Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/9UmrzUzegGoAVrK1VUJ4V-X0O2k.roa
File: 9UmrzUzegGoAVrK1VUJ4V-X0O2k.roa (raw, json)
Hash identifier: 5pIaTF51GSy6gxxn01TwMsC3zdQTugpSNYvBjT2ejkA=
Subject key identifier: F5:49:AB:CD:4C:DE:80:6A:00:56:B2:B5:55:42:78:57:E5:F4:3B:69
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018D0EBF64E4905EA07198BC510758CDA28C
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/9UmrzUzegGoAVrK1VUJ4V-X0O2k.roa
Signing time: Mon 15 Jan 2024 20:10:40 +0000
ROA not before: Mon 15 Jan 2024 20:10:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:0e:bf:64:e4:90:5e:a0:71:98:bc:51:07:58:cd:a2:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 15 20:10:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f549abcd4cde806a0056b2b555427857e5f43b69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:48:e3:c4:ba:85:dc:bd:ee:b4:8b:18:92:9d:
a7:1b:25:5b:46:5b:c2:87:12:f9:75:63:57:4f:88:
b2:79:bf:74:d0:59:7d:db:64:84:45:15:62:93:2e:
fe:1c:7b:27:fd:a3:5c:91:4f:9d:3d:11:c3:73:61:
23:30:c7:5f:8d:28:ee:a3:d4:1d:02:04:b9:c0:d8:
11:0f:dc:a2:74:4f:5b:d1:93:db:c7:e7:f6:be:e0:
e7:93:e3:59:f7:de:eb:9e:d8:74:52:ac:97:ae:ea:
cb:ee:d4:ad:26:8a:15:e8:d2:81:b9:5f:d2:01:01:
98:f7:a5:f0:b3:b0:da:dd:f9:7e:34:e7:c9:31:35:
83:67:39:4c:98:9f:fd:8b:97:82:5e:80:03:02:7f:
a6:8c:09:55:92:d2:f7:f5:54:e1:ee:a7:9f:5e:ce:
ec:be:28:10:c2:0f:cf:94:02:d8:f3:21:9b:15:5a:
c0:e1:42:3d:b8:e4:d7:1f:56:d9:77:4e:b3:14:4d:
98:77:24:d5:9c:b3:ac:3e:fe:cd:c2:8a:6b:2a:3b:
14:35:61:1c:86:68:21:32:45:b2:0c:fa:b2:27:3d:
43:e4:f7:06:e1:09:d5:60:a2:00:d2:d1:be:73:c8:
3d:c0:ac:dd:b4:93:74:0b:0b:7d:60:f5:36:83:0e:
86:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:49:AB:CD:4C:DE:80:6A:00:56:B2:B5:55:42:78:57:E5:F4:3B:69
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/9UmrzUzegGoAVrK1VUJ4V-X0O2k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
32:49:c7:c3:3a:03:d3:9f:ea:f4:a8:db:7d:e1:64:99:c2:22:
13:41:29:61:01:3a:1f:b5:a6:42:89:e9:2a:df:13:37:9b:f8:
3a:c7:bc:fd:e2:93:c3:6a:9a:c6:18:36:60:cb:cf:c7:96:c8:
3b:45:11:48:9a:ba:7f:e6:5d:84:90:74:18:71:9e:70:5b:1b:
c7:e4:fc:5f:87:a6:b4:ee:64:91:1f:29:b4:a8:31:2c:fd:87:
0a:0d:6b:9d:e8:98:a5:0e:57:a8:8b:ac:a9:04:82:69:12:7c:
0c:7c:4d:ec:ce:ad:bb:75:67:7b:ea:ab:02:d7:27:ab:50:5c:
3d:36:a0:70:10:6c:78:9e:48:b9:4f:01:0e:b1:df:a6:1f:d7:
17:53:93:2d:21:00:20:bd:a5:2a:6a:57:79:d8:fe:30:b4:f8:
7b:c2:ec:12:c7:07:17:4a:cc:1c:52:41:d7:5d:51:59:20:0d:
d6:f5:3a:bc:9f:02:0b:bf:42:36:bd:4d:b6:39:81:f6:d6:87:
b8:5a:b3:56:4f:9d:a9:3f:0b:8e:11:3a:2c:10:64:06:c0:c1:
d3:59:25:e6:19:49:f4:fa:d8:aa:fe:90:32:26:c9:7a:f4:ef:
13:7a:b1:f3:af:a9:05:f6:da:57:64:aa:e3:e7:3b:9a:14:cf:
04:aa:63:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 15:12:15 2025 by rpki-client