Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/V5NinzTLLjnzt947pJeBV6PbZnU.roa
File: V5NinzTLLjnzt947pJeBV6PbZnU.roa (raw, json)
Hash identifier: 1CukIP3SFxVC5uPMrbOfkUQj4ureaBenCke+RxbZP0k=
Subject key identifier: 57:93:62:9F:34:CB:2E:39:F3:B7:DE:3B:A4:97:81:57:A3:DB:66:75
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CC603AAE7CA7896D40AA31E27C04DE933
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/V5NinzTLLjnzt947pJeBV6PbZnU.roa
Signing time: Mon 01 Jan 2024 17:12:58 +0000
ROA not before: Mon 01 Jan 2024 17:12:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:03:aa:e7:ca:78:96:d4:0a:a3:1e:27:c0:4d:e9:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 1 17:12:58 2024 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5793629f34cb2e39f3b7de3ba4978157a3db6675
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:af:ed:ce:ae:f6:a3:d3:24:2e:a3:ad:4c:39:
44:94:f0:ab:18:52:50:89:1f:b9:8d:83:7f:3c:4a:
45:26:d2:bc:cf:2f:b0:64:9f:0e:3e:79:a2:36:6f:
20:04:94:c9:07:e1:f1:1d:2e:d6:98:6a:7d:52:95:
80:92:21:b6:66:c1:17:e1:24:02:0e:11:72:a1:d7:
be:07:4b:3f:75:c8:a3:58:c3:61:b6:dd:21:e2:16:
f6:5a:0f:59:12:9a:b3:6a:7b:7f:e1:0a:ed:0c:bb:
af:0c:bc:a3:2e:38:6e:49:f4:1f:fd:d5:38:db:d5:
ca:d1:08:8c:2c:67:b9:30:a7:90:8c:a0:de:ef:de:
18:32:6e:9e:cb:a0:1b:f1:63:4d:9d:63:44:88:a7:
a8:54:6c:3c:e5:ce:57:ec:69:bb:a0:6e:78:e1:da:
09:ad:74:9b:94:b9:e1:f5:51:3d:0c:99:40:a1:e2:
d3:0e:88:11:6b:09:8c:c3:03:2b:3d:65:03:8d:5c:
f7:aa:ce:e3:db:4c:3d:74:7e:1b:69:79:ee:cb:cf:
5c:a7:fe:0b:85:8e:9a:da:3f:0c:3d:f6:e5:ee:88:
00:50:da:63:4f:7d:e8:be:1d:d3:32:4a:ba:d5:31:
ee:31:f3:93:00:57:f5:84:3c:6c:d7:6c:24:a7:05:
3b:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:93:62:9F:34:CB:2E:39:F3:B7:DE:3B:A4:97:81:57:A3:DB:66:75
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/V5NinzTLLjnzt947pJeBV6PbZnU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
6e:c7:2e:2e:51:59:10:85:21:a2:50:51:4c:ae:af:15:46:99:
35:fb:a2:31:a1:45:a8:1f:79:20:94:2a:fc:39:ce:7d:92:01:
f7:21:2f:d9:19:9f:42:e6:24:c3:91:47:27:48:4f:86:cb:6b:
bb:15:a1:59:a8:4e:03:87:b3:b6:22:1a:5e:aa:66:a0:03:18:
41:94:36:ca:2c:d1:c7:e9:83:f3:9f:3d:b2:9d:52:8a:43:f8:
4c:6e:87:1a:b1:03:9c:7e:a8:89:28:34:e4:90:25:cc:91:12:
ad:da:50:88:a2:68:3b:0a:67:31:02:0d:f7:93:ca:0e:70:f2:
3e:f4:12:ed:c2:2e:3d:50:ae:cd:a7:d3:d7:6e:37:64:a7:df:
13:71:cc:2e:79:3c:4e:06:b0:4b:cb:d2:9d:42:61:93:67:bb:
7c:92:0c:66:9a:11:52:bc:e1:27:73:e6:b3:18:ba:92:d7:73:
2f:64:1b:c7:6d:d2:27:88:3f:98:8c:3b:a0:d3:3a:57:f1:2e:
7a:ce:a3:9d:b7:ae:7d:34:b2:8a:f4:c9:27:b6:81:21:aa:cc:
cf:1b:4f:f4:01:4b:f9:da:09:f3:05:a4:ed:6c:bf:72:0c:be:
b1:70:5b:9d:f6:f6:84:27:52:bd:5a:ae:9f:46:5c:84:db:fd:
49:0e:6a:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 19:13:05 2025 by rpki-client