Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/bfd9cb-c222-43a1-a05b-144a763e25d7/1/GrMHz6tRlk91AytZXHm00N4O7ao.roa
File: GrMHz6tRlk91AytZXHm00N4O7ao.roa (raw, json)
Hash identifier: G11FU1ygwF7lX1YeJsIEcZ2qimZ2NJaK7cepYX0N4E4=
Subject key identifier: 1A:B3:07:CF:AB:51:96:4F:75:03:2B:59:5C:79:B4:D0:DE:0E:ED:AA
Certificate issuer: /CN=6dfa081c5ebd1749917d74876763152340609d68
Certificate serial: 010D7D8A
Authority key identifier: 6D:FA:08:1C:5E:BD:17:49:91:7D:74:87:67:63:15:23:40:60:9D:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfoIHF69F0mRfXSHZ2MVI0BgnWg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/bfd9cb-c222-43a1-a05b-144a763e25d7/1/GrMHz6tRlk91AytZXHm00N4O7ao.roa
Signing time: Mon 07 Mar 2022 17:38:50 +0000
ROA not before: Mon 07 Mar 2022 17:38:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212238
IP address blocks: 109.205.187.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17661322 (0x10d7d8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dfa081c5ebd1749917d74876763152340609d68
Validity
Not Before: Mar 7 17:38:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ab307cfab51964f75032b595c79b4d0de0eedaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d6:26:aa:05:8d:de:4c:4e:c1:50:00:20:46:
2a:f9:84:3a:7a:4a:66:71:08:9b:41:c3:ce:fc:03:
df:48:8f:f1:b3:0c:85:4e:08:85:25:d8:c1:58:ef:
9b:ab:ce:62:bb:bb:3b:37:db:55:49:bb:f5:b7:3c:
e4:81:c9:a6:55:47:ed:32:3e:28:d2:78:c8:c5:0e:
4b:aa:01:9a:83:df:23:5e:c9:f4:bd:41:b8:13:67:
3c:50:62:e6:fc:28:a4:10:21:32:6d:6f:88:2a:a8:
6c:b0:28:65:c1:0f:5d:a8:27:8a:18:c3:25:2b:a7:
6a:a2:fc:b5:29:97:b1:6d:52:cd:20:2f:6a:45:32:
07:1c:e7:3f:4a:45:31:89:b9:3c:93:e7:fa:c0:01:
9e:fc:26:48:fb:78:de:91:95:6f:a9:e4:17:34:92:
a7:96:a1:bc:ca:a1:1b:94:79:9f:5e:5a:5a:56:b3:
b6:b1:bc:a5:7c:8a:ae:f4:0f:65:83:f0:21:ce:e5:
6d:07:b7:2a:31:26:38:27:47:52:75:59:74:ae:0d:
02:82:09:f7:75:c9:52:06:29:b2:25:e7:64:b3:50:
35:f4:6e:14:b2:d8:e1:e8:41:36:7f:23:dc:eb:cf:
98:06:02:28:5f:f4:b6:07:bd:f1:37:26:51:d4:f6:
58:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:B3:07:CF:AB:51:96:4F:75:03:2B:59:5C:79:B4:D0:DE:0E:ED:AA
X509v3 Authority Key Identifier:
keyid:6D:FA:08:1C:5E:BD:17:49:91:7D:74:87:67:63:15:23:40:60:9D:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfoIHF69F0mRfXSHZ2MVI0BgnWg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bfd9cb-c222-43a1-a05b-144a763e25d7/1/GrMHz6tRlk91AytZXHm00N4O7ao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bfd9cb-c222-43a1-a05b-144a763e25d7/1/bfoIHF69F0mRfXSHZ2MVI0BgnWg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.187.0/24
Signature Algorithm: sha256WithRSAEncryption
91:90:f9:81:69:6a:64:51:36:e4:ba:be:00:0a:1c:59:4d:d7:
25:d9:37:e8:99:7a:e5:78:b9:9e:e1:a6:56:d8:fb:c2:5f:d1:
dd:45:59:66:4b:8b:59:ad:a6:49:6d:ba:e6:43:01:6a:0f:e5:
10:28:2c:1d:8c:3a:c2:72:d1:f9:bf:72:7e:73:6e:89:49:18:
ab:cb:e4:c9:2d:3e:d0:21:88:8f:ed:25:3c:c9:96:ef:21:73:
86:23:ea:17:5f:75:22:2a:02:54:d6:1d:5e:39:b8:27:1f:8b:
0d:0f:63:a7:d3:21:ff:e1:32:5c:05:ce:47:74:0f:b9:00:29:
37:1e:a5:05:2e:1f:82:88:e1:05:22:df:e2:7c:2a:86:64:64:
69:23:aa:95:2b:0c:71:92:d3:a5:79:cd:9a:1f:da:ec:77:a4:
40:a3:65:2e:a3:09:dc:d7:45:00:ba:9d:0f:f0:bb:2e:c8:70:
ee:2f:88:da:26:ca:55:79:e7:78:6d:56:52:44:b3:31:81:52:
d8:f3:fb:f9:48:eb:f3:e0:e0:eb:c1:43:ac:98:cf:f0:5a:80:
3e:e4:39:b4:8a:88:56:32:f2:86:21:da:7d:ef:16:67:f9:38:
f5:2a:e4:00:20:e8:ee:fd:a9:49:fd:00:d8:25:5f:fe:87:56:
b0:eb:b8:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 23:27:30 2025 by rpki-client