Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/5O0GwQfA1N2LquTl_uJLKS_mt0E.roa
File: 5O0GwQfA1N2LquTl_uJLKS_mt0E.roa (raw, json)
Hash identifier: /xZan37B8be4P8ZqOQXI1R62SYn7aVuZYcn2nralM68=
Subject key identifier: E4:ED:06:C1:07:C0:D4:DD:8B:AA:E4:E5:FE:E2:4B:29:2F:E6:B7:41
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CB169504E3D4A8B0829A3A98E84774FED
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/5O0GwQfA1N2LquTl_uJLKS_mt0E.roa
Signing time: Thu 28 Dec 2023 17:11:58 +0000
ROA not before: Thu 28 Dec 2023 17:11:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b1:69:50:4e:3d:4a:8b:08:29:a3:a9:8e:84:77:4f:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 28 17:11:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e4ed06c107c0d4dd8baae4e5fee24b292fe6b741
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:e9:d7:f3:8e:c0:2c:2f:3d:dc:c3:25:f4:03:
89:e3:78:71:88:ca:0f:95:e8:44:81:13:ba:d4:29:
b2:7b:bb:6b:a7:3c:5e:d5:e9:94:bb:62:c8:f9:d6:
00:67:5f:54:59:8c:ca:8b:c4:86:0f:31:7f:cf:c8:
44:b8:92:a5:7c:d3:6b:85:fc:d3:0e:7f:61:11:4e:
f9:f6:69:5d:2d:b5:c8:6c:89:07:05:bd:c7:3b:8f:
48:76:e6:0b:9d:e0:1d:53:a6:9a:bc:7e:77:2d:3a:
20:a8:d8:73:94:5a:3e:dd:17:63:b8:2d:bc:f1:78:
e6:3b:73:1f:34:23:99:94:50:ff:5c:b6:e2:65:a4:
75:61:59:1c:21:c1:69:6d:d0:65:7d:12:dc:6b:1a:
8f:ee:56:69:a7:12:9b:8d:79:0c:2b:05:fb:6f:7e:
83:3a:dc:fe:a0:2a:d5:0c:3f:b1:39:56:5d:8c:ac:
d2:31:07:51:ae:94:13:7c:a7:9f:fc:16:3c:49:12:
9b:04:87:82:41:c9:31:eb:f9:c3:36:22:d1:94:c7:
63:9c:61:20:09:ed:ad:7b:b9:4f:be:1c:25:85:90:
0f:60:a2:17:66:f0:35:f6:f5:83:bc:f2:9d:99:90:
fb:0c:1a:45:73:ce:d6:ed:3c:09:a3:65:8f:5a:03:
21:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:ED:06:C1:07:C0:D4:DD:8B:AA:E4:E5:FE:E2:4B:29:2F:E6:B7:41
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/5O0GwQfA1N2LquTl_uJLKS_mt0E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
7e:f7:67:7c:06:13:0c:75:7f:03:9d:b5:6b:67:c2:3d:18:a0:
99:db:49:2a:60:c1:e6:b6:c2:7e:ab:a7:95:74:96:ab:0a:5a:
86:d9:13:85:83:10:f5:2f:a0:b3:73:c0:f3:86:93:6c:60:9f:
52:0c:0d:b5:fb:51:78:e5:c4:e9:28:34:a2:a5:f9:18:79:4a:
e9:1b:bf:95:52:50:ed:4a:1f:68:56:5d:7b:50:6b:a8:4d:83:
1c:7e:4b:e4:35:cb:7f:f7:53:a0:db:17:50:39:2d:bc:57:37:
43:b0:37:96:44:d2:a6:e2:d3:8b:29:59:b6:3f:66:86:7c:aa:
8e:a4:90:74:80:92:74:1e:38:82:af:22:91:0d:9d:44:b3:dc:
10:69:6c:b1:a7:12:1f:5c:03:88:1a:60:77:54:29:74:2d:8d:
79:cc:55:84:4c:5b:41:ec:99:14:3d:07:8a:6b:c9:b2:6b:26:
75:c0:ec:c6:b5:86:83:f5:a6:56:b5:ab:a6:6f:a3:a9:44:88:
cd:db:27:8e:5c:0a:2e:f6:67:c5:61:c8:78:67:c2:9d:47:d6:
78:3a:32:06:4d:df:68:30:d1:2b:44:b8:f5:6a:a7:d0:e9:7e:
fd:80:9a:65:89:5c:a7:31:f9:1c:be:7e:e8:3e:e0:68:4f:b6:
eb:c5:86:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:41:15 2025 by rpki-client