Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/32e7dc-bd1a-425b-9ee1-01de2598629f/1/gaQTxz9A20WuvM161gfwhFvKiHA.roa
File: gaQTxz9A20WuvM161gfwhFvKiHA.roa (raw, json)
Hash identifier: VdguHR6A0Mg9c+hFLTQ3yBP5J0AnZhepK8iVW49gjm4=
Subject key identifier: 81:A4:13:C7:3F:40:DB:45:AE:BC:CD:7A:D6:07:F0:84:5B:CA:88:70
Certificate issuer: /CN=fb7548da38beb1ce72f8a6933b31da5b5c654834
Certificate serial: 018E6089BCB651BBFC2F29038F67C7757331
Authority key identifier: FB:75:48:DA:38:BE:B1:CE:72:F8:A6:93:3B:31:DA:5B:5C:65:48:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-3VI2ji-sc5y-KaTOzHaW1xlSDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/32e7dc-bd1a-425b-9ee1-01de2598629f/1/gaQTxz9A20WuvM161gfwhFvKiHA.roa
Signing time: Thu 21 Mar 2024 10:23:43 +0000
ROA not before: Thu 21 Mar 2024 10:23:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58057
IP address blocks: 2001:67c:e3c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:60:89:bc:b6:51:bb:fc:2f:29:03:8f:67:c7:75:73:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb7548da38beb1ce72f8a6933b31da5b5c654834
Validity
Not Before: Mar 21 10:23:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=81a413c73f40db45aebccd7ad607f0845bca8870
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:d0:35:1d:e9:8f:cd:88:4f:bc:5b:d7:78:a4:
d4:a6:03:09:30:a6:5c:9c:33:dc:56:99:45:92:1c:
44:48:6b:75:40:f8:5e:aa:a7:8e:b5:52:fa:6b:a1:
01:06:57:0d:91:de:17:66:57:25:88:cf:bd:4b:ca:
b8:ca:e6:2f:91:64:35:59:b0:79:93:3c:21:25:68:
15:91:ec:5e:9b:6b:67:2c:4f:56:aa:ca:81:8c:c4:
53:ff:db:d7:5b:3c:ce:c0:c9:ae:e0:ec:93:64:45:
3c:85:68:68:87:27:0d:a6:73:a3:da:db:44:07:d5:
89:de:c6:8a:e3:67:f8:3e:f0:6d:7c:a9:69:b5:09:
21:65:80:0e:97:14:4a:06:b0:06:b6:cc:ea:35:ab:
7f:8e:e5:77:59:dc:3f:fc:3b:db:28:96:73:d6:a4:
fc:12:ac:58:11:8a:ac:7b:14:57:d1:6f:e4:1c:80:
a7:1d:42:9d:51:29:a3:6d:93:71:47:f4:4d:ff:e5:
dd:56:69:33:b8:d6:96:d1:33:ef:dc:6f:87:28:38:
eb:49:b8:33:90:73:83:41:96:77:05:77:7f:2e:9d:
43:5c:6b:a6:6b:b0:46:de:cc:a6:04:50:d9:1c:0b:
7e:44:d3:e5:e1:cb:47:59:23:5a:d4:f2:82:21:f1:
03:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:A4:13:C7:3F:40:DB:45:AE:BC:CD:7A:D6:07:F0:84:5B:CA:88:70
X509v3 Authority Key Identifier:
keyid:FB:75:48:DA:38:BE:B1:CE:72:F8:A6:93:3B:31:DA:5B:5C:65:48:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-3VI2ji-sc5y-KaTOzHaW1xlSDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/32e7dc-bd1a-425b-9ee1-01de2598629f/1/gaQTxz9A20WuvM161gfwhFvKiHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/32e7dc-bd1a-425b-9ee1-01de2598629f/1/1-3VI2ji-sc5y-KaTOzHaW1xlSDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:e3c::/48
