Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/573151-70b4-46a4-bcac-28aa5cc44e51/1/GhEBrD35_iW4Hiuzitht6pVO4uE.roa
File: GhEBrD35_iW4Hiuzitht6pVO4uE.roa (raw, json)
Hash identifier: Zbve05eDgG7ninXgJYY9um9n78o5IxkRA0fHZKvSRdU=
Subject key identifier: 1A:11:01:AC:3D:F9:FE:25:B8:1E:2B:B3:8A:D8:6D:EA:95:4E:E2:E1
Certificate issuer: /CN=6fb6cbc7d1fe5e6812501f0c2596df63ef5fc8e6
Certificate serial: 018964C256960E545ABE12A12E7842CF7813
Authority key identifier: 6F:B6:CB:C7:D1:FE:5E:68:12:50:1F:0C:25:96:DF:63:EF:5F:C8:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b7bLx9H-XmgSUB8MJZbfY-9fyOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/573151-70b4-46a4-bcac-28aa5cc44e51/1/GhEBrD35_iW4Hiuzitht6pVO4uE.roa
Signing time: Mon 17 Jul 2023 16:50:04 +0000
ROA not before: Mon 17 Jul 2023 16:50:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 193.200.61.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:c2:56:96:0e:54:5a:be:12:a1:2e:78:42:cf:78:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fb6cbc7d1fe5e6812501f0c2596df63ef5fc8e6
Validity
Not Before: Jul 17 16:50:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a1101ac3df9fe25b81e2bb38ad86dea954ee2e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ef:de:b4:97:ca:ac:17:7f:ff:a4:d0:e8:ae:
b9:3b:82:66:46:c4:ae:e3:1d:0b:64:f9:dd:9f:7d:
97:94:5e:f8:79:08:6e:2d:23:86:86:8a:3c:9e:61:
e7:22:a0:45:48:54:2a:95:65:6f:3a:f2:63:ab:36:
9a:50:d2:3d:d1:53:05:fe:30:d3:68:97:07:2a:78:
44:5d:06:a2:40:6f:f5:3c:c6:b5:04:0d:6a:94:f5:
45:bc:d4:cd:58:d1:ec:14:80:d9:18:d4:73:5c:46:
3b:78:52:59:79:c0:58:44:2d:91:7e:0d:a6:5b:32:
b1:8a:bb:65:b5:f1:4a:ce:f2:81:13:97:81:47:3b:
11:2f:9a:fc:e3:eb:e0:29:a5:fc:9f:0f:7e:43:59:
ed:ef:85:14:ce:b1:f3:91:ef:3f:5e:12:aa:44:f3:
d3:5d:dc:d7:82:8e:7c:43:82:08:00:a5:ab:b7:f3:
e2:e3:48:76:dc:62:96:87:b5:9c:d4:4c:ee:f3:b4:
9b:16:89:3d:92:78:6a:76:de:1b:d4:3b:20:fd:99:
d7:94:a3:5e:9d:da:c9:4b:02:7c:fb:f6:0b:8b:c1:
17:0e:98:f9:c0:9f:9a:fd:3c:17:7a:bb:51:7a:ae:
23:57:65:56:72:3f:be:d5:29:c0:20:f3:d6:f1:b5:
2e:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:11:01:AC:3D:F9:FE:25:B8:1E:2B:B3:8A:D8:6D:EA:95:4E:E2:E1
X509v3 Authority Key Identifier:
keyid:6F:B6:CB:C7:D1:FE:5E:68:12:50:1F:0C:25:96:DF:63:EF:5F:C8:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7bLx9H-XmgSUB8MJZbfY-9fyOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/573151-70b4-46a4-bcac-28aa5cc44e51/1/GhEBrD35_iW4Hiuzitht6pVO4uE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/573151-70b4-46a4-bcac-28aa5cc44e51/1/b7bLx9H-XmgSUB8MJZbfY-9fyOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.61.0/24
Signature Algorithm: sha256WithRSAEncryption
41:93:d8:d1:d7:f5:b0:83:6e:5f:21:54:cf:de:4a:13:87:f3:
a6:b4:0a:cf:fe:6c:4d:8e:03:5e:4c:43:b3:45:2c:d0:12:69:
6b:72:12:1b:1a:29:ac:77:25:80:30:7b:d3:1b:74:c1:4e:66:
db:02:36:14:bd:13:d7:fb:4f:25:3e:c7:47:a3:ff:3b:bf:c9:
8c:db:4d:5b:0c:e4:8e:33:c3:9f:bd:6f:1f:34:fe:e2:ed:03:
65:ce:39:e4:f0:f5:ea:cf:2a:c7:5d:6d:22:75:3e:56:19:20:
d8:53:be:59:78:32:5d:e5:d4:2c:ec:21:45:26:07:ca:d6:de:
89:f5:05:60:7a:6d:3a:31:73:4f:65:50:38:10:eb:86:90:51:
7e:c6:fb:99:8e:15:a4:31:20:93:ea:e0:f5:b9:d0:26:80:4f:
fe:5b:94:7a:31:f4:0b:81:43:5a:91:fc:74:13:06:f8:d4:75:
27:ce:87:3b:bf:e0:8b:d3:ff:5c:67:ac:27:ab:64:63:ac:05:
d3:2b:90:fe:96:08:28:47:51:8f:f6:a8:86:4b:47:1e:e0:9a:
e4:3c:cb:94:d4:8c:bf:45:a0:25:1f:00:79:9a:27:27:d4:82:
28:34:83:e3:8d:c3:b7:7f:74:7e:31:5d:d5:4f:6b:af:1d:3d:
28:60:d5:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:28:58 2025 by rpki-client