Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/c2e16e-ab68-4429-96ee-002f26e3b898/1/GSEmVm6NzqY1BpNYo6SFFUqzGAM.roa
File: GSEmVm6NzqY1BpNYo6SFFUqzGAM.roa (raw, json)
Hash identifier: UashkyiuppI0eIIqMrPAYeQVnUBaB9XZj4G9aRfVRDA=
Subject key identifier: 19:21:26:56:6E:8D:CE:A6:35:06:93:58:A3:A4:85:15:4A:B3:18:03
Certificate issuer: /CN=2f5cab8a09a9fde23c9635f8e164aef09e17948c
Certificate serial: 0190BD267C350F728255D4A11169E925A958
Authority key identifier: 2F:5C:AB:8A:09:A9:FD:E2:3C:96:35:F8:E1:64:AE:F0:9E:17:94:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L1yrigmp_eI8ljX44WSu8J4XlIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/c2e16e-ab68-4429-96ee-002f26e3b898/1/GSEmVm6NzqY1BpNYo6SFFUqzGAM.roa
Signing time: Tue 16 Jul 2024 20:05:34 +0000
ROA not before: Tue 16 Jul 2024 20:05:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30788
IP address blocks: 2a09:7e00::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:bd:26:7c:35:0f:72:82:55:d4:a1:11:69:e9:25:a9:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f5cab8a09a9fde23c9635f8e164aef09e17948c
Validity
Not Before: Jul 16 20:05:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=192126566e8dcea635069358a3a485154ab31803
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:30:51:46:aa:9a:1d:86:97:26:e4:5a:28:71:
80:2a:9a:bb:b5:19:fe:22:3e:3d:f0:90:61:c7:bf:
e4:72:6f:af:a4:71:ce:5d:6e:c2:e3:1c:cb:6f:b4:
c4:0a:aa:32:64:90:05:42:65:69:6f:29:24:8d:44:
12:08:6e:04:69:0c:a5:32:65:1d:03:e1:72:ed:77:
41:4c:0c:be:e5:f9:c1:44:1f:d3:90:70:86:92:d3:
03:87:1d:b2:67:61:33:a5:da:4c:07:8d:3d:ec:2c:
a2:c5:96:99:f4:9d:15:7a:3a:ef:59:6e:c1:9d:dd:
16:1a:f7:61:bc:e2:6a:7b:a9:f6:38:1a:8f:58:5e:
cd:b7:e7:d5:94:2a:8a:31:d4:a7:ab:07:85:46:57:
0c:b8:95:08:b7:58:3b:e5:cc:e3:fb:b5:ec:67:50:
b7:e8:83:31:81:73:7b:58:6c:0b:4c:1b:5d:09:14:
04:d0:34:d7:a0:37:49:df:4f:4c:c1:4c:62:d6:0e:
ea:90:11:eb:cd:fa:df:bd:29:6a:99:1d:11:99:04:
24:3e:bd:f4:4d:20:a6:dd:fb:eb:ef:90:d7:37:61:
48:7f:73:81:76:0f:d2:60:fd:ae:c0:fe:99:f8:ab:
c3:62:e8:ab:dd:2d:49:72:7e:0b:eb:a5:85:96:8d:
c8:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:21:26:56:6E:8D:CE:A6:35:06:93:58:A3:A4:85:15:4A:B3:18:03
X509v3 Authority Key Identifier:
keyid:2F:5C:AB:8A:09:A9:FD:E2:3C:96:35:F8:E1:64:AE:F0:9E:17:94:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L1yrigmp_eI8ljX44WSu8J4XlIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/c2e16e-ab68-4429-96ee-002f26e3b898/1/GSEmVm6NzqY1BpNYo6SFFUqzGAM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/c2e16e-ab68-4429-96ee-002f26e3b898/1/L1yrigmp_eI8ljX44WSu8J4XlIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:7e00::/29
