Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/GcvpACO-QNXpK4pG8lN4J4HWlTQ.roa
File: GcvpACO-QNXpK4pG8lN4J4HWlTQ.roa (raw, json)
Hash identifier: +oGJziAKNcE2MLdY0HFaO25bWrH80H6PKllHDwWsQAQ=
Subject key identifier: 19:CB:E9:00:23:BE:40:D5:E9:2B:8A:46:F2:53:78:27:81:D6:95:34
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 018F80B969FB076B3BD323AFA8C60B9D0077
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/GcvpACO-QNXpK4pG8lN4J4HWlTQ.roa
Signing time: Thu 16 May 2024 09:26:25 +0000
ROA not before: Thu 16 May 2024 09:26:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214958
IP address blocks: 2a04:6e40::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:80:b9:69:fb:07:6b:3b:d3:23:af:a8:c6:0b:9d:00:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: May 16 09:26:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=19cbe90023be40d5e92b8a46f253782781d69534
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:0d:96:46:97:b1:1a:90:56:c1:f6:cc:bc:03:
9d:10:86:13:fe:43:f6:8a:af:00:13:c8:cb:64:d6:
3d:0a:80:32:cf:36:b5:90:07:15:40:f0:7c:32:37:
0c:e5:cd:d5:93:a0:b0:17:24:be:26:ea:00:53:91:
1d:d6:83:67:a1:b8:5d:c9:47:08:47:80:fc:94:8b:
ef:bc:c1:85:1b:40:b8:9d:e5:62:f4:1b:be:14:60:
d5:f7:b0:d0:cd:b0:2b:78:38:86:4e:64:2f:80:fb:
38:65:82:26:ca:c9:48:d6:80:25:eb:85:04:29:ca:
fb:17:dd:83:2d:5d:3d:5b:94:a7:85:b2:f0:ca:a9:
0f:c0:85:f5:d3:ab:c0:97:d7:87:ff:12:07:9e:c4:
0f:78:20:e0:53:d5:3b:47:86:5f:3a:f5:33:b4:3e:
c5:18:20:39:a4:3d:51:1f:8a:24:03:82:00:49:3a:
22:e1:a4:31:4b:2e:02:08:e1:ec:bc:a1:1a:86:16:
85:c1:75:7e:76:6e:61:d2:e0:c9:56:f7:9b:29:ec:
52:da:ef:68:54:06:33:be:94:e2:c1:08:5f:dd:9c:
9b:f8:fc:16:c1:17:e7:fe:c6:42:b5:bc:67:03:b9:
80:9d:8d:36:50:32:af:16:20:28:8c:44:0d:c3:7b:
be:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:CB:E9:00:23:BE:40:D5:E9:2B:8A:46:F2:53:78:27:81:D6:95:34
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/GcvpACO-QNXpK4pG8lN4J4HWlTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:6e40::/29
Signature Algorithm: sha256WithRSAEncryption
90:f7:6a:10:f4:1e:e2:70:32:3d:08:d1:24:01:df:2c:bd:4f:
3f:78:8d:12:f2:a6:9c:1c:bb:d7:26:63:72:ad:56:b0:c5:7d:
14:6e:64:db:0e:7c:24:18:cb:47:76:94:c4:7c:1d:71:77:b9:
cd:fc:2e:ff:d0:21:26:52:5e:81:6c:d2:57:4a:6e:d8:55:b4:
06:63:73:51:fc:6e:5a:12:43:39:32:65:32:61:5e:a2:d5:16:
72:ac:43:8e:d4:f0:97:08:0c:a3:46:c9:f3:f0:86:49:1e:fa:
47:b7:6e:4a:66:10:58:dc:56:9d:0b:80:c6:da:86:0c:58:4d:
1b:a1:6a:3f:e6:5a:9b:82:29:20:a8:4f:9a:a3:0e:4f:13:93:
d8:fd:4b:29:5b:59:a2:7b:13:81:d8:8f:2c:aa:ba:ea:b8:6b:
5f:11:a2:3b:b5:22:6b:f0:06:1f:f5:68:ce:4b:4e:5c:f7:71:
2c:86:14:dd:3d:17:96:29:bc:25:79:86:2b:54:dd:e2:a5:92:
9e:8c:f8:a8:72:ab:e4:19:6f:3d:bc:4c:3d:99:21:9d:2f:d9:
9a:fc:9a:e0:84:e6:1e:b7:82:ef:c3:da:58:1c:46:57:41:d9:
08:b3:48:42:75:f3:ea:91:ed:fa:69:41:bc:48:b7:f5:88:0a:
7d:61:17:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:06:51 2025 by rpki-client