Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/J-k4iv_9WzMNx9TfYfQauD5IjOY.roa
File: J-k4iv_9WzMNx9TfYfQauD5IjOY.roa (raw, json)
Hash identifier: Cc8PBQnGD2VLHl0ny40ZnsLXwXDCM6AYDOEI4THTNfM=
Subject key identifier: 27:E9:38:8A:FF:FD:5B:33:0D:C7:D4:DF:61:F4:1A:B8:3E:48:8C:E6
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018C87937933F7271F279C6298E34779D19C
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/J-k4iv_9WzMNx9TfYfQauD5IjOY.roa
Signing time: Wed 20 Dec 2023 14:13:58 +0000
ROA not before: Wed 20 Dec 2023 14:13:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:87:93:79:33:f7:27:1f:27:9c:62:98:e3:47:79:d1:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 20 14:13:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=27e9388afffd5b330dc7d4df61f41ab83e488ce6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:2f:0e:e3:86:7f:84:fb:11:87:bf:0b:4d:25:
4c:6a:13:42:8c:6e:34:b0:2a:20:ce:a5:59:22:d1:
dc:f0:f6:92:52:ad:9d:c0:ee:24:bf:a6:4e:72:96:
14:38:ad:59:1b:2d:02:ae:ba:29:32:d3:3f:12:ef:
0b:99:57:fa:0b:95:2e:02:d6:86:9c:bc:38:81:f7:
be:06:ee:a9:1c:9b:37:fd:08:16:c1:a7:04:0b:cb:
a5:ab:64:f5:ed:43:30:ee:20:ad:09:84:9f:c5:16:
3a:12:2d:ee:6f:91:4b:78:00:3a:ef:46:f8:ba:c9:
0e:98:a7:90:cc:06:6d:c1:09:cd:52:55:0a:88:fc:
1d:2b:18:a2:8e:97:e4:c0:cf:36:35:d0:bb:e8:d1:
0e:99:ad:0f:fa:10:52:11:52:e6:d5:41:18:8a:a1:
1a:54:2a:c6:d4:e2:8f:fe:5a:23:b0:03:0d:ac:eb:
21:e8:dc:5d:7f:cb:db:be:91:12:a1:fb:f4:49:c5:
79:07:1a:fe:19:25:da:b1:18:0a:23:8a:77:fe:78:
eb:ef:9e:34:c8:4a:c1:10:67:ad:03:70:c2:ac:f2:
69:28:a1:48:b1:89:e8:b3:9f:7c:5c:fa:8c:af:a0:
9c:4e:b7:f2:29:0a:87:9a:be:03:be:c9:5b:c7:e9:
72:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:E9:38:8A:FF:FD:5B:33:0D:C7:D4:DF:61:F4:1A:B8:3E:48:8C:E6
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/J-k4iv_9WzMNx9TfYfQauD5IjOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
5d:39:ac:bc:fb:77:87:92:e6:a9:6d:ad:69:da:75:25:20:59:
c0:b8:f5:9f:e8:d3:28:8b:4d:27:4b:18:e5:63:83:44:ce:c3:
c3:97:f7:25:c1:30:98:c9:19:32:1e:69:e6:72:69:69:d2:80:
2d:5e:57:b7:72:aa:c3:ec:ab:c6:b3:d8:18:68:93:c4:56:47:
70:e1:b7:ad:5b:09:ca:89:7b:de:05:e4:3a:c5:21:34:b8:2a:
32:84:ad:8a:52:e6:00:94:42:49:23:4b:a4:32:0d:9d:66:e3:
f1:fc:99:86:a5:7d:8a:3f:aa:06:f0:65:71:17:7f:0a:00:67:
cd:23:2c:e0:ba:d5:5d:8b:9a:8e:02:d4:f8:7c:93:04:ab:c7:
76:42:b8:ff:9a:46:98:2b:97:52:7b:a7:ec:69:3d:03:4c:53:
f4:f1:89:40:28:b6:1c:a4:2a:b1:69:e3:63:55:e6:f9:c2:2e:
09:7d:2c:96:39:5f:24:b3:04:9e:8c:e2:2f:9a:26:34:9e:98:
9c:e6:f4:2c:19:a5:aa:24:dd:b9:f2:2f:a0:fa:db:11:56:a6:
c2:b5:b4:58:da:eb:8b:1b:7d:50:36:59:d7:5c:75:1e:4f:96:
63:24:e2:86:c4:0d:c3:93:0e:36:6d:82:91:aa:c9:e8:d2:3a:
0e:02:9f:c4
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYyHk3kz9ycfJ5ximONHedGcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzYjNkYTNlY2I4YTdkNDMzZGUzODMzODY2N2IzNWU2OGRm
NzNmOGMwHhcNMjMxMjIwMTQxMzU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyN2U5Mzg4YWZmZmQ1YjMzMGRjN2Q0ZGY2MWY0MWFiODNlNDg4Y2U2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1S8O44Z/hPsRh78LTSVMahNCjG40
sCogzqVZItHc8PaSUq2dwO4kv6ZOcpYUOK1ZGy0CrropMtM/Eu8LmVf6C5UuAtaG
nLw4gfe+Bu6pHJs3/QgWwacEC8ulq2T17UMw7iCtCYSfxRY6Ei3ub5FLeAA670b4
uskOmKeQzAZtwQnNUlUKiPwdKxiijpfkwM82NdC76NEOma0P+hBSEVLm1UEYiqEa
VCrG1OKP/lojsAMNrOsh6Nxdf8vbvpESofv0ScV5Bxr+GSXasRgKI4p3/njr7540
yErBEGetA3DCrPJpKKFIsYnos598XPqMr6CcTrfyKQqHmr4Dvslbx+lyOQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFCfpOIr//VszDcfU32H0Grg+SIzmMB8GA1UdIwQY
MBaAFNOz2j7Lin1DPeODOGZ7NeaN9z+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODct
YzUzOTc5ZDY2Y2E1LzEvSi1rNGl2XzlXek1OeDlUZllmUWF1RDVJak9ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODctYzUzOTc5ZDY2Y2E1
LzEvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAF05rLz7d4eS5qltrWna
dSUgWcC49Z/o0yiLTSdLGOVjg0TOw8OX9yXBMJjJGTIeaeZyaWnSgC1eV7dyqsPs
q8az2Bhok8RWR3Dht61bCcqJe94F5DrFITS4KjKErYpS5gCUQkkjS6QyDZ1m4/H8
mYalfYo/qgbwZXEXfwoAZ80jLOC61V2Lmo4C1Ph8kwSrx3ZCuP+aRpgrl1J7p+xp
PQNMU/TxiUAothykKrFp42NV5vnCLgl9LJY5XySzBJ6M4i+aJjSemJzm9CwZpaok
3bnyL6D62xFWpsK1tFja64sbfVA2WddcdR5PlmMk4obEDcOTDjZtgpGqyejSOg4C
n8Q=
-----END CERTIFICATE-----
Generated at Sat Apr 19 15:19:11 2025 by rpki-client