Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/a13KuwKepL28QTp9a_912_O3qrU.roa
File: a13KuwKepL28QTp9a_912_O3qrU.roa (raw, json)
Hash identifier: TR3rYz76hb3xOEv+NODv7tAct5k7h7GKL8aaOwQiwGs=
Subject key identifier: 6B:5D:CA:BB:02:9E:A4:BD:BC:41:3A:7D:6B:FF:75:DB:F3:B7:AA:B5
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CA75471FB3204E6C46A211B0F4728C593
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/a13KuwKepL28QTp9a_912_O3qrU.roa
Signing time: Tue 26 Dec 2023 18:12:58 +0000
ROA not before: Tue 26 Dec 2023 18:12:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:a7:54:71:fb:32:04:e6:c4:6a:21:1b:0f:47:28:c5:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 26 18:12:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6b5dcabb029ea4bdbc413a7d6bff75dbf3b7aab5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:e2:da:11:da:e2:6f:b9:55:ea:26:4a:0c:40:
da:28:a5:76:74:db:55:65:e8:84:c7:81:47:b6:d9:
ff:78:a1:3b:d0:7f:51:3d:68:12:a9:c3:d1:39:7b:
7d:5b:99:eb:09:b8:e7:be:7c:50:84:7b:a6:de:d5:
f2:7e:36:ba:17:23:4c:2c:e8:11:08:d3:8b:b5:a6:
fe:12:b3:ae:bc:e1:13:aa:30:27:b6:aa:f6:12:25:
2c:a9:ed:d5:1a:f5:c9:b3:0e:57:c0:ba:d5:29:b6:
39:fa:30:8e:4b:73:a5:b2:22:02:eb:48:93:45:3a:
7c:5e:14:b0:7e:25:ef:cc:94:d8:69:36:bf:21:47:
1a:25:f2:2a:c6:12:b6:75:35:09:7d:f1:38:f3:c8:
de:a4:56:3b:bd:03:de:bc:f6:f5:02:1c:6d:21:06:
d4:39:15:99:d2:c8:d3:df:21:c2:99:b8:b0:5a:f4:
55:a0:3d:9f:1b:15:49:ba:8b:6c:59:c4:11:b1:77:
23:a0:28:ec:64:aa:65:1c:f7:b3:32:ab:38:4c:2c:
a2:85:4f:c1:eb:56:dc:ad:0c:ed:55:8b:3e:1f:2a:
18:a1:e5:45:c6:1b:45:be:50:d9:ee:9e:7f:27:5f:
a4:ff:d7:71:1a:5f:e8:43:7a:94:48:bd:d4:1a:7d:
9d:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:5D:CA:BB:02:9E:A4:BD:BC:41:3A:7D:6B:FF:75:DB:F3:B7:AA:B5
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/a13KuwKepL28QTp9a_912_O3qrU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
12:8e:37:fa:9a:37:71:69:47:fb:4d:9f:d9:0a:5b:62:73:37:
e6:f3:84:67:12:2e:2b:48:46:c5:2f:22:d9:a7:a8:99:f9:aa:
fa:9d:37:90:45:b8:4f:5e:d0:1f:7e:0d:bc:9d:62:4b:9b:3c:
12:a4:20:ee:04:53:80:98:54:77:16:01:5c:ac:25:8f:22:fb:
02:3d:26:d2:8c:87:59:cc:ac:87:5b:80:e2:71:e4:2b:fb:1a:
fc:c2:54:8f:ee:f9:36:10:cd:c7:7e:7e:36:37:76:22:6a:b0:
e4:17:a3:d4:d5:28:f8:d2:b9:25:a3:45:22:f9:1f:ed:46:8e:
2f:69:f8:1a:87:a8:dc:c4:ba:47:aa:50:9b:bf:b8:17:18:1e:
a8:0c:ff:d0:57:0f:5e:a0:e1:97:ee:4f:67:e0:a1:74:9f:a1:
cd:d9:8d:58:24:94:c0:f4:4a:1c:20:3b:7d:80:a7:02:00:28:
cf:71:c1:15:4f:6d:c7:01:10:ab:92:2f:0f:ea:04:f6:d5:83:
4c:ba:18:51:51:99:77:78:8a:ab:75:ed:3f:ab:ed:53:86:af:
49:a6:c8:f4:98:d0:6b:f4:e1:19:bf:61:c0:64:c0:08:5d:78:
36:1d:a3:95:64:02:7e:7b:67:32:5c:4e:7e:6b:ef:ec:e9:7f:
35:c6:39:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:25:04 2025 by rpki-client