Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/6LCMHOba2q8-2oqgxP67oiUJWnc.roa
File: 6LCMHOba2q8-2oqgxP67oiUJWnc.roa (raw, json)
Hash identifier: Ky55ZrTF0CqwoR3PTNnNdnbxHSTW5lxp+VOunJCBXrM=
Subject key identifier: E8:B0:8C:1C:E6:DA:DA:AF:3E:DA:8A:A0:C4:FE:BB:A2:25:09:5A:77
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CB5EDC8E5E1A2E63D9DFD85E728E157C7
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/6LCMHOba2q8-2oqgxP67oiUJWnc.roa
Signing time: Fri 29 Dec 2023 14:15:08 +0000
ROA not before: Fri 29 Dec 2023 14:15:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b5:ed:c8:e5:e1:a2:e6:3d:9d:fd:85:e7:28:e1:57:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 29 14:15:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e8b08c1ce6dadaaf3eda8aa0c4febba225095a77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:0c:57:98:0a:96:4b:e0:69:d4:db:6e:fe:03:
41:7a:e8:25:e2:cf:a2:6d:23:a4:44:a6:52:bb:b2:
38:bd:02:b5:36:56:ee:aa:aa:f7:11:5b:08:59:23:
00:24:cb:7b:64:7a:87:84:f7:e3:f3:8f:fe:90:b3:
93:59:9b:33:8f:31:2f:47:fe:b1:38:e5:29:94:27:
53:d8:2d:a8:3a:e2:a1:ee:cf:08:f7:78:61:d1:cf:
74:a5:50:3f:7f:1c:b2:21:a3:0e:7e:ce:8a:50:d4:
0b:03:9e:7a:77:c1:5e:2c:5f:14:93:96:7d:72:fa:
df:b4:d8:dd:5e:1a:56:b1:21:ee:0d:be:57:ef:0b:
7f:0f:57:cf:42:61:e8:f1:c2:b6:58:8b:69:b3:41:
46:da:93:fe:86:72:fa:0a:12:60:69:c3:4f:b3:2c:
ed:d4:96:e8:bd:e9:6b:06:b0:a4:21:00:39:59:72:
34:31:74:90:39:42:43:93:94:e9:0f:63:5e:6f:2b:
03:a9:b1:24:7f:1a:51:0c:15:31:df:53:73:50:f5:
73:9d:b9:38:7a:9f:86:60:be:6b:3b:7b:e2:84:fa:
ed:0c:6f:fb:e4:61:ed:0a:17:21:0f:21:1c:ec:f2:
ee:85:ad:d8:19:5f:46:ae:06:ce:bb:b8:ed:46:3a:
af:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:B0:8C:1C:E6:DA:DA:AF:3E:DA:8A:A0:C4:FE:BB:A2:25:09:5A:77
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/6LCMHOba2q8-2oqgxP67oiUJWnc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
52:9a:83:06:b5:af:ba:7c:8f:5b:44:7e:43:4b:94:5b:70:ac:
f9:73:0b:d0:19:6e:0c:b6:2a:72:1f:eb:e4:45:99:56:06:5f:
d1:41:f7:1e:c5:27:d5:f9:60:d0:30:48:02:c7:c5:db:66:32:
2a:0e:50:b1:13:4e:43:8e:21:7b:22:77:48:3e:b4:a1:85:bf:
bf:f2:3f:bc:b8:37:e1:b3:2b:53:64:bf:34:5e:93:db:72:b2:
2e:60:32:66:2c:e9:9a:89:18:1c:20:84:f1:b0:15:19:7f:69:
15:ce:1c:a1:39:53:18:e9:9d:05:b8:b5:d4:8d:c4:cb:34:ee:
78:b2:99:6a:ff:65:96:f0:90:1e:b2:7f:55:33:f2:5b:07:ef:
fd:d6:6d:93:58:12:1a:6c:76:9b:14:dd:1d:d4:87:2f:a5:3a:
81:b8:7f:86:9c:75:0e:49:9e:ea:64:96:33:e4:23:d1:92:56:
95:62:a6:ff:99:27:d0:85:10:f1:08:31:b6:d0:0f:77:4d:ae:
7f:fb:70:68:93:fc:da:82:a7:20:0d:05:d2:65:61:d7:62:70:
8a:7a:cb:5c:0f:9a:be:0f:7e:5a:21:44:09:e7:b6:aa:82:4b:
a7:74:ca:8c:75:d2:e5:1a:52:df:1a:a2:9a:de:34:ca:e4:81:
85:ed:d2:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 18:00:37 2025 by rpki-client