Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/bP41eue9BNfgt9UWBDHGx1xMuTA.roa
File: bP41eue9BNfgt9UWBDHGx1xMuTA.roa (raw, json)
Hash identifier: R2qUC29u0bxADLPjker8NeVCMERlgLwZhfhmMHzgi5g=
Subject key identifier: 6C:FE:35:7A:E7:BD:04:D7:E0:B7:D5:16:04:31:C6:C7:5C:4C:B9:30
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018E265246C5191CDB188C02568860FEE570
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/bP41eue9BNfgt9UWBDHGx1xMuTA.roa
Signing time: Sun 10 Mar 2024 03:05:10 +0000
ROA not before: Sun 10 Mar 2024 03:05:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:c109:b478/128 maxlen: 128
2001:67c:64:ffff:0:18d:e84f:370a/128 maxlen: 128
2001:67c:64:ffff:0:18e:2651:ccb0/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:26:52:46:c5:19:1c:db:18:8c:02:56:88:60:fe:e5:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Mar 10 03:05:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6cfe357ae7bd04d7e0b7d5160431c6c75c4cb930
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ce:73:5f:63:f1:fd:86:99:42:a2:6a:1e:1f:
69:f4:8b:ca:7b:b3:e3:67:7a:bb:1c:98:38:ff:02:
2f:46:9b:51:37:23:3a:92:3b:ee:92:91:12:a2:85:
8a:12:0a:a1:a2:c1:6f:64:7f:20:9c:89:a8:c1:20:
d8:c2:1e:67:57:ec:c7:b4:f7:56:2b:a1:94:39:d7:
fe:f3:a4:89:b1:81:e2:74:b1:29:c7:ab:46:e5:31:
3b:b6:e6:0c:e7:e8:a4:51:3f:ee:ec:22:25:d5:40:
5d:47:8a:57:96:61:f4:a5:99:25:5e:b1:ef:98:53:
8c:6e:22:65:43:6e:71:05:96:1a:73:5b:38:6f:95:
14:58:5f:49:3c:15:3e:6b:d3:ba:33:3c:ee:10:2d:
74:00:c4:9c:a4:8c:1d:e5:7f:22:72:45:dc:d1:f0:
29:92:f5:5c:4a:d7:a8:c2:8c:a7:15:75:29:0d:f6:
e3:af:0e:5a:dd:08:06:00:b1:21:ae:cb:57:4a:24:
69:ec:87:ae:15:bf:07:c9:99:78:e0:5c:fe:83:aa:
b2:dd:01:77:af:02:b4:a8:3c:b4:e9:ed:46:09:bc:
e6:41:f2:b4:20:a9:d0:c0:90:c6:23:cf:e0:31:1d:
fb:00:49:80:3f:42:51:b3:c9:cd:cb:76:af:03:73:
0b:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:FE:35:7A:E7:BD:04:D7:E0:B7:D5:16:04:31:C6:C7:5C:4C:B9:30
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/bP41eue9BNfgt9UWBDHGx1xMuTA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
3f:e5:df:f0:bc:21:1d:d8:ab:22:b0:ba:b6:17:76:0b:95:36:
6d:fe:16:c4:71:cc:76:6e:7e:0c:39:e6:41:25:f4:88:e9:c6:
96:65:bc:0c:2e:83:f2:ac:44:98:aa:3c:d3:6d:ef:06:0e:49:
e9:a3:af:f1:4b:02:24:74:65:1e:d2:09:12:c0:c3:b9:86:80:
6c:36:41:56:13:c9:ff:9d:89:2f:e9:44:3b:57:0b:8d:bd:2d:
21:49:d9:0f:5d:6d:3a:94:dc:c8:0a:52:15:ea:d1:25:e3:e5:
34:dd:6b:b5:d9:18:18:25:7e:ae:6b:d5:7d:df:68:37:8d:f2:
9f:74:36:b0:e8:db:db:5d:76:32:ac:4b:a6:44:e4:b1:16:31:
2f:a7:75:4f:b7:bb:29:42:94:b9:56:1d:b1:e5:52:7f:80:20:
2c:b5:bb:82:e0:9e:c8:41:c0:bb:49:b9:f2:f4:f7:00:7c:11:
ed:42:e6:e4:93:93:6e:0e:98:00:62:36:34:14:bb:70:d5:a2:
b6:23:df:fc:d7:3b:c7:c3:21:b4:91:42:39:f8:df:df:e4:e2:
ce:1a:32:38:8d:44:da:a4:ff:59:b8:e0:dc:73:5f:8c:de:42:
22:64:f9:3b:56:30:29:ed:ce:2a:4f:cc:21:81:dd:40:34:c4:
95:7e:30:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:37:13 2025 by rpki-client