Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/e6812e-96a4-48b4-ab61-121ff46018f3/1/gBvfSY4X722osdS0oGwbWca756o.roa
File: gBvfSY4X722osdS0oGwbWca756o.roa (raw, json)
Hash identifier: qRD13MOAWh4vkqsKDndu25MB5rnSOvhlh2YKABBiyH4=
Subject key identifier: 80:1B:DF:49:8E:17:EF:6D:A8:B1:D4:B4:A0:6C:1B:59:C6:BB:E7:AA
Certificate issuer: /CN=667d377dd4c830c246cb48a934699699e4b37741
Certificate serial: 01941F8C1BCDF51EBAB929BD5164871A6937
Authority key identifier: 66:7D:37:7D:D4:C8:30:C2:46:CB:48:A9:34:69:96:99:E4:B3:77:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zn03fdTIMMJGy0ipNGmWmeSzd0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/e6812e-96a4-48b4-ab61-121ff46018f3/1/gBvfSY4X722osdS0oGwbWca756o.roa
Signing time: Wed 01 Jan 2025 01:47:43 +0000
ROA not before: Wed 01 Jan 2025 01:47:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199116
IP address blocks: 2a09:6847::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:1b:cd:f5:1e:ba:b9:29:bd:51:64:87:1a:69:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=667d377dd4c830c246cb48a934699699e4b37741
Validity
Not Before: Jan 1 01:47:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=801bdf498e17ef6da8b1d4b4a06c1b59c6bbe7aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:7e:09:35:d5:99:2d:dc:de:9e:f0:d9:aa:1d:
75:92:cd:d3:4f:d6:d0:d9:c6:fd:3b:74:cc:5f:69:
3f:a2:1b:73:71:58:b5:2b:d0:ca:4b:19:5b:26:0d:
6c:88:02:d3:67:3d:83:83:59:32:3c:9d:2c:30:b9:
8a:c1:28:c2:6e:db:e9:d2:8a:bf:ed:22:4b:b1:5b:
2c:8a:06:f6:80:66:ed:da:a5:a4:0d:2e:4b:7e:08:
c4:c6:60:6e:82:83:cc:21:91:10:8a:a6:68:bc:26:
11:de:1d:fb:37:82:d2:69:35:48:ea:e5:ce:fd:e1:
c8:e3:74:8b:02:b4:8f:d5:0f:df:b7:8e:54:cf:44:
61:db:a5:24:aa:27:34:53:12:5b:a1:c0:01:00:75:
3f:f3:50:40:f0:74:20:5a:88:7f:74:3f:31:5a:1e:
cc:5b:e7:29:22:b0:9f:49:5f:97:b1:1e:e3:69:cd:
e7:e9:9e:8a:80:6c:f4:66:12:e2:65:0f:4c:7d:28:
78:25:35:e2:7a:6d:61:90:ac:49:7f:e3:35:49:94:
1b:18:0b:3c:26:ea:6b:a0:84:2f:b2:50:29:20:7d:
91:9d:7a:6b:19:cf:81:e0:ba:dc:4c:a1:0d:84:5e:
25:61:f0:2e:a8:c0:86:51:88:ef:50:42:20:ce:e1:
cb:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:1B:DF:49:8E:17:EF:6D:A8:B1:D4:B4:A0:6C:1B:59:C6:BB:E7:AA
X509v3 Authority Key Identifier:
keyid:66:7D:37:7D:D4:C8:30:C2:46:CB:48:A9:34:69:96:99:E4:B3:77:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zn03fdTIMMJGy0ipNGmWmeSzd0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/e6812e-96a4-48b4-ab61-121ff46018f3/1/gBvfSY4X722osdS0oGwbWca756o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/e6812e-96a4-48b4-ab61-121ff46018f3/1/Zn03fdTIMMJGy0ipNGmWmeSzd0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:6847::/32
Signature Algorithm: sha256WithRSAEncryption
8e:30:b8:1d:e5:59:14:96:7d:93:8f:20:51:ad:63:a1:fd:82:
8a:55:58:f7:c7:73:ae:06:dc:0d:51:16:13:e9:f7:17:4a:cf:
da:3c:a1:5f:d6:f5:8d:42:33:bf:aa:d1:16:53:c6:49:f0:3f:
7a:fc:c4:d9:b4:4a:e4:c8:4b:c5:62:0c:f3:c6:37:74:36:9c:
a3:c2:9d:21:62:e0:0b:74:9a:d4:0f:36:a3:a3:66:cd:13:ef:
76:bc:03:cf:5f:fa:fa:7b:e2:2a:3c:35:a5:ba:30:c0:1e:5c:
a0:d0:fc:99:5a:a0:a8:7e:bd:69:2e:8b:19:e0:4a:c8:8f:4e:
56:96:73:bf:ed:ff:c9:b9:c6:b7:c7:cf:44:c6:51:4a:0f:03:
4a:bc:15:dd:94:5e:7f:a7:51:93:c9:5c:d8:72:9b:3a:a3:ea:
c1:5d:38:a2:ec:1b:d5:a7:44:14:1c:8b:a0:15:f2:40:e7:a8:
2f:48:cf:42:d8:a2:ec:f1:60:7c:00:99:3e:79:e7:51:85:7b:
ce:d1:58:70:60:6c:51:d0:6b:e3:05:f7:06:7f:dc:ae:47:92:
fa:d8:eb:cf:f1:00:2b:63:22:c9:20:db:bc:96:a8:b7:98:d8:
d1:93:4d:70:60:96:b4:9f:97:97:e9:87:c5:80:7d:52:02:0b:
c6:b1:e6:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:53:48 2025 by rpki-client