Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/dwvUg8elvYdRFmPQGdnLS0Qa8rY.roa
File: dwvUg8elvYdRFmPQGdnLS0Qa8rY.roa (raw, json)
Hash identifier: CiRo4jpu+doBfPa7mMfcnS/W+w4WdjlBDQMz/nuRXjU=
Subject key identifier: 77:0B:D4:83:C7:A5:BD:87:51:16:63:D0:19:D9:CB:4B:44:1A:F2:B6
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019032C429230320D76D20ED7A94A7C6CB4E
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/dwvUg8elvYdRFmPQGdnLS0Qa8rY.roa
Signing time: Wed 19 Jun 2024 23:10:34 +0000
ROA not before: Wed 19 Jun 2024 23:10:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:32:c4:29:23:03:20:d7:6d:20:ed:7a:94:a7:c6:cb:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 19 23:10:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=770bd483c7a5bd87511663d019d9cb4b441af2b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:f1:b9:2a:e9:6e:f3:d2:2c:55:1b:4b:b5:b7:
09:a4:18:be:cb:19:83:db:79:b4:9f:bb:2e:02:e7:
f6:26:db:51:19:91:fe:50:59:db:01:2d:39:a9:5a:
82:49:52:5a:58:a3:80:db:6e:72:b4:84:2f:8b:b0:
b2:f5:0c:45:63:7f:b8:fd:0c:f8:2c:1e:78:34:68:
0a:0b:8d:f8:a0:3c:56:d4:47:12:04:58:71:e1:ba:
e3:65:56:95:ec:76:e6:ef:4e:c1:03:77:e4:2f:93:
73:51:b2:50:22:46:66:1a:50:7c:eb:a4:17:37:04:
19:12:55:e6:58:e4:41:56:e4:ff:cf:2c:00:2c:7f:
c0:d1:8c:17:2e:3b:3f:d4:dc:c0:15:8a:eb:3f:d4:
55:f9:d3:d8:ab:f3:3c:ad:4c:00:63:10:a7:3d:0e:
30:5b:a4:f0:b8:96:a0:b9:32:4e:83:bc:bd:90:2a:
e6:4a:30:71:1e:cc:1c:cd:b3:7b:04:2b:83:f1:47:
32:4e:2c:10:02:7b:92:30:e5:f9:23:ee:6c:f5:5d:
8f:26:f7:68:a5:b6:be:5b:31:33:a0:d1:6a:bb:d0:
3e:f0:e9:ed:54:48:22:fa:8a:98:a0:e3:b0:ac:b8:
f9:bd:88:d7:af:5f:27:55:7e:96:8d:cd:55:67:47:
3d:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:0B:D4:83:C7:A5:BD:87:51:16:63:D0:19:D9:CB:4B:44:1A:F2:B6
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/dwvUg8elvYdRFmPQGdnLS0Qa8rY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
14:37:0b:75:ec:2b:0e:8c:48:0d:b9:15:43:c9:13:58:5c:19:
ba:3b:25:68:4c:c2:60:fa:8a:9d:b1:e7:30:e5:4e:47:a3:85:
62:80:83:c7:c8:a9:ba:9e:05:94:5e:71:10:42:3a:82:dd:3a:
83:88:3a:50:86:6e:9d:db:bc:56:e6:ee:0e:6d:36:ee:32:c9:
4e:71:9b:a7:5f:9b:2c:05:c1:58:1d:b9:fa:fc:83:c5:41:e5:
8a:0f:f6:ad:a6:ee:eb:56:1b:17:9e:2b:4c:5d:69:9b:b5:9d:
c3:04:ef:1f:fe:f0:d8:51:eb:7c:88:7e:5b:42:f7:db:dd:aa:
c9:9d:6d:8e:47:22:24:ba:94:e5:c1:5f:0a:5f:99:0b:b8:d0:
d7:0c:f1:bd:05:4c:d7:95:5d:c0:6b:ee:41:3d:e8:6a:b6:df:
7c:73:f9:d1:99:87:f6:57:c2:50:74:e7:27:58:de:1d:96:c3:
24:e8:39:9e:be:b5:65:79:b8:b2:a3:30:ac:c5:92:e1:0d:08:
76:80:b9:4a:bf:7f:27:8d:90:cd:c1:90:8f:2e:5f:a0:13:c7:
1d:d7:64:4b:b2:d1:ba:1b:b8:3b:84:de:71:0a:17:1e:d9:63:
d8:95:f3:79:c1:ea:ff:3e:a7:99:e7:30:44:d3:2f:02:13:2e:
75:f4:f1:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 03:04:35 2025 by rpki-client