Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/831f53-90d1-4208-a6d5-c5fe44420c09/1/GSFaspWpvkaFflpsvPgJYhuOdco.roa
File: GSFaspWpvkaFflpsvPgJYhuOdco.roa (raw, json)
Hash identifier: 2RnXIXNVFrz3GyuvP7lFa6WzPnO73GRa+lztN0RXG2I=
Subject key identifier: 19:21:5A:B2:95:A9:BE:46:85:7E:5A:6C:BC:F8:09:62:1B:8E:75:CA
Certificate issuer: /CN=6133ec1a240143dae111bb92d192dabf775d81ec
Certificate serial: 018CC72743EE828FDB8B4CB35870D3E613F8
Authority key identifier: 61:33:EC:1A:24:01:43:DA:E1:11:BB:92:D1:92:DA:BF:77:5D:81:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YTPsGiQBQ9rhEbuS0ZLav3ddgew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/831f53-90d1-4208-a6d5-c5fe44420c09/1/GSFaspWpvkaFflpsvPgJYhuOdco.roa
Signing time: Mon 01 Jan 2024 22:31:28 +0000
ROA not before: Mon 01 Jan 2024 22:31:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57225
IP address blocks: 2a0a:b400::/31 maxlen: 31
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:43:ee:82:8f:db:8b:4c:b3:58:70:d3:e6:13:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6133ec1a240143dae111bb92d192dabf775d81ec
Validity
Not Before: Jan 1 22:31:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=19215ab295a9be46857e5a6cbcf809621b8e75ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d4:a7:6d:06:33:64:a0:ab:19:31:22:43:d9:
1f:29:ef:96:c1:42:3e:dc:04:6b:b0:ff:b4:39:c5:
b4:fe:f9:86:bf:d7:2a:6f:17:3b:09:b3:05:2c:a4:
46:f5:d4:b1:97:b9:0f:7f:54:6f:53:ee:45:0b:66:
5a:23:a8:a0:40:c1:a3:93:02:55:a2:94:11:6b:30:
2e:ec:c9:b8:f6:fa:02:36:75:9a:0d:4f:72:f9:cb:
50:fc:cc:9b:58:6f:af:05:20:80:b8:3c:20:1c:24:
3d:c2:29:ea:ff:f0:35:d0:97:0d:51:3b:ed:6b:37:
7a:08:59:cc:33:8a:e9:ea:f3:c2:ff:33:f2:11:cd:
79:df:8a:58:f8:80:1c:a6:9e:1e:03:e2:25:25:7d:
06:7f:46:cd:c2:b2:5b:6b:c6:ec:2c:3e:81:44:20:
84:11:d1:67:2d:c7:08:d6:dd:90:83:97:a8:12:d9:
1c:e1:6e:17:8e:43:0a:2e:23:ab:dd:4f:1f:3e:95:
fa:29:a7:72:a3:8d:5c:45:4a:53:2d:8d:51:c6:be:
1d:10:4e:f6:bd:25:04:a1:85:32:e3:e5:23:9f:16:
92:5c:da:86:16:ff:b0:43:a7:5e:c8:eb:97:9e:23:
f0:8b:dd:47:7b:c6:49:f2:26:64:38:cb:67:b6:b2:
d5:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:21:5A:B2:95:A9:BE:46:85:7E:5A:6C:BC:F8:09:62:1B:8E:75:CA
X509v3 Authority Key Identifier:
keyid:61:33:EC:1A:24:01:43:DA:E1:11:BB:92:D1:92:DA:BF:77:5D:81:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YTPsGiQBQ9rhEbuS0ZLav3ddgew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/831f53-90d1-4208-a6d5-c5fe44420c09/1/GSFaspWpvkaFflpsvPgJYhuOdco.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/831f53-90d1-4208-a6d5-c5fe44420c09/1/YTPsGiQBQ9rhEbuS0ZLav3ddgew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:b400::/31
