Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/a3d9a6-34b7-4f38-a9a5-8bfacae464f9/1/Gu1VfmEwwWGyyu8mUifUt3Et1aU.roa
File: Gu1VfmEwwWGyyu8mUifUt3Et1aU.roa (raw, json)
Hash identifier: HigRll08o/Aqm4OTZp77tT+XoPqn533WGHlSSBF902U=
Subject key identifier: 1A:ED:55:7E:61:30:C1:61:B2:CA:EF:26:52:27:D4:B7:71:2D:D5:A5
Certificate issuer: /CN=8307a5224ae6d9a92e47e656dd801b10ffb9072b
Certificate serial: 0194258FAA803118FDEF7AA7A7E3D995136F
Authority key identifier: 83:07:A5:22:4A:E6:D9:A9:2E:47:E6:56:DD:80:1B:10:FF:B9:07:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gwelIkrm2akuR-ZW3YAbEP-5Bys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/a3d9a6-34b7-4f38-a9a5-8bfacae464f9/1/Gu1VfmEwwWGyyu8mUifUt3Et1aU.roa
Signing time: Thu 02 Jan 2025 05:49:19 +0000
ROA not before: Thu 02 Jan 2025 05:49:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214042
IP address blocks: 2001:3040::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:aa:80:31:18:fd:ef:7a:a7:a7:e3:d9:95:13:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8307a5224ae6d9a92e47e656dd801b10ffb9072b
Validity
Not Before: Jan 2 05:49:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1aed557e6130c161b2caef265227d4b7712dd5a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:65:b3:8f:98:68:2a:be:2d:36:dc:df:36:c5:
43:c9:4c:16:19:f8:ef:be:bb:e4:7a:2f:b3:35:13:
94:23:cf:d8:e7:ff:9d:8a:c9:41:06:63:c5:2f:92:
c7:cb:65:44:ae:4f:d2:0a:a1:e8:11:f6:8b:1f:ae:
fa:24:3c:79:b3:b2:4d:91:32:59:d8:03:b0:6c:6a:
5f:96:13:3d:fb:2c:20:66:0a:8e:55:e7:97:ef:c9:
80:36:ab:a5:82:1b:fb:2a:f1:61:0f:a3:d8:1b:2f:
1a:6c:15:c3:cc:0d:ad:9d:5b:71:a6:cc:07:81:fe:
23:fb:06:bb:bd:7d:4a:bf:cf:8a:87:db:f6:9f:1a:
e2:05:3a:57:72:b3:8a:06:79:70:9d:39:8d:69:b8:
83:1a:f0:83:70:9a:e3:52:56:e2:2e:fa:6f:93:13:
8e:13:e7:64:c8:a8:7c:f9:63:a1:fe:e7:62:44:0a:
67:8b:00:e0:82:ca:5b:dc:14:d9:0c:48:b8:5c:fe:
b4:8d:86:4b:85:2b:49:a9:fd:01:eb:b7:9f:a4:58:
34:83:5e:73:7c:59:09:c6:3b:03:b5:7b:73:13:c1:
93:7a:8b:a6:0b:f7:2f:37:eb:3d:27:f4:5e:7e:02:
73:34:c0:5e:a3:f9:10:7f:bf:df:2e:ef:c3:ad:72:
95:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:ED:55:7E:61:30:C1:61:B2:CA:EF:26:52:27:D4:B7:71:2D:D5:A5
X509v3 Authority Key Identifier:
keyid:83:07:A5:22:4A:E6:D9:A9:2E:47:E6:56:DD:80:1B:10:FF:B9:07:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gwelIkrm2akuR-ZW3YAbEP-5Bys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a3d9a6-34b7-4f38-a9a5-8bfacae464f9/1/Gu1VfmEwwWGyyu8mUifUt3Et1aU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a3d9a6-34b7-4f38-a9a5-8bfacae464f9/1/gwelIkrm2akuR-ZW3YAbEP-5Bys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:3040::/48
Signature Algorithm: sha256WithRSAEncryption
03:f5:3c:31:5f:c1:12:2d:03:68:be:06:76:d7:28:fd:39:62:
ee:e8:86:b7:ea:d1:02:2b:0b:87:0d:0a:34:a9:5b:48:55:b1:
02:07:fd:11:46:55:df:13:de:73:23:44:44:3d:09:89:35:e9:
e8:20:5e:85:49:5c:e4:8a:dc:c0:1a:80:c0:88:ff:cd:7c:58:
a4:0c:9e:b9:9e:8a:3b:11:f7:d3:94:b9:5c:82:90:f1:e4:db:
ee:ee:e6:fd:11:37:ee:5b:73:bc:c7:9c:2c:e9:28:ec:56:9b:
ea:ea:14:c7:f9:ed:9d:2c:e3:51:b5:5f:ad:3d:c4:66:7e:f5:
f2:1d:f4:92:05:32:b6:30:67:1e:b6:4e:b3:a9:85:92:70:85:
68:90:dd:c5:48:29:7e:b9:9e:26:0d:e4:c4:4c:5f:82:3e:e5:
84:4b:01:b9:cd:52:a4:30:23:8c:d2:a5:e5:03:96:bf:2a:11:
28:96:14:6d:45:4e:8f:92:c4:d4:e6:ba:69:84:8e:45:e8:2e:
79:ac:aa:d4:7d:91:3a:95:c1:3d:a1:75:29:cc:6c:ea:d4:0c:
1f:24:02:73:8d:5e:19:38:ce:47:ef:47:f2:ab:c6:48:70:45:
1d:81:f5:28:b6:48:58:5c:28:d4:10:70:75:39:d3:f7:81:69:
a8:51:da:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:15:17 2025 by rpki-client