Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/GCT36J3n1OxX-WHPNyMOxT30V1I.roa
File: GCT36J3n1OxX-WHPNyMOxT30V1I.roa (raw, json)
Hash identifier: a5Pszieg/F5+mp8skMSq3X98683NVjkxEMhhyfalK24=
Subject key identifier: 18:24:F7:E8:9D:E7:D4:EC:57:F9:61:CF:37:23:0E:C5:3D:F4:57:52
Certificate issuer: /CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Certificate serial: 019420680B37A9FBCE557463FD04CED2D117
Authority key identifier: 97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/GCT36J3n1OxX-WHPNyMOxT30V1I.roa
Signing time: Wed 01 Jan 2025 05:47:57 +0000
ROA not before: Wed 01 Jan 2025 05:47:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47943
IP address blocks: 2001:b18:1017::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:0b:37:a9:fb:ce:55:74:63:fd:04:ce:d2:d1:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Validity
Not Before: Jan 1 05:47:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1824f7e89de7d4ec57f961cf37230ec53df45752
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:70:26:be:7f:51:2b:64:a8:e6:15:a8:f2:8d:
c5:25:d3:11:34:45:c7:9f:60:93:60:71:35:22:cd:
d3:25:be:45:98:c3:3f:c5:e8:3a:c3:f6:9e:2e:88:
05:ec:64:49:a6:17:35:52:7b:aa:6b:d5:cb:fa:86:
14:23:9f:0b:24:b4:fe:6d:81:e9:31:ef:67:26:93:
e5:16:b4:27:6c:70:42:b5:06:d4:c4:ad:d6:e1:49:
34:11:bf:01:9f:55:20:a9:17:53:49:04:7f:cd:8b:
d2:ec:6f:cf:28:6b:1d:f2:2a:b2:56:7d:d9:0a:d4:
6e:de:83:61:9e:11:36:25:50:21:72:ff:10:49:41:
f0:26:e0:76:97:a9:e2:3b:f8:35:f8:70:a7:3a:5f:
c8:4b:5b:67:5a:37:90:46:aa:09:14:22:1a:43:fa:
41:98:37:8b:ec:53:a7:ea:bb:6c:b7:20:cf:bf:75:
c8:17:d6:47:ec:b4:a4:83:6c:0f:2e:fd:b2:6d:ec:
7b:ed:a8:6d:ad:a0:22:fe:d4:53:df:20:c9:f3:39:
ef:f0:83:93:4c:1d:26:c4:9c:a7:76:bc:7d:8c:0d:
33:f5:a6:b1:43:9e:94:bf:eb:b7:25:25:80:94:93:
78:f5:d2:d6:1a:48:68:6d:4a:22:26:27:19:09:1c:
c5:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:24:F7:E8:9D:E7:D4:EC:57:F9:61:CF:37:23:0E:C5:3D:F4:57:52
X509v3 Authority Key Identifier:
keyid:97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/GCT36J3n1OxX-WHPNyMOxT30V1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/l59cqMM_E0w8FX1IucKuTpG2ML8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:b18:1017::/48
Signature Algorithm: sha256WithRSAEncryption
b1:c8:53:c8:31:a4:62:5d:df:49:31:42:58:5d:62:58:06:6a:
89:df:74:69:24:93:08:31:72:81:98:1f:06:9d:63:47:fe:4f:
7e:66:44:3c:5a:df:23:88:9f:ea:b0:df:05:92:9f:83:b6:01:
96:cc:16:30:34:11:65:8f:06:96:d6:56:b3:aa:70:06:4f:18:
2d:6e:87:26:b0:27:20:f8:80:4e:55:8f:1f:b8:3b:64:60:58:
a3:45:a6:3a:72:61:37:bf:45:fb:bd:70:a3:01:98:34:c0:23:
51:c5:18:05:47:b6:fc:d1:b3:8b:e4:d1:08:2c:6b:d4:03:c9:
13:14:7d:54:70:47:5a:b9:a2:06:9e:db:bb:02:a6:f2:ea:25:
d9:24:a6:0b:ad:86:4b:65:88:49:4a:48:a7:24:5d:4c:0c:6e:
c4:98:82:f6:03:e7:c7:c1:3e:2f:b5:89:3f:f3:14:9d:d3:06:
28:28:22:eb:23:02:cc:81:81:85:28:97:80:fc:d9:5c:a4:7d:
04:60:9f:bb:92:0a:a1:03:0d:c4:12:68:60:f4:4e:8a:21:d4:
1b:fc:a2:db:3b:dc:ff:82:ba:ff:df:5b:b8:bc:05:10:a5:26:
9a:da:75:21:1a:49:25:54:ae:76:ca:ff:dd:31:e1:17:f2:4b:
5b:63:43:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 22:35:12 2025 by rpki-client