Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/GaPhNmCLCg6FDzOqGOsmTwzEr2s.roa
File: GaPhNmCLCg6FDzOqGOsmTwzEr2s.roa (raw, json)
Hash identifier: s8h3O6KnSTgtqyfNfNsxD91VQjj/kAw0losU0p/2szw=
Subject key identifier: 19:A3:E1:36:60:8B:0A:0E:85:0F:33:AA:18:EB:26:4F:0C:C4:AF:6B
Certificate issuer: /CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Certificate serial: 0194258F1203B33D0CA9088CCD2FC6C797A6
Authority key identifier: 5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/GaPhNmCLCg6FDzOqGOsmTwzEr2s.roa
Signing time: Thu 02 Jan 2025 05:48:40 +0000
ROA not before: Thu 02 Jan 2025 05:48:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57304
IP address blocks: 2a0e:5380::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:12:03:b3:3d:0c:a9:08:8c:cd:2f:c6:c7:97:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Validity
Not Before: Jan 2 05:48:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=19a3e136608b0a0e850f33aa18eb264f0cc4af6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:55:57:a5:86:5d:4c:98:b2:72:31:ee:d3:49:
80:e9:d8:1f:4b:6d:6e:cd:50:27:9b:25:c7:b2:a9:
99:00:94:d4:1d:e2:0f:02:83:93:fe:e0:fb:61:5e:
e9:ba:e4:d5:ae:1f:8e:aa:79:00:1f:9b:49:73:50:
70:84:1e:32:bf:7f:4f:3e:70:7c:5d:77:a1:3f:7b:
0b:0b:b7:4c:18:d3:0b:a6:b7:07:82:00:4f:9f:50:
5b:d7:ad:20:43:c0:61:8f:fc:79:f2:71:89:45:8c:
09:dc:44:46:f9:18:6b:78:54:96:be:6c:e2:29:1c:
68:ee:ae:62:f1:bb:11:db:be:57:a5:16:86:51:2d:
0b:83:a9:28:a7:36:54:b8:bd:e7:b1:b1:8e:77:f7:
f6:06:a6:bf:bd:33:40:da:09:06:fc:8f:a9:ba:2f:
ab:5f:96:88:d5:a6:1c:72:35:7b:d8:2d:71:37:76:
28:65:ae:ee:44:56:42:48:52:c2:d6:f7:a7:ff:2c:
2e:c0:33:89:67:98:a3:71:a3:04:1c:cd:70:20:74:
4a:09:c5:01:a0:85:dc:54:e3:04:52:e8:00:87:43:
73:ae:c7:5b:e7:e1:ae:e8:48:90:f7:9d:4d:0b:7a:
2c:62:cc:2f:bf:ae:61:18:78:49:4c:58:09:66:78:
10:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:A3:E1:36:60:8B:0A:0E:85:0F:33:AA:18:EB:26:4F:0C:C4:AF:6B
X509v3 Authority Key Identifier:
keyid:5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/GaPhNmCLCg6FDzOqGOsmTwzEr2s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/XaOUHCfP5cI0xL8iHssqV5st6qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:5380::/32
Signature Algorithm: sha256WithRSAEncryption
65:13:0f:e1:32:2c:54:17:c0:fc:d7:3b:92:33:af:97:25:c5:
fe:db:2d:db:9e:90:13:d7:13:4b:69:ca:cf:12:e1:1e:8c:15:
86:07:03:27:fb:b1:27:1a:f4:50:cf:33:1b:c1:85:95:7e:4e:
a7:7a:1b:8a:b9:d3:72:b8:85:2c:6c:75:98:7c:c9:67:04:b0:
ce:f7:de:42:21:73:b7:27:4e:9e:24:21:17:26:b1:ec:3a:97:
a6:a6:88:32:f0:0a:63:d7:60:0b:7b:33:db:32:56:d3:0e:f7:
03:23:62:0f:60:77:ec:92:0b:be:08:4a:15:c2:b4:2c:35:e3:
84:ba:31:20:74:e5:a5:86:2d:91:ee:8d:0c:e2:bb:e4:77:16:
1e:d9:36:94:83:97:8d:07:f9:e3:a1:bb:1b:31:80:fb:db:01:
9b:93:7d:91:1e:a0:b8:ba:b3:93:c0:01:a2:28:ab:a6:43:91:
ed:cb:c0:ec:a8:90:98:9a:f8:50:47:eb:a0:a8:b8:0b:e3:82:
84:e6:05:5a:3e:44:ec:e1:95:2a:f2:eb:5e:71:88:a1:73:65:
70:6f:92:b6:24:bc:8c:06:6a:e9:e4:03:71:bc:8b:df:7e:4c:
08:a5:a3:6b:22:8e:51:9e:a4:75:69:56:ac:79:c8:dd:a9:5c:
c3:66:af:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 04:56:04 2025 by rpki-client