Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/605f1c-0d7a-4bd3-88b6-2f0a6bdbbe51/1/gtefixppHDgPkEEMhZq1SfvWirQ.roa
File: gtefixppHDgPkEEMhZq1SfvWirQ.roa (raw, json)
Hash identifier: vn3uTTSXJsi+O61TM8/AR6beVW9RqmzQLNC3wyKaQ10=
Subject key identifier: 82:D7:9F:8B:1A:69:1C:38:0F:90:41:0C:85:9A:B5:49:FB:D6:8A:B4
Certificate issuer: /CN=10f1d0dbe093c722350618f4045c25ba94317f87
Certificate serial: 01942067F0FD947C4AB75F72A32FDD08FF8F
Authority key identifier: 10:F1:D0:DB:E0:93:C7:22:35:06:18:F4:04:5C:25:BA:94:31:7F:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EPHQ2-CTxyI1Bhj0BFwlupQxf4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/605f1c-0d7a-4bd3-88b6-2f0a6bdbbe51/1/gtefixppHDgPkEEMhZq1SfvWirQ.roa
Signing time: Wed 01 Jan 2025 05:47:50 +0000
ROA not before: Wed 01 Jan 2025 05:47:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213054
IP address blocks: 185.221.244.0/24 maxlen: 24
2a04:3f83:44::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:f0:fd:94:7c:4a:b7:5f:72:a3:2f:dd:08:ff:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10f1d0dbe093c722350618f4045c25ba94317f87
Validity
Not Before: Jan 1 05:47:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=82d79f8b1a691c380f90410c859ab549fbd68ab4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:fa:f5:14:23:c3:e7:db:91:e4:5b:e1:a7:34:
26:97:4f:84:79:ec:50:37:ae:b1:27:11:99:f8:20:
e7:d4:43:ce:65:55:db:3d:cb:bf:fc:f8:9d:80:ee:
02:2d:07:1a:5a:5f:70:42:ba:a2:d8:dc:8e:22:82:
39:32:bb:0d:28:6b:2c:6d:22:a8:84:40:29:cd:14:
c9:3c:fe:94:e0:43:69:73:94:d2:4d:ad:55:c6:dd:
79:fa:71:49:0e:76:0e:e8:7c:2b:60:e1:24:27:81:
f1:0b:47:50:3a:e2:bb:61:55:21:6a:c8:4c:91:f9:
3e:01:91:ac:bb:38:b3:3f:ca:4c:25:54:c0:b9:c9:
cc:e9:f5:a9:dc:42:da:0d:92:44:87:a3:9a:6a:92:
f7:da:61:f3:3b:70:68:e5:21:45:40:aa:7c:57:de:
04:cb:a6:6c:fa:9d:f9:5f:d8:fc:ba:c2:6b:f6:10:
1f:fe:da:12:0d:e6:40:03:de:a4:85:df:73:e1:86:
8f:bb:d6:ae:6d:68:c9:ed:80:35:a1:f1:ed:6a:06:
b4:f8:47:07:59:20:c9:f5:ec:2d:81:34:7a:9c:83:
a6:7c:14:b7:cf:c0:d9:5f:43:a7:4d:b9:27:c5:0a:
2e:99:72:65:64:89:a7:c9:c1:ef:88:ef:f7:3d:92:
35:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:D7:9F:8B:1A:69:1C:38:0F:90:41:0C:85:9A:B5:49:FB:D6:8A:B4
X509v3 Authority Key Identifier:
keyid:10:F1:D0:DB:E0:93:C7:22:35:06:18:F4:04:5C:25:BA:94:31:7F:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EPHQ2-CTxyI1Bhj0BFwlupQxf4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/605f1c-0d7a-4bd3-88b6-2f0a6bdbbe51/1/gtefixppHDgPkEEMhZq1SfvWirQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/605f1c-0d7a-4bd3-88b6-2f0a6bdbbe51/1/EPHQ2-CTxyI1Bhj0BFwlupQxf4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.244.0/24
IPv6:
2a04:3f83:44::/48
Signature Algorithm: sha256WithRSAEncryption
74:48:65:6a:d7:44:94:90:c1:54:5f:86:a1:19:bc:ba:3f:a8:
7c:85:26:cd:49:0d:38:1c:55:9b:f4:64:03:e0:6f:1d:e8:ed:
2a:41:c2:82:2c:38:07:68:2a:27:be:65:72:3c:d6:f4:06:cd:
2c:24:de:0f:b9:23:2c:c5:72:44:50:c2:3a:b8:c0:84:6c:e7:
a6:4d:5b:f1:44:81:4c:b1:9e:b0:66:83:19:c4:31:05:67:d9:
7b:9f:1d:2a:e9:98:7c:34:ed:66:cb:ee:eb:5a:97:e9:5f:0b:
fe:0f:eb:0d:f5:09:75:a0:00:c7:a6:25:44:42:4e:3a:4b:5c:
05:6e:a6:09:82:e0:58:66:ae:bb:4d:9c:c3:c2:ec:91:53:f4:
b5:51:c8:59:52:88:01:6c:18:fc:42:ef:74:31:1f:12:b0:8f:
43:29:45:69:03:de:98:a3:b7:65:2b:b5:f9:69:82:61:e0:7e:
7b:82:25:94:86:d3:28:20:29:35:91:80:a9:f3:6a:1b:8f:06:
6e:a1:ca:61:14:47:2e:38:c2:74:d3:40:33:94:7e:60:a4:2b:
6b:c3:76:3d:c3:a6:cd:bf:a7:22:93:53:90:4d:d5:2f:48:9c:
90:2d:08:56:1c:fd:03:0e:ce:8d:7a:6b:54:19:22:be:06:ad:
ac:c0:1f:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:18 2025 by rpki-client on console.sobornost.net