Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/G1aApFV350lk6OS-Vyc-9RPE4-M.roa
File: G1aApFV350lk6OS-Vyc-9RPE4-M.roa (raw, json)
Hash identifier: 7mUxZCiSxCgKGHPWHFdAuEdOy5f51Mh+o3uEji/Hz2o=
Subject key identifier: 1B:56:80:A4:55:77:E7:49:64:E8:E4:BE:57:27:3E:F5:13:C4:E3:E3
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 019423D771B96EFEFD766AB43807FBF5F63F
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/G1aApFV350lk6OS-Vyc-9RPE4-M.roa
Signing time: Wed 01 Jan 2025 21:48:29 +0000
ROA not before: Wed 01 Jan 2025 21:48:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209771
IP address blocks: 5.1.80.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:71:b9:6e:fe:fd:76:6a:b4:38:07:fb:f5:f6:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Jan 1 21:48:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1b5680a45577e74964e8e4be57273ef513c4e3e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:44:ab:63:5b:0b:50:2a:e1:ea:23:a4:b1:49:
48:c9:06:a3:01:a5:70:c7:4c:0d:af:41:b8:0a:8f:
b7:9d:6a:bc:31:3e:71:e5:9a:68:5e:c9:0b:97:f5:
ca:d1:83:b1:84:1b:b6:2f:9c:4b:24:e1:07:aa:01:
91:20:df:98:2f:a5:10:b2:1f:a5:61:b6:3b:e1:96:
8b:7d:01:b4:e1:68:12:b9:34:0b:53:71:5e:df:e4:
5e:44:50:38:af:e9:74:da:e5:51:e2:a5:3e:6e:bf:
a2:61:d1:99:6b:88:36:39:67:9f:a6:d5:09:70:04:
e8:c7:58:fb:a6:eb:b0:26:9f:84:b3:d7:e2:ad:c1:
42:c1:8a:7b:60:c5:7e:3b:b5:48:fd:a2:8a:6d:d2:
30:b1:62:94:18:ed:67:0c:7a:79:08:f4:a8:e0:60:
75:42:2b:77:d8:72:aa:69:94:61:9c:b4:b1:57:8f:
f3:fb:13:2d:ef:a7:22:d4:d6:04:eb:12:e9:28:72:
49:23:61:2b:f9:f8:17:d5:b3:ff:c5:2e:e2:af:52:
ea:27:e6:cf:52:9b:6e:03:2c:65:c1:4c:80:e0:1b:
08:5a:df:df:89:f6:f2:57:09:e4:41:f6:77:dc:6f:
67:cd:cb:49:b3:9c:cf:40:40:af:e3:6f:c4:ea:56:
7b:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:56:80:A4:55:77:E7:49:64:E8:E4:BE:57:27:3E:F5:13:C4:E3:E3
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/G1aApFV350lk6OS-Vyc-9RPE4-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.80.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:b9:cc:54:4c:5d:94:d6:0e:ad:33:eb:cf:d0:1a:b3:ca:18:
9e:8d:d1:c6:20:19:e6:35:30:b9:06:83:40:2b:0c:90:a6:7f:
0f:bc:c3:69:0b:24:fc:56:1e:ff:a9:56:55:1f:13:d2:50:92:
cc:73:d4:5d:18:d4:c7:3d:5f:ec:40:f8:34:a1:f9:1c:c8:bc:
51:53:c9:e9:12:7f:67:81:6c:69:7d:e7:71:17:bb:d6:a6:1d:
1f:4a:fe:d3:0c:c8:77:ff:d7:57:b0:bb:2f:12:73:5a:42:de:
37:3b:6e:94:9f:d3:fc:86:2d:dd:d1:52:c6:44:9d:36:b2:c4:
3b:4c:ce:2d:08:b4:b8:0e:57:d9:75:ed:10:7b:8c:41:18:3e:
bb:af:ea:0c:6c:a2:26:82:50:2d:95:b1:7e:2b:61:d7:f3:5b:
a1:03:0c:97:7f:30:24:29:39:06:25:73:7f:6d:ec:f6:91:28:
0b:ea:9e:fe:6a:97:53:1b:65:6c:f6:1a:2a:e2:9c:f5:95:60:
ef:03:e4:43:ef:8f:7e:52:c4:09:8f:82:cf:dc:83:11:cd:6a:
4b:79:1d:20:58:69:93:2f:ea:56:e8:ac:97:c7:8e:fc:65:82:
b7:e1:c6:11:f4:87:f4:c4:5b:5a:96:56:05:44:cb:9e:8a:49:
05:38:b9:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:00:49 2025 by rpki-client