Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/gQfVpVW_tfZmtELagY6g8Qm-fYQ.roa
File: gQfVpVW_tfZmtELagY6g8Qm-fYQ.roa (raw, json)
Hash identifier: 8iyeSYb2BPpMVILnU8QwgFAqPNI0AjjwMvdBqd1qvlI=
Subject key identifier: 81:07:D5:A5:55:BF:B5:F6:66:B4:42:DA:81:8E:A0:F1:09:BE:7D:84
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 018211B713DE7698BB50FF55505A318C89B4
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/gQfVpVW_tfZmtELagY6g8Qm-fYQ.roa
Signing time: Mon 18 Jul 2022 14:29:47 +0000
ROA not before: Mon 18 Jul 2022 14:29:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211604
IP address blocks: 2a06:a005:5e1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:11:b7:13:de:76:98:bb:50:ff:55:50:5a:31:8c:89:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Jul 18 14:29:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8107d5a555bfb5f666b442da818ea0f109be7d84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:12:55:dd:57:04:80:02:70:e0:13:33:4b:cd:
12:89:6f:ba:fd:f6:3c:ab:00:2e:cf:a5:8f:d9:53:
77:12:f5:2c:01:ac:24:38:6a:4d:f3:af:7d:38:71:
7d:c4:13:0c:dd:95:f4:17:74:f3:17:c9:84:3e:72:
7e:bb:99:97:e9:8e:7e:8e:01:0a:e8:a0:ec:56:00:
36:68:ca:aa:74:ee:bb:4c:72:c7:ea:66:91:13:c3:
c6:00:cd:31:61:9d:5d:c6:a9:bc:f0:18:9f:5b:e1:
c9:d0:46:9f:72:55:e5:1b:54:3e:2a:51:19:3b:92:
14:8b:f6:38:64:9b:8b:ac:75:49:27:dc:a0:14:b2:
68:45:9a:c9:d9:1f:d3:22:8b:1d:a7:f9:e4:fc:57:
60:7b:81:1d:97:40:e1:f9:a4:14:01:8d:01:c6:30:
5c:43:60:dd:1b:c9:10:cd:3a:59:32:ac:10:fc:be:
17:6f:9c:7a:f1:c9:3f:51:f4:3b:e3:dd:c5:bb:38:
a7:50:a0:29:23:1b:5e:87:fc:0b:2a:4d:40:0f:bf:
c9:a6:65:39:19:9a:56:de:b6:e9:6d:8e:91:e0:d7:
9d:59:1e:36:a6:6c:f2:b0:c7:f6:20:9d:77:ce:9f:
67:d8:00:3e:cd:31:d1:49:9a:3a:83:de:d6:59:a5:
38:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:07:D5:A5:55:BF:B5:F6:66:B4:42:DA:81:8E:A0:F1:09:BE:7D:84
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/gQfVpVW_tfZmtELagY6g8Qm-fYQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:5e1::/48
Signature Algorithm: sha256WithRSAEncryption
97:bd:c5:26:93:e9:70:10:85:18:43:9e:a9:d1:7c:97:a0:b1:
ac:f7:15:7c:eb:42:3c:1d:db:46:34:7e:17:14:a3:64:d8:4c:
21:84:bd:13:c5:a0:94:f8:8d:60:c7:cf:80:0a:ed:5b:b6:e7:
f2:36:8f:16:65:8d:4a:b6:98:ad:b8:78:61:c6:89:fb:91:ca:
9b:da:83:ec:98:3f:72:af:e8:29:f2:aa:45:31:3c:cb:f7:43:
a9:d3:01:28:1e:9b:37:36:ea:f4:6b:18:66:4c:92:ed:e8:a1:
0e:78:64:2c:53:12:b6:70:44:cb:55:31:5c:20:d0:92:63:46:
1d:27:80:78:df:64:a9:65:90:fd:57:1b:0f:87:3a:a6:72:34:
3f:a1:ef:e4:93:5c:c3:33:7b:c1:24:ae:07:8c:ef:43:98:86:
18:09:fd:9d:59:e1:62:d9:15:5b:5a:83:6a:42:79:cd:2c:92:
3c:e3:55:fa:bf:82:8a:04:a4:91:7c:8b:91:d2:09:1c:e7:7c:
b4:26:96:32:e2:d9:80:38:88:07:97:ce:76:a2:20:cf:c5:e8:
c8:48:dd:d9:a1:85:d1:dc:45:b4:1f:61:e6:57:0c:9b:07:46:
37:d9:e8:15:61:4e:27:f3:c3:fd:49:73:a6:19:3f:4e:aa:d8:
90:7c:c5:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 02:42:28 2025 by rpki-client