Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/gKPXmvei6JR10Z1iEH1wsVE4qIU.roa
File: gKPXmvei6JR10Z1iEH1wsVE4qIU.roa (raw, json)
Hash identifier: NbW+ko5wJ5+1sXv7r7sH8vCA8gEkzKmGLSqEpm1s05g=
Subject key identifier: 80:A3:D7:9A:F7:A2:E8:94:75:D1:9D:62:10:7D:70:B1:51:38:A8:85
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 0184B08D298A668FCD8B321835A56E69F3DE
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/gKPXmvei6JR10Z1iEH1wsVE4qIU.roa
Signing time: Fri 25 Nov 2022 20:49:11 +0000
ROA not before: Fri 25 Nov 2022 20:49:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202224
IP address blocks: 2a06:a005:108d::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:b0:8d:29:8a:66:8f:cd:8b:32:18:35:a5:6e:69:f3:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Nov 25 20:49:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=80a3d79af7a2e89475d19d62107d70b15138a885
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:52:82:37:c9:4b:c4:bf:81:7a:c7:7b:dc:d2:
56:54:6c:e4:48:58:ed:87:31:af:4f:2a:42:58:9d:
0e:49:71:fe:f1:4c:78:e3:81:6e:27:2d:b7:6a:3f:
71:2e:ef:64:e4:ea:b7:21:09:48:24:60:05:42:22:
90:34:61:72:86:f4:d9:ff:70:8e:43:be:e3:c9:ac:
26:9c:67:1f:ab:ac:3b:4c:c3:73:57:ff:b8:e3:3d:
0b:8d:b0:6b:88:53:b3:06:44:f0:34:22:93:d8:85:
4c:e0:28:be:37:80:55:10:5f:e3:63:79:3e:16:75:
6b:0b:5a:43:c1:11:29:08:82:ea:dc:ed:50:4f:d9:
a5:b4:ce:e8:bd:7b:12:f8:29:eb:49:14:d9:f6:af:
81:2f:a2:a5:4a:d9:68:20:41:89:28:be:1e:ac:6b:
ce:f4:8b:41:6b:b3:a3:0f:16:d2:55:e3:a8:21:1d:
98:f3:7f:ed:91:92:42:35:e6:ab:21:c1:85:09:04:
6b:6d:ea:44:07:73:2d:6b:6e:c0:4a:ed:9a:0f:bd:
1e:94:7e:8b:1e:ae:80:99:39:ee:c4:45:45:81:e5:
38:28:2e:c6:aa:ee:2f:4a:e1:32:7b:5a:61:7b:2a:
35:af:05:97:fc:e2:e0:05:17:f4:18:c0:a7:07:e0:
fc:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:A3:D7:9A:F7:A2:E8:94:75:D1:9D:62:10:7D:70:B1:51:38:A8:85
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/gKPXmvei6JR10Z1iEH1wsVE4qIU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:108d::/48
Signature Algorithm: sha256WithRSAEncryption
2c:5c:b9:e8:39:bd:b4:36:29:18:aa:fd:da:0f:c1:b8:94:7a:
3c:8a:48:ae:cf:f6:ba:a5:51:15:0a:cf:14:46:aa:f4:9a:62:
8d:6c:05:60:74:83:21:fd:9e:ba:cc:1e:bb:bc:0f:4f:71:5b:
fd:f5:9c:be:a3:d2:f3:90:78:72:df:45:d4:49:9d:20:0a:73:
01:0c:a3:9a:86:9d:37:c6:9a:a2:15:81:8d:f7:9a:81:5a:30:
8f:d8:ae:9b:f2:1d:43:56:6b:bf:99:7b:c9:7b:27:4d:61:97:
cb:a9:b2:ec:70:94:d8:8e:59:97:76:ac:db:bf:af:80:8a:f9:
8b:aa:9a:e3:72:5c:f5:12:2b:cd:50:a1:e6:e8:58:88:fa:b0:
7b:d8:a3:72:75:b3:44:a1:8f:25:9e:3d:ba:4a:19:42:a3:42:
ac:84:da:07:f5:a5:2e:e3:cb:3b:55:4e:9d:c7:cf:38:ad:fb:
19:c6:e1:3a:a5:9d:d8:30:9d:e1:da:b0:34:a1:58:52:f7:56:
39:b8:cc:61:96:c0:a2:7e:b4:5f:2c:b1:17:67:ae:c6:9d:ca:
d8:e3:be:90:17:b4:64:c1:25:9f:53:7b:78:c4:fd:57:7d:53:
6a:0b:87:86:00:e0:0a:bb:c6:62:7d:15:0e:3d:ac:cd:fc:77:
fd:f1:4b:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:04 2023 by rpki-client on console.sobornost.net