Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/gjeb03Q9ok6eE4DAUnNvThTt5yg.roa
File: gjeb03Q9ok6eE4DAUnNvThTt5yg.roa (raw, json)
Hash identifier: rc/FgbSFeqjNjjX4Svb6gmaJnUvV0O2OrsYAqfBN2tY=
Subject key identifier: 82:37:9B:D3:74:3D:A2:4E:9E:13:80:C0:52:73:6F:4E:14:ED:E7:28
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 0194258ED56700DB3C51C9B490ACCB8ADEB9
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/gjeb03Q9ok6eE4DAUnNvThTt5yg.roa
Signing time: Thu 02 Jan 2025 05:48:25 +0000
ROA not before: Thu 02 Jan 2025 05:48:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205591
IP address blocks: 2a0e:aa01:bad0::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8e:d5:67:00:db:3c:51:c9:b4:90:ac:cb:8a:de:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 2 05:48:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=82379bd3743da24e9e1380c052736f4e14ede728
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:41:8d:66:5f:55:2f:97:4f:20:96:22:5d:a7:
13:ff:6a:7f:b2:57:4a:af:6a:01:ba:d8:96:75:cb:
eb:a8:4f:c9:3f:35:4f:54:4e:c0:76:5f:b0:83:35:
fb:83:1e:70:12:a4:d7:28:6e:c4:59:37:8a:7b:87:
0e:15:53:e1:99:f9:68:22:9d:54:3b:9e:c0:db:35:
91:a6:64:5b:22:be:8a:80:f7:f9:9a:57:53:7f:79:
fd:9a:07:dc:42:70:62:da:9d:65:f5:19:98:85:77:
a7:4a:4e:d7:0e:8e:5d:a5:ed:b7:84:75:eb:89:24:
a9:a6:3b:92:84:94:71:5c:40:31:30:b3:21:f2:dd:
d4:32:e6:0d:3a:cf:e6:7a:c5:23:1d:80:d1:1c:3a:
56:8b:3c:a5:1b:d2:08:af:34:30:51:c9:0a:51:3c:
b2:57:d7:91:a6:c4:87:48:23:df:9a:8f:18:2d:72:
6b:09:a6:2c:1c:69:a9:3f:88:71:bf:88:3d:86:b5:
c4:d5:50:cb:da:f8:ac:c5:56:0f:a3:72:d2:e1:cd:
a0:09:56:19:b4:21:59:16:30:1d:94:34:0f:a3:98:
b2:c7:55:6c:c7:6d:f6:cb:14:72:88:b2:c2:3a:20:
0a:0e:b7:2a:71:8b:f5:e3:af:9a:f9:9c:97:54:de:
e0:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:37:9B:D3:74:3D:A2:4E:9E:13:80:C0:52:73:6F:4E:14:ED:E7:28
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/gjeb03Q9ok6eE4DAUnNvThTt5yg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa01:bad0::/44
Signature Algorithm: sha256WithRSAEncryption
a0:69:f5:76:a3:a5:b7:f0:0d:04:ab:2c:c2:67:fe:e4:25:18:
c8:d9:94:da:ae:f0:9a:6c:e0:d4:8e:4f:9e:d1:58:44:99:38:
f4:25:29:d6:68:c5:e3:d4:d8:96:2f:f7:8c:9a:23:10:cf:99:
e5:80:66:f6:3f:28:cb:26:c4:a7:61:b9:f0:c0:2e:78:97:99:
11:ae:36:bd:d8:b2:fd:32:99:4b:e7:c4:6e:f4:9f:96:9a:61:
e8:4c:d0:cb:ab:03:65:cb:73:41:fc:9d:92:35:61:8d:5b:5d:
db:39:26:4c:1c:42:e2:a1:60:ac:ba:b8:4e:cc:32:43:7e:8f:
72:07:ae:d5:a8:71:35:11:e5:3c:0a:ef:58:f8:33:09:87:c9:
73:16:df:42:4e:28:e9:2b:69:e7:99:b9:19:dd:b8:34:0e:b6:
a5:aa:c3:52:ca:93:9c:e9:cd:58:8d:16:83:f4:6d:3b:e5:1f:
ed:96:ae:38:a9:35:b9:ce:28:cb:d4:10:19:8d:fe:64:cf:7e:
1b:16:97:99:33:63:61:5f:17:23:3a:7b:d8:a5:6c:d3:47:22:
c0:fb:52:39:a2:9b:3e:ff:15:48:83:80:c6:e8:4e:64:3d:e2:
45:6c:c3:e1:8c:d7:99:db:a7:0e:88:97:32:ef:2a:4e:76:d4:
23:a2:9b:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:13:12 2025 by rpki-client