Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/de64f7-39d9-4bbd-b023-bedcbc5a0174/1/gi0_EyMqvU0B6RLloJeCvIjrKZc.roa
File: gi0_EyMqvU0B6RLloJeCvIjrKZc.roa (raw, json)
Hash identifier: SmxwMosUzjILazIuYN/g07frRTjtu/khfxltbXPY3+0=
Subject key identifier: 82:2D:3F:13:23:2A:BD:4D:01:E9:12:E5:A0:97:82:BC:88:EB:29:97
Certificate issuer: /CN=80d1c0b4ef090c44d78b7ccb0bf72f09d0831f34
Certificate serial: 019420D5AB2AB672C6CD77AC5D8A99E5EDEE
Authority key identifier: 80:D1:C0:B4:EF:09:0C:44:D7:8B:7C:CB:0B:F7:2F:09:D0:83:1F:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gNHAtO8JDETXi3zLC_cvCdCDHzQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/de64f7-39d9-4bbd-b023-bedcbc5a0174/1/gi0_EyMqvU0B6RLloJeCvIjrKZc.roa
Signing time: Wed 01 Jan 2025 07:47:41 +0000
ROA not before: Wed 01 Jan 2025 07:47:41 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25099
IP address blocks: 194.0.157.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:ab:2a:b6:72:c6:cd:77:ac:5d:8a:99:e5:ed:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80d1c0b4ef090c44d78b7ccb0bf72f09d0831f34
Validity
Not Before: Jan 1 07:47:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=822d3f13232abd4d01e912e5a09782bc88eb2997
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:99:15:d2:d3:89:d2:d8:1d:f0:78:a2:ae:83:
ce:08:c4:02:44:c2:4f:71:97:92:ba:56:3c:d8:30:
68:f7:dd:2b:26:0c:d2:e5:37:e8:24:3c:3e:fe:06:
27:7e:34:8d:db:28:e6:00:93:da:38:c4:1d:7d:50:
1a:d0:ae:cb:30:52:2e:8f:45:75:fe:51:0d:a6:9e:
24:56:49:e6:a6:9e:91:0c:38:2e:af:33:85:e5:e0:
39:84:0a:c7:fc:56:95:cf:f9:81:cc:43:c4:0c:ae:
14:80:f2:4d:6c:99:f0:35:9b:7e:37:66:7a:5e:94:
54:2b:1f:3a:9e:da:ec:c5:e3:92:87:84:2e:79:47:
bc:4b:cb:ca:ca:89:fd:43:e2:23:22:6e:71:43:d6:
f0:f8:94:17:a3:57:d2:e7:cc:90:e5:b8:cb:04:5f:
62:b4:cd:ef:34:1c:fa:59:76:bd:1d:e1:0a:28:cf:
f7:f8:61:49:56:dc:5f:0f:17:d5:8d:07:34:c1:48:
94:d3:01:9d:48:7d:5a:bc:b1:13:43:66:40:49:1a:
0f:94:e2:4a:76:70:41:fa:65:d6:67:94:66:6a:5c:
99:fc:33:75:c3:d7:e5:fd:6e:6c:12:a4:b4:5f:05:
9d:2f:b5:04:1d:18:45:a6:6e:04:59:48:40:7e:a2:
eb:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:2D:3F:13:23:2A:BD:4D:01:E9:12:E5:A0:97:82:BC:88:EB:29:97
X509v3 Authority Key Identifier:
keyid:80:D1:C0:B4:EF:09:0C:44:D7:8B:7C:CB:0B:F7:2F:09:D0:83:1F:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gNHAtO8JDETXi3zLC_cvCdCDHzQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/de64f7-39d9-4bbd-b023-bedcbc5a0174/1/gi0_EyMqvU0B6RLloJeCvIjrKZc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/de64f7-39d9-4bbd-b023-bedcbc5a0174/1/gNHAtO8JDETXi3zLC_cvCdCDHzQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.0.157.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:28:a3:dd:a8:9c:98:c9:a7:97:12:7e:36:eb:aa:c6:d9:c9:
57:9e:1f:04:a9:d6:d8:4c:84:ea:f1:54:1f:af:b3:6a:79:6e:
4c:25:37:fb:15:05:a8:ac:a2:13:de:fb:bb:ee:4f:28:4f:8a:
29:8b:70:36:a3:d3:97:92:56:a4:cf:7e:a7:3b:62:29:5e:4a:
de:86:c4:9c:a4:2e:3a:ba:3a:5e:5f:3a:b0:df:a9:b2:03:b5:
28:10:47:0f:a4:79:fb:60:f3:da:8a:50:0d:cc:6e:c3:d9:91:
fb:98:f6:00:a2:e4:2b:05:2d:3a:59:1c:ac:e6:cb:e2:0e:e0:
d4:81:0d:ea:2a:da:22:47:91:81:75:c9:9e:8a:a7:fd:44:57:
87:56:51:33:77:72:a3:cc:9c:f0:d2:7b:ac:09:bf:61:c8:9c:
c7:23:9d:24:04:99:2a:0a:ec:72:c3:a7:9f:9f:30:23:71:f8:
ba:c4:10:eb:1c:bf:74:54:1f:64:da:7d:bb:aa:b5:28:62:31:
49:e9:a8:89:54:3a:b1:68:a0:bf:c9:05:12:44:e1:1b:92:34:
ce:ee:06:0c:5f:ca:3c:d0:81:6e:f8:ad:7e:97:a1:a0:7e:f2:
59:b0:c9:6e:0f:23:5c:11:cc:6d:36:a4:03:2d:c3:b9:89:be:
aa:c3:ea:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 14:45:24 2025 by rpki-client