Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/GpIZ4jE-9ieq_ECexQxa_m3ORPw.roa
File: GpIZ4jE-9ieq_ECexQxa_m3ORPw.roa (raw, json)
Hash identifier: IjDJZYXavRzEltys5gXrAE3D7K9MgVcCUjh6DyqqaSM=
Subject key identifier: 1A:92:19:E2:31:3E:F6:27:AA:FC:40:9E:C5:0C:5A:FE:6D:CE:44:FC
Certificate issuer: /CN=856caf1f2f0291401105ef68b25957dc555510d2
Certificate serial: 01941F8CA1E4E7C317A1639664FAAA6CAD32
Authority key identifier: 85:6C:AF:1F:2F:02:91:40:11:05:EF:68:B2:59:57:DC:55:55:10:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWyvHy8CkUARBe9osllX3FVVENI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/GpIZ4jE-9ieq_ECexQxa_m3ORPw.roa
Signing time: Wed 01 Jan 2025 01:48:17 +0000
ROA not before: Wed 01 Jan 2025 01:48:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50074
IP address blocks: 195.211.208.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:a1:e4:e7:c3:17:a1:63:96:64:fa:aa:6c:ad:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=856caf1f2f0291401105ef68b25957dc555510d2
Validity
Not Before: Jan 1 01:48:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1a9219e2313ef627aafc409ec50c5afe6dce44fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:5c:ee:bc:e4:31:48:28:da:51:a4:4a:77:7b:
e8:69:fb:35:7c:32:f6:56:98:76:1f:0f:9a:d5:31:
83:fc:ed:7f:21:e4:de:cc:47:36:5d:b6:30:b6:98:
30:ca:9e:05:a7:cb:27:81:e2:1d:58:a7:c5:12:58:
06:d9:2f:6f:28:20:1d:dc:93:88:89:18:5d:6d:7d:
03:98:af:b4:b9:6e:bb:c9:8e:8d:3d:9f:ab:f4:78:
44:ec:80:e6:c3:a1:a5:8f:c9:1e:c4:3a:23:ae:a2:
2a:53:54:1c:97:82:84:db:70:de:e8:cd:4f:3c:e8:
c8:7c:bb:69:1a:6a:69:a9:ae:94:d5:5a:d8:0e:09:
6b:79:a0:c1:0b:5a:d2:16:7a:62:39:e0:be:cb:fc:
fc:ea:6d:9a:6c:19:eb:6f:d1:72:65:cb:0a:ef:0f:
9b:54:7e:02:f5:30:e8:54:9e:5a:ff:2d:d3:94:ff:
b0:cb:df:3a:aa:d1:12:47:03:cc:7e:e3:b9:e9:ed:
15:0b:1c:52:84:23:e5:b2:9f:46:3d:c7:78:c8:06:
03:a9:53:c5:6c:2a:bb:16:e1:29:15:e0:ed:6a:11:
71:b3:b6:ee:0a:59:49:85:5d:31:04:9a:95:35:20:
cd:35:50:4c:f3:58:4a:e1:c9:57:13:0c:73:04:0e:
99:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:92:19:E2:31:3E:F6:27:AA:FC:40:9E:C5:0C:5A:FE:6D:CE:44:FC
X509v3 Authority Key Identifier:
keyid:85:6C:AF:1F:2F:02:91:40:11:05:EF:68:B2:59:57:DC:55:55:10:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWyvHy8CkUARBe9osllX3FVVENI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/GpIZ4jE-9ieq_ECexQxa_m3ORPw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.211.208.0/22
Signature Algorithm: sha256WithRSAEncryption
81:91:91:83:fd:ec:73:33:e2:dd:d6:47:fd:e2:b8:19:0e:7e:
9e:93:c1:5f:76:44:f3:5c:2a:61:d6:17:2e:ae:72:4b:8d:db:
7d:f5:81:0e:23:8c:bf:93:2d:2a:dd:2b:17:ef:b1:97:78:fd:
dd:13:b9:8c:54:a5:52:e8:c3:ef:87:5a:f4:8d:69:bf:ef:77:
39:91:f3:df:7e:b0:00:e4:c3:5f:c5:d2:cb:1f:c6:bc:8a:33:
74:05:d2:8c:1a:d4:1b:0d:00:c8:1a:e8:41:4d:a2:7a:56:69:
8d:0c:33:12:88:ad:4e:53:30:fe:87:77:ee:1a:94:ac:5c:24:
b0:56:e4:f0:59:7d:35:90:1d:dd:56:00:35:7c:f4:7a:eb:45:
8e:d0:4c:ec:33:da:b4:40:8d:a4:53:19:1f:15:3d:98:ad:f3:
d6:0d:3e:39:0d:aa:32:4e:c4:45:20:bf:24:86:2c:12:ff:0d:
07:30:81:17:df:44:e9:1b:4c:43:ea:d9:62:de:f0:60:fa:d1:
3a:13:b6:11:17:be:de:a2:a0:49:ee:b0:a0:63:2f:f9:60:ac:
23:b5:ae:28:ab:83:4b:62:64:53:eb:cb:8b:7d:b5:86:ae:85:
4b:02:e9:ce:44:5d:51:44:9b:e4:71:27:05:1c:b3:54:4e:dd:
d7:3f:7f:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:11 2025 by rpki-client on console.sobornost.net