Signature Algorithm: sha256WithRSAEncryption
74:f1:0a:e1:15:cd:c0:fd:7f:7d:93:92:1e:32:81:20:4c:65:
c8:df:14:83:69:1e:8c:cc:9c:19:b3:7e:b0:6e:9c:55:50:27:
00:86:48:1d:1a:08:65:52:33:91:49:41:0d:37:b1:5d:37:af:
db:41:0a:52:40:4a:97:6d:bb:a5:ec:f7:3b:1c:e4:8a:61:95:
d2:cb:86:3f:3f:1c:78:43:af:fe:a6:b8:d5:a4:7f:ed:f5:5f:
ab:bf:4b:34:08:c4:0b:08:56:40:44:48:c8:f3:82:fb:90:18:
e7:81:31:44:eb:8e:0e:21:06:44:bb:ae:45:47:92:f5:31:c1:
00:cc:f6:c9:dd:7f:dd:23:0e:60:92:11:73:78:c4:c9:e0:8f:
a8:02:2a:19:fe:29:0c:5a:59:bd:a3:5a:4b:6b:b1:56:a7:f7:
07:23:46:66:fd:78:71:29:f0:b9:d4:54:02:03:c7:19:6f:23:
ee:8f:aa:d0:df:5d:4a:82:ec:1c:c5:76:79:b1:56:cc:cf:72:
81:82:36:d5:d4:48:a4:9d:9e:d3:2a:ee:c0:a1:b4:3c:27:16:
71:43:b7:0a:8c:b2:1f:0e:de:43:71:99:2d:11:e3:b8:25:36:
56:bf:46:24:a4:a6:93:cb:aa:36:e6:82:5e:1e:ff:e0:65:8d:
47:7e:b7:d3
-----BEGIN CERTIFICATE-----
MIIFAjCCA+qgAwIBAgISAY5giby2Ubv8LykDj2fHdXMxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZiNzU0OGRhMzhiZWIxY2U3MmY4YTY5MzNiMzFkYTViNWM2
NTQ4MzQwHhcNMjQwMzIxMTAyMzQzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MWE0MTNjNzNmNDBkYjQ1YWViY2NkN2FkNjA3ZjA4NDViY2E4ODcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjNA1HemPzYhPvFvXeKTUpgMJMKZc
nDPcVplFkhxESGt1QPheqqeOtVL6a6EBBlcNkd4XZlcliM+9S8q4yuYvkWQ1WbB5
kzwhJWgVkexem2tnLE9WqsqBjMRT/9vXWzzOwMmu4OyTZEU8hWhohycNpnOj2ttE
B9WJ3saK42f4PvBtfKlptQkhZYAOlxRKBrAGtszqNat/juV3Wdw//DvbKJZz1qT8
EqxYEYqsexRX0W/kHICnHUKdUSmjbZNxR/RN/+XdVmkzuNaW0TPv3G+HKDjrSbgz
kHODQZZ3BXd/Lp1DXGuma7BG3symBFDZHAt+RNPl4ctHWSNa1PKCIfED9wIDAQAB
o4ICDjCCAgowHQYDVR0OBBYEFIGkE8c/QNtFrrzNetYH8IRbyohwMB8GA1UdIwQY
MBaAFPt1SNo4vrHOcvimkzsx2ltcZUg0MA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS0zVkkyamktc2M1eS1LYVRPekhhVzF4bFNEUS5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjAvMzJlN2RjLWJkMWEtNDI1Yi05ZWUx
LTAxZGUyNTk4NjI5Zi8xL2dhUVR4ejlBMjBXdXZNMTYxZ2Z3aEZ2S2lIQS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvZjAvMzJlN2RjLWJkMWEtNDI1Yi05ZWUxLTAxZGUyNTk4NjI5
Zi8xLzEtM1ZJMmppLXNjNXktS2FUT3pIYVcxeGxTRFEuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQZ8
DjwwDQYJKoZIhvcNAQELBQADggEBAHTxCuEVzcD9f32Tkh4ygSBMZcjfFINpHozM
nBmzfrBunFVQJwCGSB0aCGVSM5FJQQ03sV03r9tBClJASpdtu6Xs9zsc5IphldLL
hj8/HHhDr/6muNWkf+31X6u/SzQIxAsIVkBESMjzgvuQGOeBMUTrjg4hBkS7rkVH
kvUxwQDM9sndf90jDmCSEXN4xMngj6gCKhn+KQxaWb2jWktrsVan9wcjRmb9eHEp
8LnUVAIDxxlvI+6PqtDfXUqC7BzFdnmxVszPcoGCNtXUSKSdntMq7sChtDwnFnFD
twqMsh8O3kNxmS0R47glNla/RiSkppPLqjbmgl4e/+BljUd+t9M=
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:30:35 2025 by rpki-client