Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/dpryryVtXPmtr0a_Hy09Lo57uB8.roa
File: dpryryVtXPmtr0a_Hy09Lo57uB8.roa (raw, json)
Hash identifier: k4FgYQJhY/y7veu0BPRx9YymwwajhGDjATTuFIB+kTA=
Subject key identifier: 76:9A:F2:AF:25:6D:5C:F9:AD:AF:46:BF:1F:2D:3D:2E:8E:7B:B8:1F
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F1486C98088FDA9935FD07613942BE958
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/dpryryVtXPmtr0a_Hy09Lo57uB8.roa
Signing time: Thu 25 Apr 2024 09:12:08 +0000
ROA not before: Thu 25 Apr 2024 09:12:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:18f:543:9e41/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:14:86:c9:80:88:fd:a9:93:5f:d0:76:13:94:2b:e9:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: Apr 25 09:12:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=769af2af256d5cf9adaf46bf1f2d3d2e8e7bb81f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:74:54:fa:ac:2c:47:45:43:6a:7e:9e:34:24:
d7:f9:c4:6d:d4:e3:1b:1f:46:c7:7e:bc:70:e5:87:
8e:91:42:80:e0:b3:11:62:6e:6a:9d:ab:50:ac:8d:
33:e9:00:84:3a:fc:ee:47:69:61:60:07:93:72:cf:
92:91:8a:8e:1a:ef:62:f7:80:38:c3:0b:29:36:de:
2f:bf:7c:b5:f1:21:99:2b:8d:b7:e0:f8:af:a1:00:
20:f2:f6:95:bc:52:74:0f:b9:ba:d7:73:2d:07:10:
99:3c:f9:c4:d3:e4:97:da:f9:57:10:be:97:bb:c8:
e7:a7:e1:2b:10:13:3c:5e:e6:b0:20:a7:55:30:d0:
51:89:23:56:97:c4:53:40:f4:b2:42:f8:b7:19:9b:
c5:95:8a:93:26:b5:67:62:91:e7:0e:01:75:92:25:
bb:21:76:14:05:97:82:aa:f5:47:11:fe:6e:27:f8:
bf:da:c7:57:0c:3b:b3:35:24:48:ab:66:99:74:d4:
2c:02:ce:8a:09:4c:bb:3e:97:4f:31:83:57:ac:82:
cf:11:ff:af:dc:07:b7:1e:37:20:93:31:37:db:2c:
1c:6e:73:4f:b1:95:54:54:79:09:1e:d1:ff:dd:7e:
9e:c2:fa:2a:d3:21:3c:ef:90:f1:bd:42:8f:b4:6a:
00:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:9A:F2:AF:25:6D:5C:F9:AD:AF:46:BF:1F:2D:3D:2E:8E:7B:B8:1F
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/dpryryVtXPmtr0a_Hy09Lo57uB8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64:ffff:0:18f:543:9e41/128
Signature Algorithm: sha256WithRSAEncryption
c6:c1:52:2e:fe:11:75:05:be:56:4c:1b:ef:8d:3a:64:1e:fb:
c8:c4:30:7e:d2:79:43:cd:76:6c:fa:58:32:bb:e2:1d:56:ae:
ff:05:33:d8:ef:23:ea:cf:60:21:a3:55:1d:03:80:fc:c6:45:
02:fa:7a:58:15:bb:1a:3d:5a:a2:90:0b:90:3c:b1:e6:af:ab:
be:ca:9c:b5:18:48:a2:ff:e3:83:9a:d6:f8:46:b6:4d:dd:b4:
46:82:0e:14:c2:16:bc:02:cc:ea:0e:f6:2d:34:e5:a1:16:07:
66:0d:66:02:fd:13:52:32:17:b3:bf:4e:b6:8c:3b:82:38:5c:
42:c4:d1:86:24:ba:b8:db:43:89:13:9c:6d:22:c6:5e:d4:ac:
f3:c4:db:1f:41:a8:d2:85:ff:76:5d:3f:56:7c:85:a8:4e:7f:
04:1c:ec:07:e7:1e:b5:54:d9:05:ac:0f:1f:24:d7:9a:38:49:
80:cc:21:ae:ee:c8:67:ef:db:85:62:60:94:7f:91:7e:a2:1d:
1a:51:3e:d9:0d:31:a4:73:8a:b4:1b:bc:a5:57:90:ad:66:ff:
6c:3d:66:4e:ca:5f:88:43:51:d1:ec:5d:83:11:d2:c6:a2:d1:
fc:ff:d0:d3:88:e7:e4:6e:32:de:f5:d8:28:64:4b:19:b0:f5:
c5:fb:e9:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 14:48:42 2025 by rpki-client