Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/2GARUeMWreVy8AiYHPGURS4w8c4.roa
File: 2GARUeMWreVy8AiYHPGURS4w8c4.roa (raw, json)
Hash identifier: T/WClw9nhTglYCQUeh7HZyXfAxKpXXDha/KCpaptXvU=
Subject key identifier: D8:60:11:51:E3:16:AD:E5:72:F0:08:98:1C:F1:94:45:2E:30:F1:CE
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01953922473AC4AB2C558B73C5E55BA494ED
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/2GARUeMWreVy8AiYHPGURS4w8c4.roa
Signing time: Mon 24 Feb 2025 18:05:02 +0000
ROA not before: Mon 24 Feb 2025 18:05:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:195:3921:8f57/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:39:22:47:3a:c4:ab:2c:55:8b:73:c5:e5:5b:a4:94:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Feb 24 18:05:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d8601151e316ade572f008981cf194452e30f1ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:bc:de:eb:20:18:75:de:1e:4b:d3:98:53:73:
14:ea:ef:59:db:11:e9:ba:79:3e:9e:d7:0d:9d:ba:
c8:7a:d4:c7:83:40:81:8c:a7:98:6b:69:b1:6c:32:
9b:0f:13:18:f8:76:cd:62:18:22:7e:36:62:f5:94:
4c:69:9e:7a:05:f7:13:1b:84:7d:d8:99:a6:36:58:
54:87:6f:99:76:8b:25:7f:f2:7b:b7:ec:cc:4c:e1:
06:99:fc:08:98:90:71:89:60:d9:c2:66:a1:45:4c:
ba:6e:c6:25:e2:10:d3:c3:f8:1e:d0:d4:b4:8f:0e:
a9:4c:62:ce:bd:75:fd:77:01:26:68:ca:f3:61:1b:
26:e1:93:b2:e9:b5:d5:d5:aa:46:d5:66:bf:e1:7e:
5f:af:14:15:a1:a6:80:23:80:13:dc:07:fa:a0:a0:
73:4a:ae:b6:45:f5:0e:f3:78:21:ba:38:7e:21:ba:
5b:8b:b1:42:fc:ee:1d:6f:ad:93:b7:b2:d9:2b:3e:
4c:7e:3a:97:13:4c:7c:1e:40:ac:fe:04:56:02:0f:
c6:42:e2:4c:42:de:8f:9c:85:7e:5a:b3:1d:bd:c9:
8e:49:17:90:04:0c:e6:3f:db:39:98:1c:18:7e:6c:
8d:f8:ed:05:15:1e:04:ab:33:44:f8:03:7a:79:bb:
68:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:60:11:51:E3:16:AD:E5:72:F0:08:98:1C:F1:94:45:2E:30:F1:CE
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/2GARUeMWreVy8AiYHPGURS4w8c4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:195:3921:8f57/128
Signature Algorithm: sha256WithRSAEncryption
54:05:f5:1b:dd:8e:ef:3f:96:d9:c5:0e:62:ca:ba:e5:2f:a3:
60:58:ee:f1:b1:6b:48:39:43:83:dc:c5:da:c7:63:ac:47:64:
0d:87:72:41:a5:d6:76:85:06:fd:3b:74:c2:ee:89:78:15:69:
97:23:e1:03:ff:8e:29:c7:c7:36:14:2a:9c:5e:f2:c9:d8:14:
0a:93:a3:1d:d9:44:d8:71:fe:9a:1b:59:bb:4c:74:8e:be:7e:
1b:1f:be:14:83:15:d5:bc:83:6c:5d:96:67:25:28:83:80:0d:
41:01:68:3e:2f:9f:9f:28:ee:fd:21:c1:64:7a:99:55:96:cc:
1c:4e:77:f3:cd:be:b5:3e:2e:83:3e:37:5c:85:a3:54:10:24:
cd:d6:28:c8:e4:d1:80:5d:09:ec:8c:ea:a9:10:24:35:f8:5e:
fa:3a:f5:e7:65:cc:e0:a5:d6:c3:ce:c5:8e:82:33:c8:e1:37:
6c:eb:57:b7:8b:55:c9:8d:9e:fe:5d:f9:bb:08:48:06:cb:af:
56:7f:18:19:d3:11:68:e6:3e:fb:b1:5d:81:c7:45:dc:9d:f4:
74:38:81:19:a0:80:cc:4e:fa:49:fb:25:d2:bb:b0:2d:03:6a:
25:35:f3:6a:b3:30:99:e7:3b:ee:22:0a:cd:1d:e0:5a:cc:c6:
d2:96:aa:8c
-----BEGIN CERTIFICATE-----
MIIFCjCCA/KgAwIBAgISAZU5Ikc6xKssVYtzxeVbpJTtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjUwMjI0MTgwNTAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkODYwMTE1MWUzMTZhZGU1NzJmMDA4OTgxY2YxOTQ0NTJlMzBmMWNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAurze6yAYdd4eS9OYU3MU6u9Z2xHp
unk+ntcNnbrIetTHg0CBjKeYa2mxbDKbDxMY+HbNYhgifjZi9ZRMaZ56BfcTG4R9
2JmmNlhUh2+Zdoslf/J7t+zMTOEGmfwImJBxiWDZwmahRUy6bsYl4hDTw/ge0NS0
jw6pTGLOvXX9dwEmaMrzYRsm4ZOy6bXV1apG1Wa/4X5frxQVoaaAI4AT3Af6oKBz
Sq62RfUO83ghujh+Ibpbi7FC/O4db62Tt7LZKz5MfjqXE0x8HkCs/gRWAg/GQuJM
Qt6PnIV+WrMdvcmOSReQBAzmP9s5mBwYfmyN+O0FFR4EqzNE+AN6ebtoDwIDAQAB
o4ICFjCCAhIwHQYDVR0OBBYEFNhgEVHjFq3lcvAImBzxlEUuMPHOMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvMkdBUlVlTVdyZVZ5OEFpWUhQR1VSUzR3OGM0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCwGCCsGAQUFBwEHAQH/BB0wGzAZBAIAAjATAxEAIAEGfABk
//8AAAGVOSGPVzANBgkqhkiG9w0BAQsFAAOCAQEAVAX1G92O7z+W2cUOYsq65S+j
YFju8bFrSDlDg9zF2sdjrEdkDYdyQaXWdoUG/Tt0wu6JeBVplyPhA/+OKcfHNhQq
nF7yydgUCpOjHdlE2HH+mhtZu0x0jr5+Gx++FIMV1byDbF2WZyUog4ANQQFoPi+f
nyju/SHBZHqZVZbMHE53882+tT4ugz43XIWjVBAkzdYoyOTRgF0J7IzqqRAkNfhe
+jr152XM4KXWw87FjoIzyOE3bOtXt4tVyY2e/l35uwhIBsuvVn8YGdMRaOY++7Fd
gcdF3J30dDiBGaCAzE76Sfsl0ruwLQNqJTXzarMwmec77iIKzR3gWszG0paqjA==
-----END CERTIFICATE-----
Generated at Sat Apr 19 03:04:16 2025 by rpki-client