Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/1abe8a-45a2-4156-98d7-6806e3d4ce4f/1/gZLT5wUedCmW-PX2sDiQAVKNuT4.roa
File: gZLT5wUedCmW-PX2sDiQAVKNuT4.roa (raw, json)
Hash identifier: Bsg9vymR2URZ/xLntFSerTzkFFeEBNsWgx7gYqyDMPI=
Subject key identifier: 81:92:D3:E7:05:1E:74:29:96:F8:F5:F6:B0:38:90:01:52:8D:B9:3E
Certificate issuer: /CN=0b4cfabe47e9285f65f1f2d686baaf15b8b41773
Certificate serial: 01942747B349314506F799FF4A0B403E3C1B
Authority key identifier: 0B:4C:FA:BE:47:E9:28:5F:65:F1:F2:D6:86:BA:AF:15:B8:B4:17:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C0z6vkfpKF9l8fLWhrqvFbi0F3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/1abe8a-45a2-4156-98d7-6806e3d4ce4f/1/gZLT5wUedCmW-PX2sDiQAVKNuT4.roa
Signing time: Thu 02 Jan 2025 13:49:57 +0000
ROA not before: Thu 02 Jan 2025 13:49:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 64520
IP address blocks: 2a02:d58:200a::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:b3:49:31:45:06:f7:99:ff:4a:0b:40:3e:3c:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b4cfabe47e9285f65f1f2d686baaf15b8b41773
Validity
Not Before: Jan 2 13:49:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8192d3e7051e742996f8f5f6b0389001528db93e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:39:aa:7e:ae:7c:9f:4b:60:56:46:10:b0:a5:
58:4f:30:53:9f:e7:06:7f:f6:eb:41:a4:00:67:56:
25:97:da:1d:4a:3e:0f:3a:a5:11:cb:72:b2:c8:13:
fa:b5:cb:6f:f5:11:90:41:c7:96:34:03:59:d5:ef:
18:af:c5:3b:47:97:80:ad:54:db:c1:64:40:8a:aa:
4e:c8:4b:7d:f7:f4:30:6b:00:0d:90:f3:89:fa:e2:
78:8b:20:65:02:e3:ca:40:47:19:ed:95:d5:10:05:
70:0b:99:c1:6a:f7:71:38:b4:54:57:c1:5b:3b:46:
65:be:ab:0d:03:5f:37:51:16:ca:a3:cb:2b:21:a4:
18:d3:2d:a8:80:4e:b3:3a:d8:eb:93:43:5c:ac:6c:
ea:77:60:03:54:f8:02:6e:75:77:30:37:f5:2d:53:
e4:3d:aa:4f:70:75:eb:f7:f0:ee:19:8f:b1:23:e3:
c0:98:f3:7b:82:c3:61:5b:b5:70:c0:8c:c8:cd:25:
ca:b0:b7:70:74:29:da:58:cd:13:2f:ab:e6:df:fa:
b4:b7:5e:c9:1f:9e:4b:bb:69:ee:0f:4b:9c:6c:5a:
d6:d5:c0:f0:ba:b6:32:05:37:00:8e:6d:e4:de:71:
78:38:e5:fb:04:52:4a:9d:e4:bc:1d:2b:30:cc:20:
8b:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:92:D3:E7:05:1E:74:29:96:F8:F5:F6:B0:38:90:01:52:8D:B9:3E
X509v3 Authority Key Identifier:
keyid:0B:4C:FA:BE:47:E9:28:5F:65:F1:F2:D6:86:BA:AF:15:B8:B4:17:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C0z6vkfpKF9l8fLWhrqvFbi0F3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/1abe8a-45a2-4156-98d7-6806e3d4ce4f/1/gZLT5wUedCmW-PX2sDiQAVKNuT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/1abe8a-45a2-4156-98d7-6806e3d4ce4f/1/C0z6vkfpKF9l8fLWhrqvFbi0F3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:d58:200a::/48
Signature Algorithm: sha256WithRSAEncryption
33:b8:f7:68:3a:93:d9:3f:14:43:8d:43:0a:55:30:27:fe:b6:
82:c0:20:6d:bb:18:69:84:4b:8e:98:d1:58:8d:b8:70:3c:0c:
c4:2d:6a:73:38:01:c8:87:e4:52:68:36:ba:75:39:52:3f:24:
28:f8:7d:66:0c:8a:37:2d:79:1e:7d:d4:63:65:6e:1a:d9:bb:
07:da:3e:72:2d:1a:27:15:dc:93:10:69:a0:19:bd:d6:19:d9:
a6:15:cf:75:86:61:65:86:36:d3:34:c8:73:6f:2d:f2:a3:cd:
64:50:04:91:59:a3:ff:f3:0c:31:68:e7:ed:9d:45:32:24:0f:
a9:46:23:c6:6f:bb:b0:a2:83:50:a4:f2:c4:55:98:54:a5:a7:
46:12:a6:3c:90:5b:1d:c1:8d:ee:55:80:d8:95:f1:59:4e:1e:
32:e6:b1:86:b0:13:a6:6c:5c:48:41:24:60:93:08:1b:ac:a0:
fe:f7:bf:eb:aa:6f:c6:8f:80:8c:85:b0:a4:80:a6:3b:20:9c:
6e:64:ea:c4:e1:e9:ed:83:78:b2:71:b5:82:f3:95:9b:99:8c:
94:a8:54:6e:3e:b7:7c:16:0e:cd:bc:08:3a:5a:a5:11:2c:5c:
d3:97:ae:b8:1e:72:9d:f4:74:e8:52:08:3b:81:b6:d8:3a:a5:
9a:5f:a6:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:38:59 2025 by rpki-client