Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/RrDWUHlTbJemTmJy__7ITlvPbHQ.roa
File: RrDWUHlTbJemTmJy__7ITlvPbHQ.roa (raw, json)
Hash identifier: 9+CWZFLHovzbsV0ex6jTFafnRFikUz7ofMEMt2dICXg=
Subject key identifier: 46:B0:D6:50:79:53:6C:97:A6:4E:62:72:FF:FE:C8:4E:5B:CF:6C:74
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CC295AD85E07B405E1B5D9A5DF534373A
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/RrDWUHlTbJemTmJy__7ITlvPbHQ.roa
Signing time: Mon 01 Jan 2024 01:13:58 +0000
ROA not before: Mon 01 Jan 2024 01:13:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:95:ad:85:e0:7b:40:5e:1b:5d:9a:5d:f5:34:37:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 1 01:13:58 2024 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=46b0d65079536c97a64e6272fffec84e5bcf6c74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:fd:db:b2:39:43:85:14:bd:a7:a7:97:44:11:
00:c7:b2:3f:33:d7:6e:ae:ba:3c:fc:bd:87:8b:cd:
cb:18:6b:fc:a0:ec:03:cf:78:56:e9:ed:b9:5d:1c:
76:c7:fb:55:14:29:70:c9:cf:00:d4:ff:15:84:78:
28:45:13:3e:2a:a2:a1:82:e3:9b:0d:29:97:e6:6c:
ee:16:ed:64:df:3f:63:49:86:1e:c4:c4:5d:bb:b6:
9c:23:f6:fd:fa:ee:ea:35:3f:87:ab:62:79:64:cb:
c2:a7:9b:bc:81:b3:9b:eb:23:4c:19:bc:94:0b:c7:
95:73:41:ee:1e:03:65:7e:ff:13:d2:b7:48:85:ee:
16:ba:a6:16:9e:f0:28:83:11:90:ab:a8:1c:af:db:
c3:29:dc:1e:84:8d:59:54:33:94:ff:fb:8d:e9:39:
ee:2a:80:a0:d3:f1:fe:f2:a4:28:fd:b1:a1:3b:c8:
aa:64:bb:97:84:62:9a:25:8b:b5:90:7c:40:da:54:
9f:74:98:19:27:8a:b8:ba:41:e8:76:d2:f2:b8:83:
13:aa:3c:54:97:9c:e8:4d:15:c6:49:4a:e0:7a:a2:
4e:79:c1:a6:5c:0e:e9:a9:3f:47:17:f8:bd:b1:9b:
c8:cb:62:bc:f2:43:76:b3:03:de:91:3a:05:1d:3e:
43:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:B0:D6:50:79:53:6C:97:A6:4E:62:72:FF:FE:C8:4E:5B:CF:6C:74
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/RrDWUHlTbJemTmJy__7ITlvPbHQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
2f:a2:03:45:48:02:8d:b7:b4:bd:89:1d:c4:f9:59:30:cc:74:
74:3f:6c:02:0b:f9:aa:7f:07:88:f2:f1:45:cc:af:d9:f1:05:
c2:e7:ff:24:e8:dc:39:cb:d7:be:92:db:30:10:f0:af:f5:ce:
24:49:b2:ec:91:6e:6f:8c:ec:99:bc:3e:0d:69:72:e0:7f:6a:
ff:7c:62:19:45:6b:2f:d5:b8:d8:ae:3d:0c:64:e4:e4:dd:85:
6e:33:c1:6f:93:9f:c6:26:15:29:fe:48:e9:04:59:eb:8a:c3:
7d:e7:91:be:dd:57:db:00:5b:27:82:72:f5:3d:58:80:b0:dc:
d3:ef:a3:e1:1c:98:1b:c2:83:48:4c:ff:6b:21:dc:ab:97:99:
22:48:b2:cc:99:17:cf:67:bc:2c:fc:c8:83:3f:65:55:37:38:
63:55:e4:97:4c:57:bd:50:5e:58:ca:5f:87:27:9d:f0:c2:93:
e1:2d:74:bd:d3:e1:7c:dc:fb:92:48:42:1d:37:d7:8e:18:95:
91:6b:9d:1a:9d:57:ca:23:25:60:b2:df:ee:a9:9c:9d:1b:20:
61:0c:03:1d:12:53:03:db:59:11:d4:dd:79:12:d4:23:3f:21:
b5:7c:b5:7c:98:96:04:7b:26:22:1b:d9:56:79:17:a0:43:d8:
35:d7:36:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 15:22:54 2025 by rpki-client