Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/7VmVO8-z0f8UHozt3lU-tzdQytE.roa
File: 7VmVO8-z0f8UHozt3lU-tzdQytE.roa (raw, json)
Hash identifier: ubJdAAoEYD4IcB/OD0eSoZUqCg1XFSAGBTn1TU0gnyQ=
Subject key identifier: ED:59:95:3B:CF:B3:D1:FF:14:1E:8C:ED:DE:55:3E:B7:37:50:CA:D1
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CC596B8787BE2E52429D30FF194FF2982
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/7VmVO8-z0f8UHozt3lU-tzdQytE.roa
Signing time: Mon 01 Jan 2024 15:13:58 +0000
ROA not before: Mon 01 Jan 2024 15:13:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:96:b8:78:7b:e2:e5:24:29:d3:0f:f1:94:ff:29:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 1 15:13:58 2024 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ed59953bcfb3d1ff141e8cedde553eb73750cad1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:91:84:45:0c:1c:59:96:29:43:cc:f1:0e:86:
fa:c9:1b:c7:55:d2:64:eb:91:04:b6:40:3d:6e:83:
98:bf:4c:59:76:8a:3a:81:78:54:2a:66:4c:af:ac:
99:37:81:c8:a5:c5:f1:b7:00:98:12:e6:f4:65:50:
d2:a2:29:af:d3:18:d5:97:7b:73:db:4c:0f:ba:4e:
66:a5:c3:08:2c:69:65:f6:e5:4d:c4:fa:7b:07:a6:
83:90:ee:67:0e:81:3e:a7:20:63:32:41:5e:e3:50:
ec:f4:02:99:51:85:c2:1d:e3:6c:0a:f9:b4:48:c3:
ac:6c:50:d1:6a:c4:45:1d:2d:f9:45:33:f0:2f:38:
d2:42:c2:a4:48:c0:76:0c:72:d0:31:8e:2b:06:ca:
a6:7b:f8:b7:71:83:db:c4:3c:e7:6a:dd:81:fe:2c:
7c:a6:23:28:4f:dc:59:c5:b2:aa:60:d3:64:c1:f4:
0d:b5:17:cd:df:ad:31:01:c0:73:c6:ca:d1:2d:63:
5b:3f:3b:a2:7e:93:1c:7d:f7:6a:2d:ec:cf:0d:97:
db:6c:9b:b3:65:33:4e:0d:b7:a7:4a:56:9f:ad:5c:
51:f1:c8:d5:f8:04:1a:d7:3a:47:b9:a9:d2:1a:a6:
c9:79:4b:93:10:57:12:24:7a:0a:80:71:53:5d:51:
13:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:59:95:3B:CF:B3:D1:FF:14:1E:8C:ED:DE:55:3E:B7:37:50:CA:D1
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/7VmVO8-z0f8UHozt3lU-tzdQytE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
77:7d:8f:11:66:ae:26:58:db:0b:2c:1a:b4:6e:df:ad:50:a8:
f1:28:d3:59:36:d9:4a:3c:e9:0f:0c:74:21:0d:29:04:3e:35:
61:f2:a8:f5:6b:d1:0a:9c:a1:0c:97:31:e3:8d:e5:92:ac:e2:
c2:f9:ee:5d:b9:cf:88:b3:ff:6e:ee:e0:b1:87:0d:bc:7d:63:
40:92:00:e8:04:b3:16:59:c9:9e:a6:b9:3c:b0:8e:74:48:0c:
95:9a:21:2c:a5:10:7f:12:5b:4d:76:9b:7d:91:99:8f:ef:83:
89:07:36:30:d9:06:2a:a5:62:a1:e1:d7:39:e0:8f:e2:b2:b6:
2f:f9:bb:52:f2:62:df:d8:e3:1c:94:5c:97:d2:61:32:aa:9b:
c9:82:34:1a:24:3d:6c:e3:ae:70:5a:c8:c6:03:30:47:96:5f:
53:51:70:c8:06:d7:6c:cf:9e:1e:7c:81:e4:d7:b1:01:40:71:
48:f7:fa:00:c0:99:d6:c3:9d:9f:6a:57:d4:7c:0f:2d:dd:55:
48:52:97:36:bc:ad:95:c1:df:0f:d7:5b:f6:89:d3:e6:ab:5a:
8d:ab:b8:72:a5:09:8f:ab:73:e1:d2:39:6a:fd:fc:d8:77:91:
69:da:be:34:13:64:56:37:60:a1:96:eb:e3:72:cf:43:ec:3e:
92:fc:0a:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:55:42 2025 by rpki-client