Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/wD_gT9uh8YptxGznXpRbs4fm3hg.roa
File: wD_gT9uh8YptxGznXpRbs4fm3hg.roa (raw, json)
Hash identifier: qC92RKoGkNEXQ6aB/CvNOQYRySsPmiJOd9MzHEao3dw=
Subject key identifier: C0:3F:E0:4F:DB:A1:F1:8A:6D:C4:6C:E7:5E:94:5B:B3:87:E6:DE:18
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018C9102A289DBD7DF330C031157DD89B465
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/wD_gT9uh8YptxGznXpRbs4fm3hg.roa
Signing time: Fri 22 Dec 2023 10:11:58 +0000
ROA not before: Fri 22 Dec 2023 10:11:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:91:02:a2:89:db:d7:df:33:0c:03:11:57:dd:89:b4:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 22 10:11:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c03fe04fdba1f18a6dc46ce75e945bb387e6de18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:fe:de:1a:38:1e:a4:7f:47:1b:cd:a4:48:08:
aa:70:1f:0a:9e:74:6d:23:c0:a7:ea:80:49:b6:7c:
64:ca:83:8c:bc:a2:0e:13:29:95:9e:ec:79:40:c7:
94:94:6f:2e:b7:b6:8b:0c:35:b9:a0:e6:93:ea:fb:
8f:70:4b:b7:99:23:2b:23:8f:c9:19:36:e5:0d:ba:
31:6e:ee:70:94:d9:45:a9:71:ed:c3:76:5a:1e:43:
78:60:c9:a0:47:68:51:88:77:0d:94:63:3b:c3:ad:
c8:4a:c4:38:d1:cf:51:d3:24:e1:ba:b1:d2:d2:15:
2b:5e:39:3d:73:36:37:db:09:fd:a4:7d:26:14:f3:
40:4b:dc:8a:f3:87:f0:ee:a0:36:04:eb:87:d8:3a:
ae:46:72:a1:6a:46:26:bf:b1:c4:2b:59:85:66:2e:
b9:f8:0a:34:47:2e:e7:1b:b2:c9:79:47:35:e4:89:
d0:b8:ed:da:de:4b:5c:80:b3:65:94:09:c8:25:16:
ae:b9:e3:79:6b:99:63:97:b0:4e:9a:07:f5:17:13:
00:22:cb:7b:c8:51:a9:45:48:3c:ca:e5:5c:64:a4:
f6:a5:da:5c:c2:56:64:ee:76:48:0d:ab:b6:d3:b5:
a3:7f:7d:95:7b:44:ef:d8:55:14:94:f1:c4:c0:e9:
1c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:3F:E0:4F:DB:A1:F1:8A:6D:C4:6C:E7:5E:94:5B:B3:87:E6:DE:18
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/wD_gT9uh8YptxGznXpRbs4fm3hg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
87:b7:66:5f:72:dc:0f:49:9d:ea:a8:38:57:ec:d9:81:35:bd:
f3:07:f9:b2:b7:5f:d5:bf:01:0b:8a:76:ff:1a:cd:2c:74:93:
f9:88:bf:1c:93:db:65:72:db:79:b5:fe:e3:81:5a:2a:cb:2d:
9d:da:c5:e6:2a:5a:ca:c2:6d:3c:c3:3b:b0:2c:64:a8:61:36:
6a:82:f0:cd:5c:99:08:8d:8b:0e:0f:33:4e:92:4d:aa:14:48:
58:3f:23:80:f8:99:00:ff:50:f2:2f:e3:c9:2c:22:36:37:49:
0c:43:92:87:18:f8:9c:11:a3:29:6c:96:f7:e5:e0:89:59:a3:
33:41:06:76:a0:d5:87:44:23:a8:23:12:62:b9:43:d9:00:99:
1e:24:0e:72:43:15:d7:86:8a:d6:e6:68:b2:e9:26:c0:91:6d:
c7:60:97:95:7d:c7:41:ab:88:e8:74:a9:79:a7:f6:d0:6b:9f:
92:b2:6a:a6:2b:a6:cc:3c:4b:9a:e5:ab:9f:fd:15:a3:20:27:
94:66:19:99:52:31:c0:22:b2:a2:68:d4:01:88:16:35:67:9a:
1a:16:26:69:b1:85:fd:63:5d:47:37:63:96:fe:1e:f2:3c:f5:
df:e5:48:d3:6e:f0:44:4d:94:d1:b2:c3:11:1b:1e:7f:67:56:
1d:9e:e1:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:11:00 2025 by rpki-client