Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/GboNh242BYs12RG7qxoczH5thY0.roa
File: GboNh242BYs12RG7qxoczH5thY0.roa (raw, json)
Hash identifier: z7Xc8yvERYQDOmZOz+5FsrOommT5EJmIevCsWK3q0nE=
Subject key identifier: 19:BA:0D:87:6E:36:05:8B:35:D9:11:BB:AB:1A:1C:CC:7E:6D:85:8D
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019161F837C7F69460B4D1943ADBC09188DB
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/GboNh242BYs12RG7qxoczH5thY0.roa
Signing time: Sat 17 Aug 2024 20:12:22 +0000
ROA not before: Sat 17 Aug 2024 20:12:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:61:f8:37:c7:f6:94:60:b4:d1:94:3a:db:c0:91:88:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 17 20:12:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=19ba0d876e36058b35d911bbab1a1ccc7e6d858d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:5e:e7:d5:50:d2:81:5d:47:91:3d:14:65:c8:
9f:bf:2e:02:81:eb:93:b8:ee:f8:1d:ae:31:cc:b8:
d3:31:54:44:2d:de:be:19:b2:49:c3:4f:cf:33:16:
01:12:72:a2:f5:a2:ff:bd:bb:dd:b9:29:fd:7c:6c:
91:49:59:4f:ef:1a:fc:a8:4f:22:19:e8:bf:62:02:
aa:21:cc:aa:ef:4b:c8:0b:17:ac:9d:91:00:72:de:
0c:21:74:ec:6f:1e:f1:46:01:a1:d8:ca:29:09:81:
38:5e:5f:a8:06:ca:cc:b7:41:5b:1d:da:12:28:c0:
32:7a:9e:f2:52:6c:44:9e:8e:f1:0b:0b:6e:d6:4a:
c6:65:65:5e:a0:c3:b4:c2:58:51:fc:ff:16:53:c1:
83:49:80:b3:94:b8:9d:60:d0:28:20:09:3d:05:d8:
1a:7b:57:9b:87:2d:ed:0a:be:15:15:27:b3:63:7c:
af:be:c6:3a:5f:54:ac:5d:cb:81:f5:eb:b8:89:ec:
13:f3:46:64:45:21:5f:ac:49:1c:c2:4a:e6:a3:74:
cd:61:4c:59:fa:4d:ec:a9:c9:70:5b:80:25:3b:61:
c5:6a:8b:37:5c:10:1f:6a:8f:ee:2c:4f:94:eb:49:
f5:ed:91:cf:4e:99:78:33:b3:3d:de:92:2b:cb:b4:
d2:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:BA:0D:87:6E:36:05:8B:35:D9:11:BB:AB:1A:1C:CC:7E:6D:85:8D
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/GboNh242BYs12RG7qxoczH5thY0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
23:83:f5:83:3b:08:a9:a1:5b:be:e8:ea:b2:ab:7a:43:94:d5:
1f:0e:7d:b7:fa:e3:1f:1a:a3:d5:6a:ff:ff:88:ad:07:0f:b3:
1c:86:e0:e3:f0:c9:36:62:a9:a1:9c:4b:16:e6:27:f3:86:69:
de:b8:56:6b:32:70:b7:3d:47:3c:a7:1d:2e:32:dd:45:7d:20:
8c:e2:78:ea:9d:e3:83:52:9d:95:92:fb:13:f4:d2:f2:f6:c7:
8f:2c:3f:55:ed:c3:de:a5:1b:5f:b3:6e:c6:30:0f:df:7b:2b:
54:68:70:69:80:89:0d:52:63:9e:b5:1a:55:8a:c0:d3:8c:af:
33:10:10:91:0e:1f:58:a4:ea:04:94:79:f3:6b:62:6c:c3:ff:
52:b2:08:3f:89:16:84:56:0e:24:5a:4a:d2:98:81:aa:af:e0:
cd:38:7f:6d:51:6b:fe:3b:a7:db:a2:e0:53:89:c4:53:84:6c:
89:86:f8:2f:1b:69:17:ae:ec:9b:bf:ac:95:78:5d:1a:69:da:
e0:94:b2:b7:79:00:c3:9b:5e:c7:0a:4a:f9:43:78:8b:47:e1:
8e:26:11:dd:09:2d:1b:b9:cb:12:ce:e4:4f:a0:45:6a:f4:2a:
05:e1:58:34:ca:d3:42:9c:5a:45:94:f1:73:ab:43:f5:8d:af:
3d:84:ff:f4
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 19 12:07:27 2025 by rpki-client