Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/gGx-x2iRamyRfnlhx5me1YxCw6s.roa
File: gGx-x2iRamyRfnlhx5me1YxCw6s.roa (raw, json)
Hash identifier: JLnMtxeLdoGYGRa/pvkNkIdX/aY0zlXxd7zsjwME0tw=
Subject key identifier: 80:6C:7E:C7:68:91:6A:6C:91:7E:79:61:C7:99:9E:D5:8C:42:C3:AB
Certificate issuer: /CN=d40620ea5daf8a54aaea17f2cb9ecdf35d785306
Certificate serial: 01942522368D5C9C7EC6C3D1DE1A258BC8C2
Authority key identifier: D4:06:20:EA:5D:AF:8A:54:AA:EA:17:F2:CB:9E:CD:F3:5D:78:53:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/gGx-x2iRamyRfnlhx5me1YxCw6s.roa
Signing time: Thu 02 Jan 2025 03:49:46 +0000
ROA not before: Thu 02 Jan 2025 03:49:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211289
IP address blocks: 5.181.52.0/24 maxlen: 24
2a05:3440::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:22:36:8d:5c:9c:7e:c6:c3:d1:de:1a:25:8b:c8:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d40620ea5daf8a54aaea17f2cb9ecdf35d785306
Validity
Not Before: Jan 2 03:49:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=806c7ec768916a6c917e7961c7999ed58c42c3ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:4c:5c:a2:c4:55:77:dd:26:7d:c8:c6:3a:65:
82:11:91:96:41:57:75:ee:f4:7d:57:9f:93:ab:15:
7d:9d:2f:6d:ff:cc:aa:cc:2b:b0:cc:74:61:b3:2a:
00:9f:85:2c:a1:0b:12:54:a6:55:d5:47:62:bc:52:
96:77:32:8d:9d:6a:6e:62:24:13:f5:78:c6:97:7f:
54:14:d9:f0:ed:71:48:8d:ab:39:82:1c:8c:94:61:
21:43:0f:76:6a:46:64:65:bc:6a:ea:a2:b0:c9:50:
f8:23:c9:3e:d2:48:c8:96:83:1b:49:de:39:a1:89:
3b:a4:c7:fd:52:60:cb:13:fa:54:23:ea:86:4f:cf:
a2:3c:4c:4b:07:8f:59:f4:c2:e2:85:15:ed:f8:0d:
3e:8a:0a:39:02:b5:a5:75:7d:af:57:f8:d6:10:80:
40:46:19:6e:26:6e:36:00:5d:12:2b:78:8a:2a:14:
89:2c:f7:53:90:5d:af:70:10:33:3a:40:95:8d:63:
44:f7:6e:83:a8:f4:bd:e3:ff:c8:8c:f6:3e:31:a5:
8b:d6:b3:e4:0b:a3:c7:df:7d:c7:c6:b2:8c:c2:1f:
59:39:4c:77:27:01:77:a2:be:9f:fb:09:21:9c:33:
92:bc:53:39:4a:6b:5c:04:21:22:dc:44:06:33:95:
24:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:6C:7E:C7:68:91:6A:6C:91:7E:79:61:C7:99:9E:D5:8C:42:C3:AB
X509v3 Authority Key Identifier:
keyid:D4:06:20:EA:5D:AF:8A:54:AA:EA:17:F2:CB:9E:CD:F3:5D:78:53:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/gGx-x2iRamyRfnlhx5me1YxCw6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.52.0/24
IPv6:
2a05:3440::/29
Signature Algorithm: sha256WithRSAEncryption
6e:88:54:c7:bf:a9:a4:d4:21:be:ab:ce:50:b8:4e:a3:a2:d2:
52:43:dc:e6:f3:80:a0:90:dd:fc:53:f7:4e:fe:2a:7c:d0:1a:
35:20:7b:40:5f:96:bf:b6:a4:bc:3e:22:85:43:d5:b3:10:f8:
b2:58:14:22:9b:ee:91:93:60:e4:7b:5d:f6:3a:a3:a3:14:74:
7d:94:66:0e:1a:44:c0:85:33:be:3f:db:c9:ae:de:c2:f2:a0:
31:86:9d:cc:c8:a0:10:25:07:45:15:22:bf:23:6f:9f:69:d7:
2b:3b:0c:b9:22:ba:de:d6:c9:af:ae:9a:b1:c8:74:d9:6f:0b:
18:38:43:d7:61:c2:8d:ee:4c:74:3c:a9:4b:54:2a:64:f1:35:
7c:69:02:c7:94:df:aa:ad:10:8f:5c:33:49:7e:2f:29:df:77:
be:d3:c1:90:30:ef:6d:b0:f6:42:af:8a:97:9c:80:0a:5f:06:
46:70:2a:66:c3:0a:10:eb:ba:37:b1:9e:9d:a6:30:88:21:23:
fc:4f:08:c4:ab:11:55:79:3b:28:74:d3:03:7c:70:35:a4:ae:
88:6f:99:d5:80:53:f5:ca:f5:0d:54:f6:cb:ee:4e:3e:9d:f3:
49:ba:7b:e9:34:79:2e:0b:30:86:ef:c0:4d:84:dc:bc:47:e8:
60:54:b6:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:34 2025 by rpki-client on console.sobornost.net