Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/ZEOnTKVJGgV4-VU4SZjZ1kkzW1Q.roa
File: ZEOnTKVJGgV4-VU4SZjZ1kkzW1Q.roa (raw, json)
Hash identifier: f8YCPNVyrXKOF+q9nH0p8VPsL/V9HOwd+kykV+YjLX0=
Subject key identifier: 64:43:A7:4C:A5:49:1A:05:78:F9:55:38:49:98:D9:D6:49:33:5B:54
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190B6182682EF32AECD603BF13CD4173C53
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/ZEOnTKVJGgV4-VU4SZjZ1kkzW1Q.roa
Signing time: Mon 15 Jul 2024 11:12:34 +0000
ROA not before: Mon 15 Jul 2024 11:12:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:b6:18:26:82:ef:32:ae:cd:60:3b:f1:3c:d4:17:3c:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 15 11:12:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6443a74ca5491a0578f955384998d9d649335b54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:1e:52:91:99:c3:9d:00:73:20:f2:b8:e2:73:
fd:8d:3a:fe:51:10:d4:98:18:fc:2b:bf:f4:80:c5:
33:e8:a2:3b:d7:69:d4:4e:57:74:02:18:40:40:0a:
2c:cc:5f:4b:f5:d7:8d:cb:90:eb:51:7d:49:75:81:
46:e1:35:83:66:76:bb:67:7e:2c:57:73:2f:01:af:
18:6f:39:d5:56:2e:89:7f:d2:a3:c6:ca:03:37:06:
3e:d1:87:d7:3a:0e:fb:c6:20:17:d8:f1:ae:07:d4:
0f:a2:4a:1b:9b:8a:84:48:48:80:26:6e:26:25:b3:
9c:57:18:43:a6:7a:e3:25:7a:c6:a0:85:f4:0b:2c:
70:de:01:7c:8f:97:bc:70:03:56:22:96:7e:b8:80:
12:77:bc:f1:d4:ce:d9:17:70:d6:96:64:a2:1b:b4:
3a:4a:72:fa:1c:88:dc:ef:d8:0a:59:8e:08:62:17:
bd:c8:5c:91:18:7d:9c:d4:02:56:68:0a:02:79:95:
c8:d3:c5:54:ac:4e:f7:27:df:b4:d5:51:7d:2e:9f:
35:00:60:32:31:4a:d7:5a:3e:a6:d8:eb:bc:4d:73:
48:f5:34:36:13:9f:c8:1c:c9:e9:2d:3b:fa:fe:55:
ff:f9:70:25:1e:89:e3:c4:63:99:d3:67:8c:01:4b:
a8:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:43:A7:4C:A5:49:1A:05:78:F9:55:38:49:98:D9:D6:49:33:5B:54
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/ZEOnTKVJGgV4-VU4SZjZ1kkzW1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
00:c2:80:46:ac:b1:0d:48:0b:51:43:2b:22:99:b9:9b:70:0b:
0d:52:24:33:7c:66:2d:dd:1c:ec:ec:1d:6d:96:0c:26:b0:b8:
32:32:71:c8:2d:2f:aa:92:b1:3e:f6:aa:b3:70:9f:ce:61:83:
2c:69:a9:06:73:c5:57:51:e8:aa:bb:16:37:bd:28:f5:a3:e7:
7a:0f:31:75:d9:be:c7:ca:35:47:05:f1:2a:a1:ea:c0:f4:70:
cb:f4:0b:35:f8:ef:5c:b9:a2:c0:1f:e5:ae:96:5d:3d:59:f8:
32:b1:7b:4e:7d:75:f6:ae:da:90:e5:f9:1e:2c:a6:07:ab:29:
14:2c:7f:0b:8b:da:3d:05:0e:2b:92:27:d8:b9:86:73:10:29:
df:a0:85:c8:02:b8:53:28:9d:65:2a:20:2d:df:48:5f:50:b5:
50:ee:b2:41:eb:19:f2:f4:fa:85:11:cc:0a:51:fc:91:b8:a5:
73:bb:cf:dd:34:e5:5b:6a:91:31:1f:24:35:f5:1e:91:e5:3e:
e1:b5:b4:2a:a0:0c:7e:38:79:37:c1:1d:93:d6:09:24:69:48:
44:1a:b8:a2:f0:12:da:aa:99:93:5b:42:73:c4:b1:12:19:c2:
af:32:7c:9c:b2:10:87:58:b0:a7:1e:d3:bd:03:8b:3e:ee:1a:
fd:ca:22:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 03:53:29 2025 by rpki-client