Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/i12Ofwj2ZxFTd-NgaGQp04A2Ufs.roa
File: i12Ofwj2ZxFTd-NgaGQp04A2Ufs.roa (raw, json)
Hash identifier: IL5E1fLDXU/E7t3HJtcfWV86WE8UyGE+A+LvhsAjXM8=
Subject key identifier: 8B:5D:8E:7F:08:F6:67:11:53:77:E3:60:68:64:29:D3:80:36:51:FB
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018ED4291918926D5FCBBBE1783F6AF0A559
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/i12Ofwj2ZxFTd-NgaGQp04A2Ufs.roa
Signing time: Fri 12 Apr 2024 21:14:06 +0000
ROA not before: Fri 12 Apr 2024 21:14:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:d4:29:19:18:92:6d:5f:cb:bb:e1:78:3f:6a:f0:a5:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 12 21:14:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8b5d8e7f08f667115377e360686429d3803651fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:6a:b8:5a:5f:04:a3:c5:ee:75:3d:bc:1c:e0:
3b:c3:a6:0e:90:ee:8e:0f:05:fb:7d:b7:9a:37:df:
81:ad:c2:30:b8:1a:94:bb:cb:2a:09:7d:32:3a:30:
ae:6c:d5:b5:6a:21:ef:f2:cb:78:3d:b1:f9:56:3e:
fe:79:cb:8f:bd:c2:a8:ba:f8:91:72:b4:96:2e:e2:
56:f4:5b:05:f6:72:c0:1b:88:4b:cf:f3:28:2e:5e:
47:f8:31:45:ba:c5:cd:25:ae:23:67:1e:4c:00:7f:
b3:a8:5a:a5:cd:bb:41:a7:ed:8f:c6:27:f7:14:31:
c3:a6:95:2a:e8:53:ea:e1:73:5f:e7:cd:44:39:99:
4f:85:0a:b7:99:4b:a4:29:58:7b:c7:51:29:40:6e:
31:b9:23:42:89:19:1f:5d:21:af:15:3f:8a:95:01:
e0:ea:39:9e:ce:8a:42:b5:20:d9:89:f3:a8:89:87:
d5:77:cb:9f:e2:93:0f:6b:bc:bf:6c:8a:cf:0b:e4:
2f:ef:ee:ef:1c:ec:24:ba:e6:81:4b:43:07:9f:85:
7d:9f:d4:41:2e:98:77:01:08:6a:5c:b9:39:f4:db:
b8:23:c1:ee:a6:54:03:b1:b5:7c:b3:bb:45:d0:a9:
8d:d1:a1:1a:0d:25:8d:88:a3:8a:4c:f1:2c:18:e3:
f1:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:5D:8E:7F:08:F6:67:11:53:77:E3:60:68:64:29:D3:80:36:51:FB
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/i12Ofwj2ZxFTd-NgaGQp04A2Ufs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
49:dd:ce:19:75:58:66:78:67:4e:8c:38:29:03:bb:c0:b3:af:
09:08:ed:6c:b4:1b:ad:da:d1:e2:a8:65:34:32:ac:5b:81:57:
b7:c4:e7:61:36:f7:08:02:92:cf:64:2b:c6:96:a5:42:f0:58:
e6:26:92:a4:5b:30:56:60:a0:9b:9d:32:cb:69:e4:97:d9:51:
e9:4e:3f:dd:93:d9:d2:32:31:b5:dd:8d:28:ca:70:18:32:13:
25:9e:76:a4:0e:74:97:5e:b0:3a:be:7e:f5:ef:cf:aa:0e:93:
62:25:8a:73:df:c5:ba:5a:94:5e:dc:21:d3:fc:16:f0:74:08:
51:56:01:ba:4c:84:12:5e:a3:88:c1:26:ea:bd:00:4d:fa:aa:
a2:40:cb:1c:1f:f4:43:5f:c0:98:7d:7d:a6:67:b4:39:ec:8e:
06:5a:60:8e:d1:30:9c:3b:df:31:46:a6:52:2f:41:50:25:b5:
84:38:57:fc:f2:a5:d9:aa:5f:77:1e:a5:81:14:37:cd:d0:f4:
30:3e:76:a5:b6:7a:fb:fe:fb:91:d0:dc:ab:4f:0e:b0:c9:5e:
cd:24:a5:64:e3:da:7d:f9:7c:c7:ce:47:cd:4c:c8:61:b9:38:
5e:6c:05:8d:14:3d:8c:07:59:74:f7:c6:dd:cb:f2:c9:b0:c1:
0a:09:b9:43
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY7UKRkYkm1fy7vheD9q8KVZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzYjNkYTNlY2I4YTdkNDMzZGUzODMzODY2N2IzNWU2OGRm
NzNmOGMwHhcNMjQwNDEyMjExNDA2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YjVkOGU3ZjA4ZjY2NzExNTM3N2UzNjA2ODY0MjlkMzgwMzY1MWZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnmq4Wl8Eo8XudT28HOA7w6YOkO6O
DwX7fbeaN9+BrcIwuBqUu8sqCX0yOjCubNW1aiHv8st4PbH5Vj7+ecuPvcKouviR
crSWLuJW9FsF9nLAG4hLz/MoLl5H+DFFusXNJa4jZx5MAH+zqFqlzbtBp+2Pxif3
FDHDppUq6FPq4XNf581EOZlPhQq3mUukKVh7x1EpQG4xuSNCiRkfXSGvFT+KlQHg
6jmezopCtSDZifOoiYfVd8uf4pMPa7y/bIrPC+Qv7+7vHOwkuuaBS0MHn4V9n9RB
Lph3AQhqXLk59Nu4I8HuplQDsbV8s7tF0KmN0aEaDSWNiKOKTPEsGOPxFQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFItdjn8I9mcRU3fjYGhkKdOANlH7MB8GA1UdIwQY
MBaAFNOz2j7Lin1DPeODOGZ7NeaN9z+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODct
YzUzOTc5ZDY2Y2E1LzEvaTEyT2Z3ajJaeEZUZC1OZ2FHUXAwNEEyVWZzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODctYzUzOTc5ZDY2Y2E1
LzEvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAEndzhl1WGZ4Z06MOCkD
u8CzrwkI7Wy0G63a0eKoZTQyrFuBV7fE52E29wgCks9kK8aWpULwWOYmkqRbMFZg
oJudMstp5JfZUelOP92T2dIyMbXdjSjKcBgyEyWedqQOdJdesDq+fvXvz6oOk2Il
inPfxbpalF7cIdP8FvB0CFFWAbpMhBJeo4jBJuq9AE36qqJAyxwf9ENfwJh9faZn
tDnsjgZaYI7RMJw73zFGplIvQVAltYQ4V/zypdmqX3cepYEUN83Q9DA+dqW2evv+
+5HQ3KtPDrDJXs0kpWTj2n35fMfOR81MyGG5OF5sBY0UPYwHWXT3xt3L8smwwQoJ
uUM=
-----END CERTIFICATE-----
Generated at Thu Mar 13 20:18:26 2025 by rpki-client