Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/gv1loJeFCfX1gdYcNhZg8FUBEVQ.roa
File: gv1loJeFCfX1gdYcNhZg8FUBEVQ.roa (raw, json)
Hash identifier: vheei+1rPE7nHXUNS2h6KeB2zYRLX9qJzAESFkN3Ny8=
Subject key identifier: 82:FD:65:A0:97:85:09:F5:F5:81:D6:1C:36:16:60:F0:55:01:11:54
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190908BCA5C4742996DE77EB6576DAC706A
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/gv1loJeFCfX1gdYcNhZg8FUBEVQ.roa
Signing time: Mon 08 Jul 2024 04:13:18 +0000
ROA not before: Mon 08 Jul 2024 04:13:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:90:8b:ca:5c:47:42:99:6d:e7:7e:b6:57:6d:ac:70:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 8 04:13:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=82fd65a0978509f5f581d61c361660f055011154
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:20:a2:c8:46:b9:b7:0e:27:71:fc:08:2a:f8:
61:6d:cd:5d:a2:a4:17:c4:ee:b4:f1:9e:a7:9a:0e:
ab:7e:33:b7:f3:30:f7:3a:a1:f7:f5:1a:9f:f8:1e:
96:70:df:dc:90:43:ea:73:e4:55:25:73:f6:27:76:
75:90:9f:ab:38:ba:0b:6d:dc:97:8b:1c:04:de:e4:
b4:3f:38:a4:c0:57:c3:50:3c:ce:f8:1c:9b:a3:17:
31:ae:15:35:a1:ed:1f:29:dc:bb:28:e4:aa:99:b8:
65:2b:40:55:bb:e2:93:f6:e8:58:70:6a:06:ec:70:
64:3b:95:66:ab:c1:18:a9:4c:13:d4:09:b8:d9:44:
c8:90:77:fc:1d:e0:7d:b6:8b:8e:64:d1:ef:83:6e:
38:59:f1:16:57:53:9e:8f:70:79:68:08:e9:8e:92:
31:03:c0:b2:3d:bd:f6:d4:60:6c:40:7b:b1:f7:24:
7d:93:2c:e6:d5:74:c4:e5:53:73:5e:2a:b3:41:ef:
46:ea:e3:a9:e9:ba:06:09:63:f9:1c:04:13:71:7d:
06:5d:0a:f3:87:0b:31:bd:34:ff:bc:a5:63:15:3f:
0b:df:e0:4a:ec:47:d9:b6:8c:e8:3d:2c:06:25:ed:
37:7e:58:b1:6c:e2:0a:52:fb:12:cd:0f:a8:80:e9:
ff:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:FD:65:A0:97:85:09:F5:F5:81:D6:1C:36:16:60:F0:55:01:11:54
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/gv1loJeFCfX1gdYcNhZg8FUBEVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
2a:52:c5:ef:82:75:87:bf:27:c2:59:b9:25:d9:80:15:82:b1:
a5:3a:55:2a:32:9b:93:b3:ec:42:fe:7d:03:40:c7:5c:22:0b:
87:7f:09:3e:89:8b:63:c5:1d:fe:ca:a4:eb:40:13:15:51:86:
56:7f:1b:ce:3f:7e:d3:0b:69:af:f8:ce:7b:a1:7a:4f:81:4a:
79:86:bd:db:d2:f3:33:6a:20:d1:0b:12:40:7d:c6:46:4e:71:
6e:99:f3:b6:39:3b:d0:36:45:b4:c4:f2:2b:f8:93:3b:5b:f3:
87:9b:dd:d8:ce:42:7a:a8:4e:30:a9:e9:4b:03:7c:3e:01:11:
a1:60:b8:62:cd:55:56:41:ee:1c:ef:94:b5:e6:21:0b:63:79:
59:8c:58:38:02:1d:5e:06:2f:8c:93:49:9f:49:0b:06:8d:7e:
97:4b:0a:be:63:ea:a8:76:9e:ac:c9:6c:3a:5f:2f:a8:0a:4d:
48:68:89:c3:97:6a:1a:32:e1:7a:b6:c1:25:21:73:a3:09:ce:
17:a9:f3:5a:82:d5:b1:53:ba:42:78:28:7a:0c:50:43:2e:3a:
94:d3:ca:a4:c7:18:1e:ac:29:bf:2c:dd:aa:19:5c:b2:4b:4c:
b7:1d:bc:a1:78:ad:ca:ff:bc:bb:0b:79:9e:b3:9b:e2:c8:d5:
81:12:cc:8c
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZCQi8pcR0KZbed+tldtrHBqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNzA4MDQxMzE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MmZkNjVhMDk3ODUwOWY1ZjU4MWQ2MWMzNjE2NjBmMDU1MDExMTU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuiCiyEa5tw4ncfwIKvhhbc1doqQX
xO608Z6nmg6rfjO38zD3OqH39Rqf+B6WcN/ckEPqc+RVJXP2J3Z1kJ+rOLoLbdyX
ixwE3uS0PzikwFfDUDzO+ByboxcxrhU1oe0fKdy7KOSqmbhlK0BVu+KT9uhYcGoG
7HBkO5Vmq8EYqUwT1Am42UTIkHf8HeB9touOZNHvg244WfEWV1Oej3B5aAjpjpIx
A8CyPb321GBsQHux9yR9kyzm1XTE5VNzXiqzQe9G6uOp6boGCWP5HAQTcX0GXQrz
hwsxvTT/vKVjFT8L3+BK7EfZtozoPSwGJe03flixbOIKUvsSzQ+ogOn/tQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFIL9ZaCXhQn19YHWHDYWYPBVARFUMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvZ3YxbG9KZUZDZlgxZ2RZY05oWmc4RlVCRVZRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBACpSxe+CdYe/J8JZuSXZ
gBWCsaU6VSoym5Oz7EL+fQNAx1wiC4d/CT6Ji2PFHf7KpOtAExVRhlZ/G84/ftML
aa/4znuhek+BSnmGvdvS8zNqINELEkB9xkZOcW6Z87Y5O9A2RbTE8iv4kztb84eb
3djOQnqoTjCp6UsDfD4BEaFguGLNVVZB7hzvlLXmIQtjeVmMWDgCHV4GL4yTSZ9J
CwaNfpdLCr5j6qh2nqzJbDpfL6gKTUhoicOXahoy4Xq2wSUhc6MJzhep81qC1bFT
ukJ4KHoMUEMuOpTTyqTHGB6sKb8s3aoZXLJLTLcdvKF4rcr/vLsLeZ6zm+LI1YES
zIw=
-----END CERTIFICATE-----
Generated at Sun Jun 8 04:00:26 2025 by rpki-client