Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/4sO5e9elthwqPt7H4oS1Bgm6Bac.roa
File: 4sO5e9elthwqPt7H4oS1Bgm6Bac.roa (raw, json)
Hash identifier: cnWV4iqTZ4SdEZR2ECfc17103b8t6xJTQm696TDBqag=
Subject key identifier: E2:C3:B9:7B:D7:A5:B6:1C:2A:3E:DE:C7:E2:84:B5:06:09:BA:05:A7
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01909D692EE3BFCA17EC6C54C9F521571B5F
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/4sO5e9elthwqPt7H4oS1Bgm6Bac.roa
Signing time: Wed 10 Jul 2024 16:10:34 +0000
ROA not before: Wed 10 Jul 2024 16:10:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:9d:69:2e:e3:bf:ca:17:ec:6c:54:c9:f5:21:57:1b:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 10 16:10:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e2c3b97bd7a5b61c2a3edec7e284b50609ba05a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:d6:c4:c6:c5:9a:26:95:43:af:bc:c5:6e:9d:
77:4a:d7:88:81:2d:8d:58:70:18:01:35:2f:38:55:
46:a0:e5:7f:82:6d:1a:1a:3a:b8:c1:ce:cf:b2:74:
0f:f0:c1:23:c2:78:7d:32:6b:72:70:bf:ed:ac:3c:
ce:08:4e:77:97:68:86:e6:73:2b:9e:47:4c:75:5e:
20:db:35:dd:18:97:5c:b7:58:f9:ac:8f:7c:45:53:
0a:8a:45:50:6d:02:a9:57:fe:90:73:fd:06:4a:84:
53:b8:19:49:21:bb:bd:ca:6c:53:77:c5:ff:a5:25:
db:8d:c8:16:5c:f9:b8:f2:7d:7f:a1:a2:43:b7:bd:
f2:48:ed:60:fb:b6:cb:2f:84:98:ec:aa:21:f7:63:
ae:e4:27:ab:7b:33:da:99:23:18:16:eb:8d:c2:21:
7b:99:15:fb:ab:c8:76:87:6d:d3:56:1e:18:0e:90:
cd:ea:48:7e:cc:c7:34:96:fc:f1:ac:fe:6c:05:4e:
f2:06:0a:c2:3d:61:7d:bd:dc:05:2b:2f:67:28:34:
a1:ca:89:c6:0d:1e:9f:bd:66:6c:b3:6f:e0:45:f7:
66:2d:39:ed:4c:00:63:ca:de:cb:66:14:ec:77:32:
a8:90:e3:19:cf:37:3d:32:6e:dd:3d:76:5c:01:20:
c3:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:C3:B9:7B:D7:A5:B6:1C:2A:3E:DE:C7:E2:84:B5:06:09:BA:05:A7
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/4sO5e9elthwqPt7H4oS1Bgm6Bac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
20:fd:5b:bc:fc:4c:fe:32:58:b2:dc:14:b4:01:7b:5d:02:62:
9a:24:58:7c:e0:a6:a8:30:50:b0:7c:42:e7:3b:dd:4d:83:6b:
39:21:4e:61:68:e3:2c:fc:8b:13:ed:29:bc:21:2e:c6:e0:eb:
72:de:9b:9d:a4:60:fa:83:1c:67:dc:76:cf:fb:e6:f0:4c:db:
27:ae:d5:4a:04:bf:eb:ff:96:83:3c:b8:27:3b:66:5a:82:63:
06:7b:0c:71:cb:16:41:41:d7:2b:42:e0:f5:d0:32:80:87:57:
79:3e:60:56:47:92:49:02:63:9f:e6:67:bb:d2:bb:a8:30:99:
e3:a0:c0:5a:27:3c:fa:df:1a:7a:76:ad:e7:62:99:57:ff:b9:
c6:0a:a2:e0:e3:c0:c0:16:13:28:96:95:fc:dc:0a:35:3a:4c:
e1:e9:4e:71:07:d9:ee:83:3e:d1:39:36:c4:56:41:7b:67:05:
c3:e6:de:f6:9e:6e:18:3d:20:48:96:58:34:e8:74:92:fc:15:
e1:ea:38:2a:60:49:57:26:4d:90:08:87:3d:dc:ea:dd:0f:97:
ab:dc:35:50:fd:7d:ae:90:40:68:8f:bf:ef:57:11:98:1b:15:
08:90:0f:ca:58:f7:76:3d:f8:4a:df:48:9d:8c:fc:cf:14:a5:
93:a3:19:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:16:03 2025 by rpki-client