Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/I-zu26n8d5TpCcSCjge5L1xZwwQ.roa
File: I-zu26n8d5TpCcSCjge5L1xZwwQ.roa (raw, json)
Hash identifier: vS21O9rjnmTF4xbOE4eDzxrq8RMY6QrP7OfwWFYeXQQ=
Subject key identifier: 23:EC:EE:DB:A9:FC:77:94:E9:09:C4:82:8E:07:B9:2F:5C:59:C3:04
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FB7CF89194929FFFE355727FD34FB7415
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/I-zu26n8d5TpCcSCjge5L1xZwwQ.roa
Signing time: Mon 27 May 2024 02:09:42 +0000
ROA not before: Mon 27 May 2024 02:09:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:b7:cf:89:19:49:29:ff:fe:35:57:27:fd:34:fb:74:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: May 27 02:09:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=23eceedba9fc7794e909c4828e07b92f5c59c304
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:80:23:91:25:97:b4:5e:42:28:16:f7:f1:f6:
55:e8:d7:9c:64:29:35:cb:fd:c9:a5:44:91:1c:97:
d5:fe:f4:05:0c:e9:29:ac:c1:d4:b8:03:f2:88:98:
a7:d6:5c:6d:e0:7d:14:db:fd:dd:2b:94:a9:2d:75:
ad:3c:82:e9:36:80:39:36:49:d6:8d:2e:fe:4b:85:
64:18:4d:e6:bc:1a:99:75:10:c4:b7:b8:1f:e9:41:
05:cf:11:fe:39:2c:e6:07:86:e2:07:96:a7:48:b1:
af:ae:cf:ea:7c:ca:b0:5b:0e:b6:4e:3c:0d:32:b7:
f2:de:65:2d:0c:e0:0c:d3:fd:d2:04:60:35:20:df:
de:5e:22:0b:7c:6a:ec:b2:c7:b2:3c:89:07:f3:6f:
f6:c9:c1:9a:2c:17:5d:b8:34:26:95:21:f1:4e:05:
d5:9b:63:d2:ae:14:f6:d5:fe:97:f2:91:6e:2d:74:
6a:e6:c2:ca:be:eb:56:49:94:ce:ae:26:c1:6b:bc:
cb:e4:4a:5e:42:4e:2b:b0:e9:6b:88:40:47:0d:b5:
d8:ea:75:17:0f:6c:1d:16:25:81:0a:db:18:66:2a:
39:a2:4d:6b:d2:36:5b:4f:b6:f7:36:d2:ce:28:9e:
9b:04:d0:3e:ee:81:96:a0:21:23:1f:ae:fe:67:b0:
43:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:EC:EE:DB:A9:FC:77:94:E9:09:C4:82:8E:07:B9:2F:5C:59:C3:04
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/I-zu26n8d5TpCcSCjge5L1xZwwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
3f:7c:b7:54:29:ce:d0:ef:0c:fd:4e:09:27:b6:da:13:2a:97:
b5:29:29:ef:fe:17:6d:6f:fb:24:59:7f:1e:98:4f:f7:4f:66:
5b:10:cf:f6:ee:5f:2a:ac:a4:6a:ae:3b:b3:98:cc:91:44:e0:
14:50:01:93:16:7d:c6:9c:af:bd:76:f7:29:03:c7:e8:d0:e7:
0b:2f:4f:ef:b5:f0:06:1e:d5:3a:3b:18:7e:6f:2d:24:ca:93:
a0:85:43:7c:5c:e9:22:a1:2c:9c:86:e1:9e:54:b7:0c:c6:7e:
94:fe:d6:c2:86:d9:ca:f9:dc:5c:59:7c:57:2c:15:2b:82:9e:
54:25:fc:0c:b8:0e:d9:c6:8d:40:34:91:b7:18:2e:99:78:7b:
e0:22:f0:39:d9:19:c6:d6:98:40:71:a2:24:5f:64:d1:43:99:
9b:49:cb:5e:36:fa:38:1b:9b:45:11:00:21:56:e6:7c:5d:19:
56:e1:76:0b:e4:56:3c:18:dc:fa:fa:f9:13:88:e9:a0:54:47:
09:af:99:68:25:d8:52:1c:2a:9f:02:ff:67:46:6b:21:e5:6b:
3f:3c:a7:40:01:c0:e7:12:c6:5a:53:a3:bd:73:77:e6:97:31:
d9:c3:79:ab:6e:e3:b5:44:46:53:22:6e:59:88:19:e1:22:d4:
ae:8a:7c:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 05:24:43 2025 by rpki-client