Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/OWGg8PxLFh6NiiYXwxnJhaxrxt0.roa
File: OWGg8PxLFh6NiiYXwxnJhaxrxt0.roa (raw, json)
Hash identifier: qUx82vzhl5fuE+RSe9c8GAqDAHs/PWfUTRLFCDv6hgc=
Subject key identifier: 39:61:A0:F0:FC:4B:16:1E:8D:8A:26:17:C3:19:C9:85:AC:6B:C6:DD
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018D2DA60692B1E7E9B4939E3784F50C9C4B
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/OWGg8PxLFh6NiiYXwxnJhaxrxt0.roa
Signing time: Sun 21 Jan 2024 20:11:11 +0000
ROA not before: Sun 21 Jan 2024 20:11:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:2d:a6:06:92:b1:e7:e9:b4:93:9e:37:84:f5:0c:9c:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 21 20:11:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3961a0f0fc4b161e8d8a2617c319c985ac6bc6dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:ab:47:a3:ac:cf:dc:04:06:71:34:47:f0:38:
74:13:3c:13:31:38:fe:99:42:34:14:48:cd:c9:5c:
17:40:56:dd:aa:ab:5c:75:e3:6a:30:ac:fa:ac:d1:
0b:96:d2:92:fa:93:42:6c:16:f3:0d:a0:d0:15:c8:
57:89:ad:da:cb:c5:0a:37:af:39:0c:8e:b2:6f:49:
33:e5:b6:14:64:17:87:8a:cc:c9:ae:d7:41:e4:5a:
14:fd:00:cd:9c:1e:d5:aa:32:76:a2:37:f2:a4:5f:
7f:c8:42:1c:b6:7e:de:26:c2:10:aa:b5:90:b9:ab:
2f:c6:cb:bc:77:c0:ea:e6:67:93:0e:ac:7e:a6:46:
6c:27:2b:3f:7a:b4:f8:3a:cc:4b:a0:40:cb:6d:a8:
69:7c:13:56:0a:ce:f8:5a:fe:2a:db:c5:96:27:38:
73:d5:96:78:2b:4b:77:6c:4c:bc:46:64:22:3c:44:
aa:6f:dd:20:99:7a:06:6c:f7:97:7f:3d:0a:7a:da:
27:93:d3:de:2a:cb:d4:ac:28:fb:96:e5:91:bd:9a:
fd:f6:e6:4d:5a:fd:8e:57:66:bc:60:71:7d:20:74:
b3:f7:4e:6e:4f:1b:ff:c0:c1:65:70:9b:52:5b:f9:
61:63:02:62:d3:af:12:bf:95:1c:56:a4:3d:e8:4c:
89:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:61:A0:F0:FC:4B:16:1E:8D:8A:26:17:C3:19:C9:85:AC:6B:C6:DD
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/OWGg8PxLFh6NiiYXwxnJhaxrxt0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
5c:2c:c5:cc:9c:c5:2a:24:00:e0:b6:41:fc:98:60:42:ad:a6:
ab:fb:8b:20:cb:cf:80:89:d8:f6:d6:40:e3:6a:13:3d:64:31:
d9:fd:fe:af:f3:2d:82:02:09:73:1e:6e:cd:04:d6:42:97:5f:
2e:1c:00:38:81:da:44:8d:ab:4c:43:d2:59:69:aa:82:46:6d:
6f:fe:e3:49:45:2b:a5:29:5d:19:8e:f1:d4:2a:14:56:e5:0e:
a8:72:6b:e4:6f:05:f3:4d:7d:74:ef:39:c5:70:09:18:a7:69:
b1:6a:0e:fd:2d:41:e0:e5:17:d9:50:0f:10:c8:4f:f4:00:26:
9e:d9:32:3c:12:a1:14:4e:77:b2:45:26:82:66:e8:f7:1c:ea:
50:ac:60:cc:95:0b:3e:36:3b:8d:08:94:06:b9:03:d4:87:40:
57:a9:e7:41:d6:a9:6a:a5:e6:9b:20:b2:70:ff:e6:7b:af:f6:
9d:38:fb:5e:d3:3c:92:48:78:82:53:c5:47:bf:dd:5c:af:74:
b9:4d:9c:49:a5:2d:79:f8:40:e8:bd:5a:e3:fb:b4:36:ed:9f:
c0:e4:9d:b2:46:0c:61:29:4a:a3:38:e3:0b:e5:0d:fd:52:5d:
4c:9e:a5:15:5f:5b:f2:ef:f9:0a:45:3b:0e:0a:21:dd:c1:87:
fe:e8:b9:b9
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY0tpgaSsefptJOeN4T1DJxLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzYjNkYTNlY2I4YTdkNDMzZGUzODMzODY2N2IzNWU2OGRm
NzNmOGMwHhcNMjQwMTIxMjAxMTExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzOTYxYTBmMGZjNGIxNjFlOGQ4YTI2MTdjMzE5Yzk4NWFjNmJjNmRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiKtHo6zP3AQGcTRH8Dh0EzwTMTj+
mUI0FEjNyVwXQFbdqqtcdeNqMKz6rNELltKS+pNCbBbzDaDQFchXia3ay8UKN685
DI6yb0kz5bYUZBeHiszJrtdB5FoU/QDNnB7VqjJ2ojfypF9/yEIctn7eJsIQqrWQ
uasvxsu8d8Dq5meTDqx+pkZsJys/erT4OsxLoEDLbahpfBNWCs74Wv4q28WWJzhz
1ZZ4K0t3bEy8RmQiPESqb90gmXoGbPeXfz0Ketonk9PeKsvUrCj7luWRvZr99uZN
Wv2OV2a8YHF9IHSz905uTxv/wMFlcJtSW/lhYwJi068Sv5UcVqQ96EyJCwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFDlhoPD8SxYejYomF8MZyYWsa8bdMB8GA1UdIwQY
MBaAFNOz2j7Lin1DPeODOGZ7NeaN9z+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODct
YzUzOTc5ZDY2Y2E1LzEvT1dHZzhQeExGaDZOaWlZWHd4bkpoYXhyeHQwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODctYzUzOTc5ZDY2Y2E1
LzEvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAFwsxcycxSokAOC2QfyY
YEKtpqv7iyDLz4CJ2PbWQONqEz1kMdn9/q/zLYICCXMebs0E1kKXXy4cADiB2kSN
q0xD0llpqoJGbW/+40lFK6UpXRmO8dQqFFblDqhya+RvBfNNfXTvOcVwCRinabFq
Dv0tQeDlF9lQDxDIT/QAJp7ZMjwSoRROd7JFJoJm6Pcc6lCsYMyVCz42O40IlAa5
A9SHQFep50HWqWql5psgsnD/5nuv9p04+17TPJJIeIJTxUe/3VyvdLlNnEmlLXn4
QOi9WuP7tDbtn8DknbJGDGEpSqM44wvlDf1SXUyepRVfW/Lv+QpFOw4KId3Bh/7o
ubk=
-----END CERTIFICATE-----
Generated at Sat Apr 19 15:15:31 2025 by rpki-client