Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/ccc1cb-0721-4542-9d65-7e610bab8178/1/GQa1KY4OcnJ2kHAqD-Cv1b2a-zA.roa
File: GQa1KY4OcnJ2kHAqD-Cv1b2a-zA.roa (raw, json)
Hash identifier: 7NefviQlJAqTcxFHUyy+1ciw9lf4U6rZucgV8KCZKL8=
Subject key identifier: 19:06:B5:29:8E:0E:72:72:76:90:70:2A:0F:E0:AF:D5:BD:9A:FB:30
Certificate issuer: /CN=179fbe82afcb4e54c7d497123a5c837114c57162
Certificate serial: 019427487A7C353C068B380556C6690A9B1E
Authority key identifier: 17:9F:BE:82:AF:CB:4E:54:C7:D4:97:12:3A:5C:83:71:14:C5:71:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5--gq_LTlTH1JcSOlyDcRTFcWI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/ccc1cb-0721-4542-9d65-7e610bab8178/1/GQa1KY4OcnJ2kHAqD-Cv1b2a-zA.roa
Signing time: Thu 02 Jan 2025 13:50:48 +0000
ROA not before: Thu 02 Jan 2025 13:50:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202146
IP address blocks: 185.52.64.0/22 maxlen: 24
2a04:c500::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:7a:7c:35:3c:06:8b:38:05:56:c6:69:0a:9b:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=179fbe82afcb4e54c7d497123a5c837114c57162
Validity
Not Before: Jan 2 13:50:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1906b5298e0e72727690702a0fe0afd5bd9afb30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:36:33:52:fd:98:1b:f4:2f:1e:f9:3d:94:b5:
8a:08:23:2d:f5:7d:1b:93:d3:67:d3:ca:c1:b9:a4:
21:0b:ec:bc:64:d9:8c:86:cd:7b:bc:43:71:83:71:
48:c4:54:32:21:58:82:b6:94:a9:1d:94:77:a3:54:
02:59:62:dc:05:9a:f4:d0:dd:42:79:1c:f4:48:39:
23:ad:5b:21:e3:05:26:67:af:d1:61:68:46:1a:aa:
c5:66:1b:42:06:98:51:31:96:41:b9:1f:c4:49:97:
40:bd:4c:73:ad:3a:5e:77:f7:1f:68:9a:21:a0:5f:
01:b5:98:2a:a2:6b:11:2b:f8:6d:c8:2e:10:5f:d1:
d0:9b:c5:24:c6:65:3a:c8:ae:03:b9:61:ce:57:03:
57:06:47:58:60:8a:8a:b5:78:9d:f1:8b:a3:de:49:
56:e5:97:23:62:b9:b7:eb:4e:21:6f:1e:0b:79:77:
4a:d8:0b:6b:3a:53:bd:cb:db:ac:b0:71:64:89:4c:
fd:2d:b8:42:d6:37:d0:6d:4f:b8:3f:fd:27:b5:44:
9d:43:d5:ee:11:d2:08:14:ab:ee:fc:70:e0:bd:89:
cd:6f:c2:4d:d0:25:9a:51:7c:d0:08:1d:20:09:8a:
0f:a8:d3:03:7a:31:0e:df:4b:8e:44:ec:c1:2c:ec:
a2:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:06:B5:29:8E:0E:72:72:76:90:70:2A:0F:E0:AF:D5:BD:9A:FB:30
X509v3 Authority Key Identifier:
keyid:17:9F:BE:82:AF:CB:4E:54:C7:D4:97:12:3A:5C:83:71:14:C5:71:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5--gq_LTlTH1JcSOlyDcRTFcWI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ccc1cb-0721-4542-9d65-7e610bab8178/1/GQa1KY4OcnJ2kHAqD-Cv1b2a-zA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ccc1cb-0721-4542-9d65-7e610bab8178/1/F5--gq_LTlTH1JcSOlyDcRTFcWI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.52.64.0/22
IPv6:
2a04:c500::/29
Signature Algorithm: sha256WithRSAEncryption
75:6d:73:b4:d7:3a:da:45:70:80:04:93:33:dd:7f:e4:fd:ec:
d4:d1:9c:54:06:be:d7:09:50:80:c2:14:77:ee:a2:cc:14:90:
af:2b:ad:2a:f5:e4:de:77:df:8d:02:cb:f2:7c:f6:c1:b2:d6:
02:55:45:97:f3:25:cf:45:34:1e:0f:bd:f5:ea:d1:4e:09:0c:
22:e6:bf:1e:37:75:53:25:d9:bc:10:87:87:bb:c3:ff:dc:2b:
7e:83:22:10:d9:07:3a:a9:f4:9e:f4:71:d8:b9:67:85:1c:47:
ae:41:4c:bb:bf:54:9b:ef:89:8e:62:c5:a2:39:ae:a1:f2:f8:
91:4b:d8:3a:c1:10:e9:bf:8a:57:02:75:b9:05:9b:1d:a5:3a:
c3:b5:05:21:24:77:ca:c8:f7:8f:b9:4f:19:63:b5:f6:63:7b:
46:5c:3c:a4:07:22:51:35:6d:e3:13:7f:cb:28:1d:1c:59:60:
17:c8:87:e3:6e:56:99:3e:81:fe:f8:b2:cd:09:26:11:31:c9:
e4:a6:b4:d5:68:57:f2:e0:70:25:d7:bd:4f:15:08:15:a0:3a:
e4:c2:1d:a0:86:4e:a4:69:74:32:06:ce:bb:b8:c9:bb:b4:0f:
e7:a0:a8:32:b6:84:75:76:52:35:e7:32:05:b0:5c:22:b3:bb:
72:83:45:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:04 2025 by rpki-client on console.sobornost.net