de:e6:f0:26:
c0:a7:a2:78:ee:66:5d:47:57:46:37:46:17:42:30:9f:83:af:
e9:35:01:2a:15:88:bd:25:2e:03:93:aa:33:77:86:ea:37:68:
59:4f:d0:9d:14:0f:03:ad:a2:b8:38:ae:18:c3:c8:e4:07:53:
ee:d3:9a:ca:b7:2a:49:50:98:c1:ab:69:11:65:5f:ab:b1:69:
ff:51:e2:f3:34:fe:6e:2f:90:bb:8c:6e:54:6c:f1:9e:17:83:
05:e1:9e:a3:02:d5:5e:1d:1e:c7:f6:42:51:4c:ad:cd:b8:c8:
6f:e1:2f:4f:99:cf:a9:c9:cc:81:50:6c:29:c5:53:cb:60:6c:
07:f0:f0:47:b8:94:7d:72:30:31:7e:2e:67:5d:a3:17:35:5e:
54:cc:0c:aa:9d:fc:90:42:a8:de:f2:89:4c:4f:99:39:b2:e7:
e4:88:20:2c:28:1f:7b:42:0e:de:7d:00:d7:09:2c:57:19:f1:
73:17:04:e3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQlIdTOQGc+gLi0GLTpkz9NMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE2MmU0ODMyOWM4YmU4ZWYyMDllOTk1OGRhNjZhYjAyNDAx
NDVlMTkwHhcNMjUwMTAyMDM0OTIxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MWEyZTk4NGNkNDBmZTZhMDY4ODAyZWRkYzI0NDJkYTc3Njg2OTU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2FAiuAVVsCYljf0Q+wkwmHZWmJ3G
yGBpuZJ2EFIu8cD58itwQQ2vpcZEE+jDOdA3HOUAuW/lBncuvaSQJm+p57M1ivFr
nAV8+dW5veMY0bOFZCUpLycpazXZANXu4bD/lXUZnujultYrmTntY4Tr+4DFvzfI
8o9FkOJ4Jb+Ynxvvfw630nfONVhO1exfsP5zVNbXFw1AhqnAQotUiXV4eVplnmJg
Vd4Y+1DeKjRnsomxrVPwAM4vDKF0EuEZoldEi57IeatZj9R3LC4L3Ev+3rTpAHuV
PxY+J8ht8WqPtZbBANpBNENDYxeqRHiTXVsiwaFRX+wrdKZbTVQ6QMoxTwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIGi6YTNQP5qBogC7dwkQtp3aGlWMB8GA1UdIwQY
MBaAFBYuSDKci+jvIJ6ZWNpmqwJAFF4ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmk1SU1weUw2TzhnbnBsWTJtYXJBa0FVWGhrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi84ZTIwNjctMjgzYi00ZTRlLWI2N2Ut
NjlmMzNmZTFiNTMwLzEvZ2FMcGhNMUFfbW9HaUFMdDNDUkMybmRvYVZZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNi84ZTIwNjctMjgzYi00ZTRlLWI2N2UtNjlmMzNmZTFiNTMw
LzEvRmk1SU1weUw2TzhnbnBsWTJtYXJBa0FVWGhrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZAUMA0G
CSqGSIb3DQEBCwUAA4IBAQCcCLcLQ/8yrT+qHRe1EVV4P0Ys5VosnlMV8+YBYRBx
sFGAlFltWtBmLoiNN2NXnz+JScLKZMBFO234S60zxwrY3qZ2V97m8CbAp6J47mZd
R1dGN0YXQjCfg6/pNQEqFYi9JS4Dk6ozd4bqN2hZT9CdFA8DraK4OK4Yw8jkB1Pu
05rKtypJUJjBq2kRZV+rsWn/UeLzNP5uL5C7jG5UbPGeF4MF4Z6jAtVeHR7H9kJR
TK3NuMhv4S9Pmc+pycyBUGwpxVPLYGwH8PBHuJR9cjAxfi5nXaMXNV5UzAyqnfyQ
Qqje8olMT5k5sufkiCAsKB97Qg7efQDXCSxXGfFzFwTj
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:53:29 2025 by rpki-client