Signature Algorithm: sha256WithRSAEncryption
b2:f2:d8:bd:75:56:8b:40:56:0b:39:71:7a:86:b7:74:a5:08:
84:7f:ee:6f:44:d5:0c:0c:d3:7c:d7:c9:b8:cc:7c:53:5c:e9:
12:4e:50:da:f2:32:fb:59:da:1b:1e:b8:de:24:ae:e7:ba:67:
24:4a:60:5b:07:86:89:7f:76:14:07:19:22:f9:46:71:ad:8e:
3d:c0:d8:7e:b0:1e:5c:fd:1e:ec:65:c9:a3:97:2c:ca:00:7f:
71:db:2a:5d:c6:46:24:57:5e:26:a2:21:9c:cc:c3:08:56:f2:
51:6b:18:2f:9b:56:eb:57:c7:f6:2b:61:2c:b9:d7:3e:1d:77:
33:a4:54:7d:1d:4e:1b:24:69:19:0e:70:a6:a6:e0:1f:39:69:
63:88:1d:59:d3:53:c8:22:7f:56:76:5b:e0:d2:b8:05:d0:9d:
d4:93:65:a7:d2:7f:0c:5c:cc:65:43:e0:f7:ef:2a:1c:dd:e0:
ce:f9:98:d6:15:ed:a0:ba:51:16:c1:c4:a3:7e:a4:af:bc:81:
9b:63:7c:f8:97:81:2c:47:26:72:72:bc:2a:7d:08:c9:87:98:
5c:d5:06:2c:85:05:9f:20:ad:1e:de:68:73:13:19:f0:38:9a:
32:6d:64:d2:28:51:02:90:6b:8e:86:fe:e9:2f:61:16:e0:9a:
1e:14:f4:85
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZC9Jnw1D3KCVdShEWnpJalYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJmNWNhYjhhMDlhOWZkZTIzYzk2MzVmOGUxNjRhZWYwOWUx
Nzk0OGMwHhcNMjQwNzE2MjAwNTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxOTIxMjY1NjZlOGRjZWE2MzUwNjkzNThhM2E0ODUxNTRhYjMxODAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoDBRRqqaHYaXJuRaKHGAKpq7tRn+
Ij498JBhx7/kcm+vpHHOXW7C4xzLb7TECqoyZJAFQmVpbykkjUQSCG4EaQylMmUd
A+Fy7XdBTAy+5fnBRB/TkHCGktMDhx2yZ2EzpdpMB4097CyixZaZ9J0VejrvWW7B
nd0WGvdhvOJqe6n2OBqPWF7Nt+fVlCqKMdSnqweFRlcMuJUIt1g75czj+7XsZ1C3
6IMxgXN7WGwLTBtdCRQE0DTXoDdJ309MwUxi1g7qkBHrzfrfvSlqmR0RmQQkPr30
TSCm3fvr75DXN2FIf3OBdg/SYP2uwP6Z+KvDYuir3S1Jcn4L66WFlo3IVwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFBkhJlZujc6mNQaTWKOkhRVKsxgDMB8GA1UdIwQY
MBaAFC9cq4oJqf3iPJY1+OFkrvCeF5SMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTDF5cmlnbXBfZUk4bGpYNDRXU3U4SjRYbEl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi9jMmUxNmUtYWI2OC00NDI5LTk2ZWUt
MDAyZjI2ZTNiODk4LzEvR1NFbVZtNk56cVkxQnBOWW82U0ZGVXF6R0FNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi9jMmUxNmUtYWI2OC00NDI5LTk2ZWUtMDAyZjI2ZTNiODk4
LzEvTDF5cmlnbXBfZUk4bGpYNDRXU3U4SjRYbEl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgl+ADAN
BgkqhkiG9w0BAQsFAAOCAQEAsvLYvXVWi0BWCzlxeoa3dKUIhH/ub0TVDAzTfNfJ
uMx8U1zpEk5Q2vIy+1naGx643iSu57pnJEpgWweGiX92FAcZIvlGca2OPcDYfrAe
XP0e7GXJo5csygB/cdsqXcZGJFdeJqIhnMzDCFbyUWsYL5tW61fH9ithLLnXPh13
M6RUfR1OGyRpGQ5wpqbgHzlpY4gdWdNTyCJ/VnZb4NK4BdCd1JNlp9J/DFzMZUPg
9+8qHN3gzvmY1hXtoLpRFsHEo36kr7yBm2N8+JeBLEcmcnK8Kn0IyYeYXNUGLIUF
nyCtHt5ocxMZ8DiaMm1k0ihRApBrjob+6S9hFuCaHhT0hQ==
-----END CERTIFICATE-----
Generated at Sun Apr 20 04:10:41 2025 by rpki-client