Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/c41f77-b6a2-4494-a074-4fae84fa158e/1/Gg8qXyeg-gil2NOkr3thvUZqwIE.roa
File: Gg8qXyeg-gil2NOkr3thvUZqwIE.roa (raw, json)
Hash identifier: pEcvppDB8KUs5+dwI7YABXPT/TWvmUqee92Iz6LzfZk=
Subject key identifier: 1A:0F:2A:5F:27:A0:FA:08:A5:D8:D3:A4:AF:7B:61:BD:46:6A:C0:81
Certificate issuer: /CN=7d2a01224b1da86480cfecbcb6c52df9812968e8
Certificate serial: 019425217429B047435F499713CC5BE3CA8E
Authority key identifier: 7D:2A:01:22:4B:1D:A8:64:80:CF:EC:BC:B6:C5:2D:F9:81:29:68:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fSoBIksdqGSAz-y8tsUt-YEpaOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/c41f77-b6a2-4494-a074-4fae84fa158e/1/Gg8qXyeg-gil2NOkr3thvUZqwIE.roa
Signing time: Thu 02 Jan 2025 03:48:56 +0000
ROA not before: Thu 02 Jan 2025 03:48:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43023
IP address blocks: 185.187.138.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:74:29:b0:47:43:5f:49:97:13:cc:5b:e3:ca:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d2a01224b1da86480cfecbcb6c52df9812968e8
Validity
Not Before: Jan 2 03:48:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1a0f2a5f27a0fa08a5d8d3a4af7b61bd466ac081
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:77:49:fc:ef:e5:53:fd:e4:ee:bf:46:f9:53:
a3:f1:f3:21:f7:3a:14:b1:1a:5f:5d:47:a8:33:60:
b0:34:5e:1e:36:11:b1:7b:4a:76:aa:ac:ad:10:4c:
3b:4e:06:70:38:df:2f:2c:13:94:18:db:ce:d1:af:
cd:9e:2f:ec:4d:93:35:52:87:26:11:38:e9:9a:b8:
af:3c:30:0c:12:54:ce:2a:c3:2b:da:52:54:73:27:
2d:f0:5d:03:27:69:76:8e:6a:9a:10:2e:d0:dc:bf:
e3:c6:20:04:42:d9:57:8f:44:f5:65:74:c1:36:ab:
1f:14:70:92:5e:12:05:1e:94:ee:d1:f2:f8:bc:de:
1c:91:ca:ce:e5:82:73:a9:7b:13:96:58:e5:95:c0:
20:24:95:ce:3a:de:2b:17:70:bf:16:b6:6b:b6:d6:
a0:20:84:2a:f8:ab:c8:4e:e1:27:71:c6:99:4a:da:
43:b7:30:0f:13:66:9a:63:09:dc:b2:f0:c1:df:7d:
b8:99:d0:64:53:60:27:04:69:83:5a:79:1c:cf:88:
05:7e:b4:8e:10:30:42:46:f0:75:3a:5b:f2:55:ec:
fc:ef:f4:7f:a4:1a:c1:76:eb:6c:6e:a6:d2:47:0c:
c3:62:ce:fa:50:6b:09:c8:11:84:93:97:ed:92:6b:
d5:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:0F:2A:5F:27:A0:FA:08:A5:D8:D3:A4:AF:7B:61:BD:46:6A:C0:81
X509v3 Authority Key Identifier:
keyid:7D:2A:01:22:4B:1D:A8:64:80:CF:EC:BC:B6:C5:2D:F9:81:29:68:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fSoBIksdqGSAz-y8tsUt-YEpaOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/c41f77-b6a2-4494-a074-4fae84fa158e/1/Gg8qXyeg-gil2NOkr3thvUZqwIE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/c41f77-b6a2-4494-a074-4fae84fa158e/1/fSoBIksdqGSAz-y8tsUt-YEpaOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.187.138.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:6d:4a:88:e8:f0:89:be:35:16:24:e2:21:d0:81:62:be:d9:
0b:70:a9:58:88:ae:12:3b:2a:39:6a:be:b6:5d:ed:8e:2a:fb:
fc:a4:09:7a:1e:10:98:87:b8:31:ba:e6:69:3c:19:45:26:6f:
55:81:b5:96:a1:8a:e3:10:5f:50:df:94:1b:18:d2:b5:12:63:
59:df:b8:11:18:31:0d:19:f8:99:3c:5b:e4:e4:3a:99:ef:3c:
8b:8b:42:19:d8:45:31:bf:04:0c:18:40:ed:74:36:7e:15:b1:
b5:01:fd:f7:f8:d5:71:05:83:88:76:a2:8b:fc:d6:31:7c:b3:
13:ab:36:c5:0c:ee:27:72:fd:02:27:43:93:da:a1:fa:09:f2:
5f:03:73:8c:dc:dc:f7:ca:51:76:ba:76:1a:92:ac:5d:a0:a0:
a9:85:3c:98:d0:40:d0:c3:68:a6:29:fd:4b:c9:cf:db:9c:78:
80:37:62:00:55:f6:02:1a:3c:b9:c5:c6:a0:08:03:45:e3:02:
bc:cc:01:ea:6b:d7:71:87:6e:e9:7a:53:ca:67:03:53:f5:b0:
28:4b:1b:cf:a0:f3:c0:ce:f5:c6:fb:96:e8:f7:ec:e5:8b:67:
07:fc:6d:3e:b1:26:9b:85:91:e8:15:92:f5:ff:30:71:5f:90:
c6:f2:53:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:34 2025 by rpki-client on console.sobornost.net