Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/42ac52-ba66-48a2-a07a-b636988ead4d/1/GalOg_c7JY6ykfo9PAXf3hb8TYI.roa
File: GalOg_c7JY6ykfo9PAXf3hb8TYI.roa (raw, json)
Hash identifier: ypSwhyPVQV1/G1wVG6hcd6sL+hxx862aVQaQ1AQOnz4=
Subject key identifier: 19:A9:4E:83:F7:3B:25:8E:B2:91:FA:3D:3C:05:DF:DE:16:FC:4D:82
Certificate issuer: /CN=1f1d04807504dcbe1ab80ef84d86e514c57e7e8d
Certificate serial: 01B960D5
Authority key identifier: 1F:1D:04:80:75:04:DC:BE:1A:B8:0E:F8:4D:86:E5:14:C5:7E:7E:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hx0EgHUE3L4auA74TYblFMV-fo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/42ac52-ba66-48a2-a07a-b636988ead4d/1/GalOg_c7JY6ykfo9PAXf3hb8TYI.roa
Signing time: Mon 13 Jun 2022 05:49:05 +0000
ROA not before: Mon 13 Jun 2022 05:49:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 136526
IP address blocks: 193.239.150.0/24 maxlen: 24
193.239.154.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28926165 (0x1b960d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f1d04807504dcbe1ab80ef84d86e514c57e7e8d
Validity
Not Before: Jun 13 05:49:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=19a94e83f73b258eb291fa3d3c05dfde16fc4d82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:01:b4:f0:82:28:d1:97:d1:1b:5f:11:95:b0:
00:82:6f:aa:3c:72:4f:55:d1:6e:56:bd:67:7e:aa:
57:aa:89:68:4f:c5:c4:0e:2f:11:3b:76:7e:91:49:
87:f9:fd:5d:42:49:31:2f:71:2f:bc:97:4c:86:99:
3c:5f:76:9d:98:06:42:38:9c:87:53:d7:6c:b3:94:
93:fd:6f:40:c7:d6:d4:e9:db:df:71:e0:0b:df:9e:
93:cf:53:0b:8d:67:4b:73:59:1b:07:84:68:c7:4d:
14:92:cd:e4:a9:9a:17:c3:aa:f4:3e:8e:11:85:2e:
ba:9e:51:65:58:1d:89:a5:91:33:5e:af:61:c1:eb:
05:2f:6c:64:96:f0:f4:b9:b5:81:84:fc:56:f1:9d:
b2:91:e1:11:c6:e2:88:d1:1e:a7:7a:2c:62:d8:08:
52:67:1e:b5:ac:1e:cd:43:99:ca:69:33:fc:49:68:
9f:bd:7d:6c:cd:64:d3:40:7c:00:4b:74:de:e7:06:
2f:c8:02:4e:38:e2:46:b2:2b:1f:56:2b:ca:84:35:
d4:73:89:eb:b4:15:35:3e:49:2b:7d:3e:b8:f0:16:
ad:b8:ce:d2:9d:ea:52:6b:2e:ed:2e:89:8b:60:b5:
aa:58:a4:01:88:79:10:4a:25:06:95:9e:30:4a:8c:
9b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:A9:4E:83:F7:3B:25:8E:B2:91:FA:3D:3C:05:DF:DE:16:FC:4D:82
X509v3 Authority Key Identifier:
keyid:1F:1D:04:80:75:04:DC:BE:1A:B8:0E:F8:4D:86:E5:14:C5:7E:7E:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hx0EgHUE3L4auA74TYblFMV-fo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/42ac52-ba66-48a2-a07a-b636988ead4d/1/GalOg_c7JY6ykfo9PAXf3hb8TYI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/42ac52-ba66-48a2-a07a-b636988ead4d/1/Hx0EgHUE3L4auA74TYblFMV-fo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.150.0/24
193.239.154.0/24
Signature Algorithm: sha256WithRSAEncryption
23:7a:3e:df:77:65:5b:72:76:53:ac:fc:bb:db:0f:74:97:99:
0e:11:68:54:b4:2f:5a:1e:6a:dc:85:76:6f:63:b7:a3:a6:44:
c8:be:53:81:a5:84:2d:62:d3:a7:a1:c9:ca:c5:ff:f4:f3:a5:
cc:5b:75:ec:aa:4c:55:5a:6b:bc:11:a3:a1:2d:c2:82:ee:c8:
4a:e1:58:bb:1c:bf:c0:65:ad:3d:aa:cc:bb:e3:de:c9:91:8e:
61:25:97:7d:2e:d1:04:59:2e:34:16:4c:fe:66:4a:57:dd:f2:
a6:ff:8f:6d:18:71:ca:2a:fc:43:44:ff:34:09:01:b5:85:14:
ea:5d:96:f9:e6:77:6e:d1:93:f6:78:6d:2f:a4:c2:91:23:0c:
ec:b5:4a:25:49:d2:d3:2c:67:d8:0a:1b:1a:29:9e:aa:1a:12:
ea:37:01:5d:9d:bd:34:60:d9:3e:e2:0b:25:36:80:c5:e9:88:
e3:7a:cf:99:24:4b:a9:90:16:1a:a6:a7:67:03:bc:b1:11:d4:
fc:fe:41:d1:7d:54:4f:19:55:9c:a9:c6:c1:03:fa:45:dc:33:
f3:17:e0:1c:a4:35:5b:59:31:ce:0e:a1:eb:ae:dc:5f:72:d0:
34:2e:69:73:55:29:1a:9e:b9:9b:b0:b9:97:3a:43:f5:c1:60:
76:89:7a:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:27:13 2025 by rpki-client