Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/5GO_jTAjEAf4wPy5o947VF0ZLP0.roa
File: 5GO_jTAjEAf4wPy5o947VF0ZLP0.roa (raw, json)
Hash identifier: 7fA0O6jpT3fIIGvvtizRRGpgJBjSARfe4bkKkZGzT9k=
Subject key identifier: E4:63:BF:8D:30:23:10:07:F8:C0:FC:B9:A3:DE:3B:54:5D:19:2C:FD
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 018BB73B96216646EE37C6A7998D89653508
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/5GO_jTAjEAf4wPy5o947VF0ZLP0.roa
Signing time: Fri 10 Nov 2023 03:16:57 +0000
ROA not before: Fri 10 Nov 2023 03:16:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61971
IP address blocks: 89.23.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b7:3b:96:21:66:46:ee:37:c6:a7:99:8d:89:65:35:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Nov 10 03:16:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e463bf8d30231007f8c0fcb9a3de3b545d192cfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:e7:07:48:2a:66:ec:6c:f2:6e:88:19:14:93:
6e:d2:6a:5f:20:9d:9c:4a:5f:2b:77:0c:64:87:cd:
f9:cb:05:92:b9:b3:74:f2:51:98:17:8e:42:11:25:
7a:6b:0c:12:76:a5:67:2c:b6:7d:e8:92:49:b0:65:
ce:dd:4b:ce:4c:86:4e:64:e9:59:bc:d8:2d:d5:7f:
a5:aa:66:cf:c3:be:e8:f2:ee:57:0c:3c:11:e9:05:
16:23:7c:29:4d:a5:74:3d:17:c7:d5:bf:69:8c:f1:
f6:09:4e:14:3d:51:fe:14:e9:eb:9b:52:1c:ca:cf:
51:9c:b2:11:58:4a:02:57:4d:8e:e3:92:3c:66:e5:
45:9c:74:45:44:6d:70:7d:4a:5e:4a:a2:66:66:79:
a2:bd:de:6f:04:9c:b1:9e:65:53:91:11:90:b3:c4:
12:4c:2f:fa:80:a7:af:08:f8:74:d1:f2:92:86:3a:
a9:36:43:b5:ce:5a:bd:fd:b7:13:1e:fe:ad:9d:fe:
c1:cc:f6:1a:08:6b:29:55:a7:fe:e7:37:2a:ea:36:
68:4c:0a:ca:3d:2a:a5:27:83:12:52:e7:89:c4:0b:
e2:d3:f9:e3:be:da:f9:47:1a:97:f8:82:46:12:96:
36:e6:86:25:3d:0f:39:7f:9d:82:2a:61:b4:36:10:
27:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:63:BF:8D:30:23:10:07:F8:C0:FC:B9:A3:DE:3B:54:5D:19:2C:FD
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/5GO_jTAjEAf4wPy5o947VF0ZLP0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.120.0/24
Signature Algorithm: sha256WithRSAEncryption
40:42:a5:c6:c2:9e:e6:30:11:d7:f3:d5:29:83:aa:e2:98:90:
a9:a8:47:ca:0b:4f:54:e3:4e:19:45:ff:4e:29:f1:2c:49:47:
04:0e:07:5d:95:4f:e2:34:45:fe:81:c9:dd:d7:00:48:7c:48:
a1:81:f3:22:7d:bb:da:a6:43:9e:14:1c:b4:72:0e:3b:12:58:
cb:d1:29:83:f5:b9:9a:3d:44:4c:0b:9a:43:50:7d:57:a5:73:
48:09:ea:b0:39:57:8f:df:7f:8a:fe:c1:0a:9a:e0:00:d6:e8:
bf:f5:fe:f3:5e:45:d7:34:25:cf:f2:36:f6:ca:0a:07:b0:75:
27:aa:9d:8f:dc:25:db:89:34:f0:cb:81:5e:81:f5:37:53:c1:
ed:6a:2b:8f:54:1b:4e:2f:6e:8e:c1:ab:a9:4a:64:e7:fa:f2:
23:c8:40:a0:86:41:53:e3:9f:91:37:44:44:1c:db:94:e3:a9:
e6:42:d2:e0:6c:a6:ca:6c:53:28:d1:18:9e:30:09:aa:e3:c3:
4a:ca:18:61:4d:0f:c6:43:7f:4b:b7:1e:80:f3:df:38:6a:19:
fb:1e:1d:a4:1b:8a:9a:6b:19:81:7a:51:d0:32:47:f3:d7:17:
3b:b0:ff:6b:78:1b:87:a1:b8:b0:d9:a6:24:b5:25:fb:06:ed:
fa:31:eb:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:00:43 2025 by rpki-client