Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/sQT6aDGr7Sid621-jAHzKxOEcVE.roa
File: sQT6aDGr7Sid621-jAHzKxOEcVE.roa (raw, json)
Hash identifier: F/vt0amUdjEuOq8JFowFjAofmw2e5Z3s+UoPy51ZiZs=
Subject key identifier: B1:04:FA:68:31:AB:ED:28:9D:EB:6D:7E:8C:01:F3:2B:13:84:71:51
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CE3DAACE5EC4CD0C40D4D204138F185CB
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/sQT6aDGr7Sid621-jAHzKxOEcVE.roa
Signing time: Sun 07 Jan 2024 12:16:48 +0000
ROA not before: Sun 07 Jan 2024 12:16:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:e3:da:ac:e5:ec:4c:d0:c4:0d:4d:20:41:38:f1:85:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 7 12:16:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b104fa6831abed289deb6d7e8c01f32b13847151
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:27:aa:3e:dd:ea:87:92:b8:1d:2c:10:e5:82:
d4:1a:34:27:50:bd:b8:ff:d5:7b:b5:04:a8:9b:d3:
6a:33:a5:70:85:66:03:23:92:00:1e:16:76:14:89:
9f:97:b0:d8:4f:f6:12:dc:51:bc:91:61:30:66:c0:
84:c7:db:9b:f2:b8:f5:6b:4e:99:5d:fa:96:d8:42:
26:6b:63:97:dd:07:ce:b5:1b:2b:53:73:9a:83:25:
b8:b1:7e:3a:78:c4:3d:63:71:02:29:07:2b:08:ff:
e8:a7:62:25:93:10:fd:68:19:d6:f0:de:9d:3d:ca:
9b:3e:07:4f:eb:00:78:38:fc:90:99:e0:41:76:7b:
a2:e5:08:2d:a4:0a:4a:f3:35:3a:1d:2f:51:b7:be:
7a:1e:fc:f5:1f:4c:18:81:1d:ed:0e:9f:4c:27:09:
07:a5:0e:88:22:65:8b:e8:c9:a1:f1:98:0f:e3:4f:
ad:6f:58:70:72:18:0c:18:08:5e:b9:f8:12:82:d4:
ed:fc:4d:93:b4:f8:ab:3f:d6:27:83:2a:3b:ea:99:
50:d5:3b:7d:1e:f2:8b:47:d6:8e:fc:94:66:6c:c3:
71:c8:ba:f1:b2:92:b2:d5:dc:7a:d4:9c:bb:01:54:
2f:de:03:6b:cb:16:7e:14:22:53:af:a6:ea:3c:86:
e5:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:04:FA:68:31:AB:ED:28:9D:EB:6D:7E:8C:01:F3:2B:13:84:71:51
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/sQT6aDGr7Sid621-jAHzKxOEcVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
33:22:02:3d:93:cb:2c:57:74:e2:35:25:94:97:20:d7:64:45:
4d:97:47:84:f2:de:2e:56:34:f3:cf:bb:e8:0c:9f:f4:07:e7:
2d:23:f4:23:53:95:c4:39:19:e2:9a:7d:ca:58:e0:63:6a:69:
27:0e:3e:78:1c:ad:b4:0a:90:bf:18:24:89:33:0a:db:d3:ba:
7e:3c:ea:a3:cc:59:76:a8:fc:86:9b:39:2a:5f:ec:95:25:1a:
fd:98:8c:23:b0:f7:82:27:cc:23:42:a4:72:c9:76:a5:9f:aa:
b5:4b:17:7f:b0:a7:a0:97:6b:1d:e5:5d:6e:2a:57:da:3f:24:
ea:82:da:e2:c2:36:c5:3d:10:7d:19:0f:de:15:0a:c6:0e:5b:
c3:dc:c2:d6:62:fe:5d:c0:57:a5:22:50:20:92:ab:6b:82:9b:
f2:8e:71:80:a9:bc:8c:2a:f3:77:dc:3e:67:fc:81:57:4b:b8:
b0:bd:89:bb:e4:22:e6:ad:44:e3:9a:da:75:da:45:b0:72:3b:
1e:fa:1b:d7:c7:8e:1b:b5:99:d1:59:7c:a4:5f:d9:24:76:39:
6b:c5:24:a7:a6:12:53:87:1e:59:55:db:90:08:6c:6a:1d:a5:
45:d0:93:d3:4e:47:8c:0e:43:0e:39:d2:35:91:22:a0:ac:b6:
79:d7:63:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:48:15 2025 by rpki-client