Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/674e76-4245-402d-9c51-d2d2aba28e80/1/Gr2bTac37FdQF97pGkH13J5M8LQ.roa
File: Gr2bTac37FdQF97pGkH13J5M8LQ.roa (raw, json)
Hash identifier: oaatGmufJtltyljxjCY0yrTcOMqVjEXZ2p4QbghN278=
Subject key identifier: 1A:BD:9B:4D:A7:37:EC:57:50:17:DE:E9:1A:41:F5:DC:9E:4C:F0:B4
Certificate issuer: /CN=e7c7ec8d780503db7cabcb141d6b991cd029a6a2
Certificate serial: 0194206810E96BF628A7DE0D4B8E868C4B6A
Authority key identifier: E7:C7:EC:8D:78:05:03:DB:7C:AB:CB:14:1D:6B:99:1C:D0:29:A6:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/58fsjXgFA9t8q8sUHWuZHNAppqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/674e76-4245-402d-9c51-d2d2aba28e80/1/Gr2bTac37FdQF97pGkH13J5M8LQ.roa
Signing time: Wed 01 Jan 2025 05:47:58 +0000
ROA not before: Wed 01 Jan 2025 05:47:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48774
IP address blocks: 194.59.182.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:10:e9:6b:f6:28:a7:de:0d:4b:8e:86:8c:4b:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7c7ec8d780503db7cabcb141d6b991cd029a6a2
Validity
Not Before: Jan 1 05:47:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1abd9b4da737ec575017dee91a41f5dc9e4cf0b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:22:3d:88:ee:70:56:5a:ca:25:fa:3f:c1:af:
a4:a7:42:46:9e:f3:44:dd:56:20:f9:10:a3:4a:58:
9f:97:1c:8b:fe:87:b9:6b:bf:74:8e:cb:3a:89:a5:
00:68:91:9b:a9:db:33:51:b4:f8:73:fd:f3:a5:14:
62:03:1a:ee:13:e3:d8:d3:e1:6f:ec:0a:af:5c:e2:
5e:6f:23:e9:44:e0:7f:29:58:29:d4:06:c3:06:ad:
13:4a:bd:4f:96:16:54:07:48:4e:25:79:ff:82:8c:
8f:29:92:ba:29:c1:30:51:1a:1c:fc:db:ad:40:40:
d6:46:18:d3:61:4d:b7:8c:bf:2b:4e:73:d8:06:ad:
09:1a:9f:11:2d:93:27:47:fd:2b:45:92:ac:8d:62:
20:49:ce:28:f4:01:3c:07:b1:e5:47:13:d4:f8:6e:
10:05:db:cb:d4:7a:de:f4:c5:f5:de:62:58:e3:62:
d6:ce:3d:e3:16:3b:55:81:8d:af:04:18:a0:24:a9:
a2:d0:91:76:03:44:22:4c:9f:ed:96:ba:84:9b:23:
b4:75:40:6a:c2:16:af:b3:21:a1:67:35:ac:12:00:
af:e4:fd:1d:a2:6b:89:06:cc:8a:e1:0b:9d:31:27:
29:34:93:a7:e1:c6:51:3c:80:c6:f5:3a:e7:a4:ad:
b8:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:BD:9B:4D:A7:37:EC:57:50:17:DE:E9:1A:41:F5:DC:9E:4C:F0:B4
X509v3 Authority Key Identifier:
keyid:E7:C7:EC:8D:78:05:03:DB:7C:AB:CB:14:1D:6B:99:1C:D0:29:A6:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/58fsjXgFA9t8q8sUHWuZHNAppqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/674e76-4245-402d-9c51-d2d2aba28e80/1/Gr2bTac37FdQF97pGkH13J5M8LQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/674e76-4245-402d-9c51-d2d2aba28e80/1/58fsjXgFA9t8q8sUHWuZHNAppqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.59.182.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:51:89:5e:f0:45:6f:7e:7e:fd:57:42:07:f1:9c:c9:6e:33:
a3:47:c9:74:a9:ba:df:d9:42:16:71:97:59:ed:7c:8d:bd:95:
6b:79:b3:1c:0e:48:28:95:4c:3e:c7:22:72:93:33:33:39:8e:
2e:10:4e:b2:98:6f:c6:14:2d:d0:9f:92:17:cc:e1:ca:67:03:
73:57:d4:33:7d:e1:7b:d2:ff:16:2d:93:e0:04:4f:c7:ea:c9:
50:72:de:d3:a8:b5:9e:63:f0:f5:8a:29:eb:47:90:91:1b:22:
45:95:6c:4e:72:98:be:93:1a:b1:8a:22:2d:bc:94:9d:9e:77:
1f:f3:98:ca:4b:3b:b9:1c:fb:bf:8b:e4:ae:f0:e1:8f:00:b1:
a1:97:8b:f2:b8:22:dd:76:d6:ba:9b:e7:53:74:e2:2c:24:7d:
a5:2e:9b:34:a9:a0:2a:bd:79:6a:a3:b2:16:30:a4:1f:63:2d:
05:12:36:c8:72:98:67:d4:b0:d5:e9:ca:07:17:10:fc:e8:3c:
1c:d3:b9:04:52:ea:07:0a:5c:bd:02:ed:ea:7b:68:a1:20:eb:
ef:15:6c:3f:53:ce:8a:54:24:df:b3:42:6d:b5:33:32:92:3b:
43:a0:cf:20:89:a5:72:e1:ff:dc:7e:82:0d:bd:4f:da:39:18:
2f:10:4a:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 08:47:47 2025 by rpki-client