Signature Algorithm: sha256WithRSAEncryption
d5:ac:29:51:21:e2:a9:29:1c:43:46:0a:fc:71:51:21:74:1c:
19:c7:49:e5:2b:29:69:c3:69:7b:2a:71:f5:ba:92:53:22:d6:
8d:04:08:8a:b7:ce:0b:85:e6:62:b0:ee:44:41:ed:9a:b0:0d:
dd:ef:32:4d:bf:26:83:52:79:d5:08:d5:ea:8d:28:a8:7a:28:
b6:6f:b7:a5:cf:2c:b1:e8:f5:18:cb:14:d6:b2:d5:91:d4:6e:
a2:e7:94:4f:7a:59:cc:44:45:34:09:b4:a4:4e:d6:52:35:9a:
e2:cb:96:c1:8e:9d:15:3c:0a:bb:37:80:eb:c4:a9:02:d8:2f:
e9:4b:24:d7:ea:14:2d:7c:05:55:01:9a:f4:60:02:45:79:54:
8c:cc:83:5e:13:6e:00:4f:93:30:cb:9e:ec:92:81:84:62:63:
f4:cc:51:b5:d0:47:4e:cc:0d:2d:fa:f1:00:5c:f5:d0:7e:0e:
aa:62:8a:75:eb:ba:25:fd:15:73:25:98:c8:cb:42:8f:f0:ee:
a7:9e:84:9c:8a:7d:fe:75:8f:58:1b:5d:90:62:e8:c3:32:f1:
2a:42:6c:e7:67:ee:cc:6f:b5:a2:0a:74:a3:40:c9:73:41:e9:
f0:a3:70:22:05:68:1f:8b:ef:03:b2:b8:53:bd:33:d9:d0:a6:
91:c2:09:30
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYzHJ0Pugo/bi0yzWHDT5hP4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxMzNlYzFhMjQwMTQzZGFlMTExYmI5MmQxOTJkYWJmNzc1
ZDgxZWMwHhcNMjQwMTAxMjIzMTI4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxOTIxNWFiMjk1YTliZTQ2ODU3ZTVhNmNiY2Y4MDk2MjFiOGU3NWNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsNSnbQYzZKCrGTEiQ9kfKe+WwUI+
3ARrsP+0OcW0/vmGv9cqbxc7CbMFLKRG9dSxl7kPf1RvU+5FC2ZaI6igQMGjkwJV
opQRazAu7Mm49voCNnWaDU9y+ctQ/MybWG+vBSCAuDwgHCQ9winq//A10JcNUTvt
azd6CFnMM4rp6vPC/zPyEc1534pY+IAcpp4eA+IlJX0Gf0bNwrJba8bsLD6BRCCE
EdFnLccI1t2Qg5eoEtkc4W4XjkMKLiOr3U8fPpX6Kadyo41cRUpTLY1Rxr4dEE72
vSUEoYUy4+UjnxaSXNqGFv+wQ6deyOuXniPwi91He8ZJ8iZkOMtntrLV/QIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFBkhWrKVqb5GhX5abLz4CWIbjnXKMB8GA1UdIwQY
MBaAFGEz7BokAUPa4RG7ktGS2r93XYHsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWVRQc0dpUUJROXJoRWJ1UzBaTGF2M2RkZ2V3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi84MzFmNTMtOTBkMS00MjA4LWE2ZDUt
YzVmZTQ0NDIwYzA5LzEvR1NGYXNwV3B2a2FGZmxwc3ZQZ0pZaHVPZGNvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi84MzFmNTMtOTBkMS00MjA4LWE2ZDUtYzVmZTQ0NDIwYzA5
LzEvWVRQc0dpUUJROXJoRWJ1UzBaTGF2M2RkZ2V3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUBKgq0ADAN
BgkqhkiG9w0BAQsFAAOCAQEA1awpUSHiqSkcQ0YK/HFRIXQcGcdJ5SspacNpeypx
9bqSUyLWjQQIirfOC4XmYrDuREHtmrAN3e8yTb8mg1J51QjV6o0oqHootm+3pc8s
sej1GMsU1rLVkdRuoueUT3pZzERFNAm0pE7WUjWa4suWwY6dFTwKuzeA68SpAtgv
6Usk1+oULXwFVQGa9GACRXlUjMyDXhNuAE+TMMue7JKBhGJj9MxRtdBHTswNLfrx
AFz10H4OqmKKdeu6Jf0VcyWYyMtCj/Dup56EnIp9/nWPWBtdkGLowzLxKkJs52fu
zG+1ogp0o0DJc0Hp8KNwIgVoH4vvA7K4U70z2dCmkcIJMA==
-----END CERTIFICATE-----
Generated at Tue Oct 22 19:17:27 2024 by rpki-client on console.sobornost.net