Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/LryjAYvpJvjYsFEH9Fw-oZs7qcI.roa
File: LryjAYvpJvjYsFEH9Fw-oZs7qcI.roa (raw, json)
Hash identifier: dcNp2mWE3ntIZ2QGGvoKh/9E7OFYoWIl9E4s2qSuLCo=
Subject key identifier: 2E:BC:A3:01:8B:E9:26:F8:D8:B0:51:07:F4:5C:3E:A1:9B:3B:A9:C2
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CA008C40E01BE3A4AD0838FD0AEC42B10
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/LryjAYvpJvjYsFEH9Fw-oZs7qcI.roa
Signing time: Mon 25 Dec 2023 08:12:58 +0000
ROA not before: Mon 25 Dec 2023 08:12:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:a0:08:c4:0e:01:be:3a:4a:d0:83:8f:d0:ae:c4:2b:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 25 08:12:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2ebca3018be926f8d8b05107f45c3ea19b3ba9c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ff:75:4f:47:fc:9d:48:7a:6e:19:07:25:b2:
16:50:e8:1b:6e:1c:8a:0c:e2:f0:7d:9c:3a:f8:db:
c6:ff:15:a7:92:9a:8e:15:e7:9c:5a:bd:74:d0:1a:
c8:57:21:76:ce:d6:34:f8:67:56:b9:94:04:94:44:
a8:cb:ae:11:65:11:62:cc:e6:fd:b0:c9:ef:e9:6d:
48:61:e1:43:12:24:12:4b:08:c1:cf:9f:09:f2:ff:
60:29:1e:82:5a:5b:33:27:ba:3c:63:95:8f:ee:4f:
28:c2:41:c7:d3:a0:f1:6c:8d:b4:7b:49:36:f0:e5:
2a:6d:de:87:21:db:f5:80:e9:ed:4a:19:c0:78:95:
04:b4:6b:c9:29:92:f0:84:31:36:38:7f:f2:ae:14:
7c:8e:68:8a:24:84:6c:89:6c:67:de:db:db:08:bc:
b1:b5:5e:da:5f:6d:dc:ed:fa:63:26:c8:26:22:a6:
ed:12:7c:25:e4:39:62:ed:14:61:d5:39:66:dc:12:
97:4c:d1:14:a1:a0:32:c6:9a:28:3b:51:ed:f5:39:
87:00:57:3b:df:7b:df:c4:f1:8a:eb:af:21:f3:82:
fa:61:7b:d4:db:53:15:01:77:d7:bb:99:36:83:6b:
08:9f:08:87:9d:d3:d2:d0:36:23:60:c0:a2:f2:85:
b9:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:BC:A3:01:8B:E9:26:F8:D8:B0:51:07:F4:5C:3E:A1:9B:3B:A9:C2
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/LryjAYvpJvjYsFEH9Fw-oZs7qcI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
5d:ee:c9:13:61:d5:3d:f4:da:03:87:f8:8a:fc:1d:cd:d7:be:
77:51:ae:86:65:9a:be:7f:17:8a:c8:2e:04:51:e2:4c:94:ed:
7d:06:83:fb:cf:e1:d0:d2:b4:c0:39:a0:13:ad:95:fd:5e:c0:
c1:b0:ef:f3:81:24:dd:53:e8:5c:92:79:10:56:b5:38:9a:4e:
a5:37:9f:9f:37:1a:c0:0a:cf:70:55:9e:22:8e:cc:41:02:93:
e8:6e:47:5d:71:18:e3:bb:e5:2f:57:b1:e3:73:ad:b9:76:1c:
fb:c5:dd:09:6e:b7:e0:e4:d3:97:de:e7:e0:a3:61:f0:f7:95:
f2:e0:b7:8f:02:33:23:78:31:ef:5b:15:e1:89:12:7d:29:53:
76:20:b0:3c:d3:ff:78:be:b7:de:71:f4:ca:95:0f:2e:ac:d9:
68:93:fa:fe:4b:36:72:cd:21:32:e0:9e:50:fc:82:2f:f3:b3:
91:6c:c9:e6:b9:63:ba:4f:cb:e7:2f:07:8a:ab:c2:25:8d:e3:
09:9f:9a:62:4a:78:7a:9c:18:17:d3:d7:94:65:60:76:11:28:
dd:6f:84:26:13:ea:e3:85:95:9b:28:ac:7f:b9:0c:30:56:bc:
95:b3:b6:1b:cf:69:64:c9:c9:af:a4:fd:7c:db:d7:f1:33:a4:
62:ce:cf:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:41:10 2025 by rpki-client