Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/2253dd-871b-40d9-94f0-e73636c207d9/1/GpApJXh6S8UfEebqULLaFnnNKh0.roa
File: GpApJXh6S8UfEebqULLaFnnNKh0.roa (raw, json)
Hash identifier: 3kyK4MipOxUGWc+XVPF95f3oCmJCWHc8qyPuCMgtAgQ=
Subject key identifier: 1A:90:29:25:78:7A:4B:C5:1F:11:E6:EA:50:B2:DA:16:79:CD:2A:1D
Certificate issuer: /CN=aa0b49b309af83d826e4a7ebbc4e9885cb6bf102
Certificate serial: 01D70B
Authority key identifier: AA:0B:49:B3:09:AF:83:D8:26:E4:A7:EB:BC:4E:98:85:CB:6B:F1:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qgtJswmvg9gm5KfrvE6Yhctr8QI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/2253dd-871b-40d9-94f0-e73636c207d9/1/GpApJXh6S8UfEebqULLaFnnNKh0.roa
Signing time: Fri 25 Mar 2022 13:05:05 +0000
ROA not before: Fri 25 Mar 2022 13:05:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210560
IP address blocks: 2a11:f740:2::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120587 (0x1d70b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa0b49b309af83d826e4a7ebbc4e9885cb6bf102
Validity
Not Before: Mar 25 13:05:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a902925787a4bc51f11e6ea50b2da1679cd2a1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:5e:ec:e1:50:56:6f:dc:e9:e2:6d:4b:32:a8:
c9:fe:8e:a8:31:e7:7a:6c:84:e3:d6:b6:80:15:80:
97:5a:97:2a:d4:97:0b:fd:6d:bf:64:e0:1a:44:36:
f9:42:4a:05:db:77:5a:c1:76:5f:5d:05:30:73:24:
6a:fd:86:da:61:da:b4:9d:81:37:29:52:4f:dd:8e:
d8:e1:7b:3c:f4:9b:db:30:d6:16:60:78:ac:5d:f9:
57:be:b1:43:1b:48:5c:13:3d:16:01:37:e5:a5:db:
69:b0:3a:25:41:bd:39:6b:92:61:2c:06:6f:a5:27:
b2:99:dc:74:a2:65:6a:9a:90:55:09:3f:f7:14:e7:
07:c3:cd:9b:82:16:62:e4:f1:8a:20:60:d3:88:67:
b8:47:05:2f:ec:cf:18:6c:1b:50:42:08:6b:5c:72:
d5:bb:a1:4f:e2:ed:7e:71:7b:87:1f:67:b7:15:3d:
b1:db:42:2a:70:99:81:a1:e3:79:85:50:75:3d:61:
d0:36:41:9f:45:fd:0a:d4:01:fe:5f:f1:d2:0f:2f:
1e:ff:14:16:a9:6b:2a:de:af:d3:7a:6b:6d:ef:87:
da:54:7a:46:3a:1e:00:65:93:24:6e:4b:a1:f1:37:
89:f5:be:5a:3c:fd:86:2b:33:2a:7c:2c:9f:91:b0:
87:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:90:29:25:78:7A:4B:C5:1F:11:E6:EA:50:B2:DA:16:79:CD:2A:1D
X509v3 Authority Key Identifier:
keyid:AA:0B:49:B3:09:AF:83:D8:26:E4:A7:EB:BC:4E:98:85:CB:6B:F1:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qgtJswmvg9gm5KfrvE6Yhctr8QI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/2253dd-871b-40d9-94f0-e73636c207d9/1/GpApJXh6S8UfEebqULLaFnnNKh0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/2253dd-871b-40d9-94f0-e73636c207d9/1/qgtJswmvg9gm5KfrvE6Yhctr8QI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f740:2::/48
Signature Algorithm: sha256WithRSAEncryption
31:f5:f6:17:03:24:ed:14:29:85:cc:3b:c6:cb:16:b5:d0:70:
2c:c1:ce:21:38:14:91:f0:db:eb:7c:f3:c8:16:fa:7e:5b:6d:
25:5d:54:76:c7:4b:e5:e7:2e:0d:d1:59:3a:c4:2a:f2:a0:7d:
8d:37:4e:0b:10:30:d1:17:55:42:17:4b:57:86:d2:59:c2:a3:
51:85:93:43:a9:5a:c2:02:c8:90:2c:12:d5:7a:40:bc:13:19:
3e:79:ea:45:f3:8f:11:ff:58:6a:c6:e8:d1:25:b9:41:c3:4a:
81:0a:60:0a:9d:67:48:0d:9a:42:42:0a:1c:ca:49:6f:d3:59:
b2:76:b9:c4:0a:48:22:5e:7d:3d:08:d8:ac:db:58:1b:6f:1c:
bc:38:86:c5:f7:90:bf:dd:9a:03:6c:fb:65:75:b0:29:ce:37:
d3:e8:ab:57:aa:c9:78:a6:b7:e5:ec:02:cb:54:9c:19:e0:49:
af:8d:c2:30:0c:65:7c:6a:5b:1b:56:c0:c3:0f:5b:03:46:67:
d8:24:dc:5d:1c:24:5a:81:7f:7e:5b:e3:68:e7:02:f1:43:e3:
9d:a6:83:4b:84:88:5a:81:fa:74:7a:58:0e:0c:6d:54:e6:3d:
36:7b:d5:4f:22:70:25:e7:16:3a:fb:57:94:69:23:39:02:09:
07:01:62:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:56 2024 by rpki-client on console-fra.rpki-client.org