Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/gb13af6kKgtlfQFdYQtCupgkRjQ.roa
File: gb13af6kKgtlfQFdYQtCupgkRjQ.roa (raw, json)
Hash identifier: WlJgR2c//WMYosfMkR2CJaWVw/G4EQYofJSeZrH4jNE=
Subject key identifier: 81:BD:77:69:FE:A4:2A:0B:65:7D:01:5D:61:0B:42:BA:98:24:46:34
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 01942143B7C2A9B13F459BBE807081A5CE6A
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/gb13af6kKgtlfQFdYQtCupgkRjQ.roa
Signing time: Wed 01 Jan 2025 09:47:53 +0000
ROA not before: Wed 01 Jan 2025 09:47:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198777
IP address blocks: 193.59.88.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:b7:c2:a9:b1:3f:45:9b:be:80:70:81:a5:ce:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Jan 1 09:47:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=81bd7769fea42a0b657d015d610b42ba98244634
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:bd:99:4b:ba:89:43:ee:55:ef:2b:4b:12:60:
65:c7:4d:9a:7f:28:3a:95:98:30:f6:0b:c6:3b:c9:
f3:54:5e:1a:0c:de:1d:8c:16:d8:a4:10:c4:f8:b1:
b7:7b:f0:19:cc:05:eb:da:82:bf:bb:9a:41:52:93:
be:d0:52:c9:b5:8b:e6:89:bb:e9:0e:3a:e6:82:2d:
86:36:6d:f0:26:25:6d:1a:94:6a:da:d8:f1:b8:eb:
d5:7e:1c:22:14:1e:bf:d1:0f:54:2a:14:61:b6:90:
ff:56:99:4a:52:ed:6c:08:97:18:9c:56:73:a9:00:
58:82:96:44:8c:50:be:50:c6:44:a9:4e:3b:9b:a5:
95:bc:4f:d6:59:12:23:c4:d1:8a:82:58:cd:0a:9a:
bc:ff:4a:df:a6:06:c8:1a:0c:d3:c9:19:15:68:1c:
85:d5:0e:88:86:7d:00:eb:a0:ef:5c:d2:26:fc:2d:
ea:0e:43:71:90:54:19:06:00:90:85:d0:9e:e5:e4:
f4:c7:87:32:07:ab:8c:5c:b7:9e:2f:a7:64:db:48:
e6:b3:82:6a:fe:89:7c:f3:ef:68:f5:f2:9c:3f:7b:
f4:4d:88:1b:ed:92:f7:96:11:cc:89:1e:ee:44:a8:
0d:7a:3f:32:ce:72:82:13:ea:3f:40:2f:95:e1:43:
04:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:BD:77:69:FE:A4:2A:0B:65:7D:01:5D:61:0B:42:BA:98:24:46:34
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/gb13af6kKgtlfQFdYQtCupgkRjQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.59.88.0/23
Signature Algorithm: sha256WithRSAEncryption
03:f7:0c:60:95:1b:2a:e0:9c:b1:ae:f3:95:0e:30:7b:97:cd:
7c:37:0a:4d:c2:05:da:e2:08:7d:06:5e:30:b3:3c:3d:1f:ea:
34:af:d6:c7:34:b6:a5:4a:a3:52:11:fd:24:92:8d:18:41:71:
4d:83:d8:9c:33:79:00:64:0d:6b:7a:98:f0:ae:57:15:f2:76:
66:09:df:0b:93:b4:42:d8:84:14:96:ba:0c:44:f2:9c:e8:14:
68:14:4e:0b:a1:a8:70:32:8f:a8:1d:e6:29:09:6e:d8:8b:7d:
ac:a7:c9:cc:6f:e5:a3:1f:45:ae:cb:1f:91:e8:de:8d:6b:03:
5b:80:cc:6d:3a:74:76:f4:78:d0:b2:9d:3c:c0:13:40:a4:cb:
ac:76:2b:3f:53:88:15:44:56:75:77:2c:31:f6:69:48:e4:d3:
f8:07:9b:6e:a7:06:2a:89:19:1a:8b:f9:e3:2c:29:15:ff:8c:
ca:c1:de:70:7b:4e:ab:55:66:a4:8e:64:b3:00:2a:a5:a4:8c:
90:6b:52:12:41:d1:de:bb:95:2d:ee:1b:8b:df:af:1c:52:2a:
ec:41:1b:a2:66:65:0d:2c:90:4a:d8:cc:e1:2b:62:2d:7e:91:
50:6d:5a:d6:58:7c:0c:0e:8b:7c:ab:59:53:f2:21:59:17:d4:
9c:d8:dd:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 03:26:39 2025 by rpki-client