Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/ffb906-676e-4e0a-82f6-11f83d70c898/1/gNYJvpCKPxVwM8MdrTMnLyCm4qw.roa
File: gNYJvpCKPxVwM8MdrTMnLyCm4qw.roa (raw, json)
Hash identifier: +RVqjDVQugdnf7VIx+lJjkeHnAUnueCOA1HA+j4p3hk=
Subject key identifier: 80:D6:09:BE:90:8A:3F:15:70:33:C3:1D:AD:33:27:2F:20:A6:E2:AC
Certificate issuer: /CN=7f2c92a79f62fcb919e795ab5de313f4bda71ddf
Certificate serial: 012CEFE9
Authority key identifier: 7F:2C:92:A7:9F:62:FC:B9:19:E7:95:AB:5D:E3:13:F4:BD:A7:1D:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fyySp59i_LkZ55WrXeMT9L2nHd8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/ffb906-676e-4e0a-82f6-11f83d70c898/1/gNYJvpCKPxVwM8MdrTMnLyCm4qw.roa
Signing time: Tue 08 Feb 2022 09:36:56 +0000
ROA not before: Tue 08 Feb 2022 09:36:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34734
IP address blocks: 2a11:3980::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19722217 (0x12cefe9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f2c92a79f62fcb919e795ab5de313f4bda71ddf
Validity
Not Before: Feb 8 09:36:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=80d609be908a3f157033c31dad33272f20a6e2ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f9:29:4f:0b:5f:1b:00:1c:e4:ad:90:fb:79:
61:17:95:e5:1f:5c:45:34:c2:b3:f0:32:b8:cb:3a:
81:e6:1e:5f:60:f5:7d:f4:67:dd:8b:80:a1:8f:87:
e0:f5:f5:bb:28:3d:ea:c2:40:23:79:df:7b:ba:de:
46:5c:d3:dc:71:8e:c7:87:ff:46:d1:01:6c:32:26:
d6:74:8f:6e:d3:78:9d:a6:d2:09:f7:f4:d5:57:6f:
b1:ac:b8:86:18:e7:c2:a9:c6:5b:c8:b4:3f:20:07:
b4:5c:9c:5e:1e:58:d0:9b:61:ce:e0:26:46:5e:a8:
9d:79:37:0f:79:a5:e3:78:0f:46:ab:ab:7a:68:6f:
43:c4:2e:fb:b3:c6:6b:52:65:3e:4e:02:d2:b8:2f:
de:e6:75:72:47:51:15:63:ca:45:6e:e4:3a:c8:79:
dc:2c:29:a2:6f:01:53:ab:e9:5f:fd:17:76:cc:83:
1d:cb:36:0f:69:67:40:4e:a3:0f:66:0a:d5:1a:4a:
33:03:64:ce:97:09:ae:8f:ca:95:0f:cf:a5:70:42:
10:fe:09:7a:48:3d:c4:b9:61:d3:9b:ca:45:f8:d7:
9b:e5:8e:19:bd:d5:e1:39:2d:e0:8a:32:10:3b:71:
9a:1d:d7:20:f9:5c:37:8e:13:be:30:00:24:92:5b:
b9:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:D6:09:BE:90:8A:3F:15:70:33:C3:1D:AD:33:27:2F:20:A6:E2:AC
X509v3 Authority Key Identifier:
keyid:7F:2C:92:A7:9F:62:FC:B9:19:E7:95:AB:5D:E3:13:F4:BD:A7:1D:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fyySp59i_LkZ55WrXeMT9L2nHd8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/ffb906-676e-4e0a-82f6-11f83d70c898/1/gNYJvpCKPxVwM8MdrTMnLyCm4qw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/ffb906-676e-4e0a-82f6-11f83d70c898/1/fyySp59i_LkZ55WrXeMT9L2nHd8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:3980::/29
Signature Algorithm: sha256WithRSAEncryption
69:6c:c8:e9:ac:57:62:b7:db:03:5b:a6:a1:74:62:f8:5a:9d:
5c:88:b0:65:70:45:c0:79:05:51:e5:e6:40:38:eb:4e:18:aa:
62:e5:bc:58:25:40:0e:5c:ee:6e:d6:a2:48:ad:4d:e6:54:56:
33:26:19:9f:66:08:85:a1:61:e9:77:ca:ac:85:ab:2d:16:b1:
4f:fa:bc:f6:46:72:b0:4a:c9:26:55:b9:0b:a0:2a:4f:54:a5:
de:b8:29:16:bd:77:78:6a:11:84:10:ad:f3:ff:f2:e7:f1:d7:
c2:17:ee:fc:49:e5:62:00:30:74:d0:15:2e:fa:8b:15:a6:d4:
d1:6d:44:2c:4f:d4:4c:68:fc:ac:de:24:0c:39:b8:79:cf:59:
3b:7e:dd:85:0d:a0:b9:fb:b2:39:fe:0b:37:aa:08:ee:23:2c:
de:64:11:07:26:55:36:09:eb:84:16:a9:db:61:2a:ad:c8:d7:
cd:87:f7:b2:a1:3b:9a:19:d7:d5:7c:d6:b6:d7:ae:94:98:48:
f8:38:ff:72:3f:92:d0:31:5b:c9:ea:60:d0:c1:47:9a:4f:18:
c1:3e:fd:d2:e2:2a:dc:5a:bb:93:19:9f:58:8d:c1:c7:5a:e2:
8e:3d:f8:c7:3e:da:e6:dc:36:b7:be:a5:30:29:9d:0c:c4:82:
8f:8a:91:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:28:59 2025 by rpki-client