Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/d73843-21f4-4d36-9143-1fc7337d462e/1/g-6akDvkHVstFhLdWvUZM1HGJHw.roa
File: g-6akDvkHVstFhLdWvUZM1HGJHw.roa (raw, json)
Hash identifier: nmCStaDPPfW1Pcb+IJLRzfM0rwzVPawdzWxJbzBOrRg=
Subject key identifier: 83:EE:9A:90:3B:E4:1D:5B:2D:16:12:DD:5A:F5:19:33:51:C6:24:7C
Certificate issuer: /CN=e3daa57a1853db3fb943b9fb0b28819db370b271
Certificate serial: C83F0F
Authority key identifier: E3:DA:A5:7A:18:53:DB:3F:B9:43:B9:FB:0B:28:81:9D:B3:70:B2:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/49qlehhT2z-5Q7n7CyiBnbNwsnE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/d73843-21f4-4d36-9143-1fc7337d462e/1/g-6akDvkHVstFhLdWvUZM1HGJHw.roa
Signing time: Sat 01 Jan 2022 11:04:53 +0000
ROA not before: Sat 01 Jan 2022 11:04:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211085
IP address blocks: 2a02:6c20:7::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13123343 (0xc83f0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3daa57a1853db3fb943b9fb0b28819db370b271
Validity
Not Before: Jan 1 11:04:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=83ee9a903be41d5b2d1612dd5af5193351c6247c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:28:fa:07:17:89:bd:74:44:4c:58:c0:62:81:
25:1d:ff:4a:78:87:7a:32:80:80:ca:d0:eb:ee:86:
66:cb:fd:c1:40:00:cb:5a:4a:98:53:e1:b8:c6:8d:
40:31:c0:5d:fd:45:b8:e7:ac:34:a2:5f:e6:d3:b5:
e5:65:6c:d6:4c:76:41:90:0c:af:16:51:af:b8:2b:
bd:63:59:60:38:e3:fc:b1:84:56:f1:26:57:92:5f:
4d:70:4c:d8:b6:2e:af:ea:b4:cb:5b:18:fd:68:f3:
5b:98:68:9f:36:5b:22:20:21:c2:55:8e:08:0f:7c:
55:f0:ac:55:95:34:e2:e6:cf:17:f5:07:67:24:a7:
c7:38:3f:f0:b3:80:0e:e7:6d:18:5a:22:e7:85:1b:
28:5b:be:21:39:e7:93:35:92:85:53:54:82:f5:8e:
07:cb:47:2d:d4:e6:8a:d7:6a:3d:5b:d9:94:d3:70:
d4:25:f5:34:8e:ea:58:b0:8f:62:36:d7:63:4c:79:
ec:eb:31:7c:81:97:8a:be:24:0d:88:be:3e:36:d3:
81:65:0c:b3:e7:88:8a:ef:32:fe:99:08:8e:a8:47:
a0:70:c8:1d:37:47:20:38:75:7c:06:55:8b:18:82:
82:f5:80:5f:ad:3f:bf:88:20:94:6c:85:e8:d1:9f:
fd:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:EE:9A:90:3B:E4:1D:5B:2D:16:12:DD:5A:F5:19:33:51:C6:24:7C
X509v3 Authority Key Identifier:
keyid:E3:DA:A5:7A:18:53:DB:3F:B9:43:B9:FB:0B:28:81:9D:B3:70:B2:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/49qlehhT2z-5Q7n7CyiBnbNwsnE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/d73843-21f4-4d36-9143-1fc7337d462e/1/g-6akDvkHVstFhLdWvUZM1HGJHw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/d73843-21f4-4d36-9143-1fc7337d462e/1/49qlehhT2z-5Q7n7CyiBnbNwsnE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:6c20:7::/48
Signature Algorithm: sha256WithRSAEncryption
86:d1:9f:5e:4e:4c:41:d1:24:6b:d4:51:26:b7:66:bf:1e:86:
2d:f5:d0:86:9a:c8:81:54:9d:f9:8f:db:7c:6a:2a:3a:44:f9:
d6:68:82:7f:47:81:53:35:14:6d:c0:4a:72:1c:cb:9f:5b:32:
80:b9:18:a7:a3:fe:af:f2:a9:15:ad:de:ce:41:5e:ef:f3:05:
3e:7c:2b:71:f2:61:04:e1:54:a9:18:9a:ca:24:54:73:cc:29:
b7:14:8b:6b:d3:46:81:8a:db:79:e5:c6:a0:44:1e:ea:44:80:
aa:9b:54:bf:bc:50:c1:f4:3c:f7:6e:c0:c7:47:da:9b:96:e7:
a9:4a:68:8c:5c:47:d1:e8:4c:db:33:e7:e3:e7:fa:d2:4a:28:
fb:ca:ef:f1:5e:a4:5e:56:cb:4e:7e:3d:38:c9:44:14:8d:37:
85:2c:3c:cd:83:b6:e5:08:a6:46:ac:eb:cd:2b:0f:5b:b4:76:
3d:f2:7a:3b:96:e3:a7:19:29:33:4c:36:fe:01:e3:53:30:3b:
ad:4e:d3:e4:eb:e7:99:c1:7c:11:03:c8:97:ff:0e:15:06:40:
5f:df:ac:9a:23:56:de:15:eb:71:e5:bc:c7:24:a5:38:68:fd:
1c:aa:60:80:0b:a2:1b:32:16:35:61:d4:83:a6:a6:06:11:ed:
de:0c:d8:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:42:29 2025 by rpki-client