Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/gylRw77k8zUaVghQtbRPyYhWHBc.roa
File: gylRw77k8zUaVghQtbRPyYhWHBc.roa (raw, json)
Hash identifier: dwQlRPyMfQIs62zIiir+o1wtVTxL3PrhIemRGFgFhmw=
Subject key identifier: 83:29:51:C3:BE:E4:F3:35:1A:56:08:50:B5:B4:4F:C9:88:56:1C:17
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01901DBCDAF0406853D43BD77B6BB4297AD0
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/gylRw77k8zUaVghQtbRPyYhWHBc.roa
Signing time: Sat 15 Jun 2024 21:10:34 +0000
ROA not before: Sat 15 Jun 2024 21:10:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1d:bc:da:f0:40:68:53:d4:3b:d7:7b:6b:b4:29:7a:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 15 21:10:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=832951c3bee4f3351a560850b5b44fc988561c17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:8a:9d:c6:e1:29:59:f9:0c:d5:da:6b:26:ee:
15:1d:d8:87:68:67:1d:31:71:e6:89:b4:ca:5b:50:
72:28:51:a5:93:53:03:eb:7c:02:d3:34:25:63:40:
54:3d:0d:7a:f5:25:dc:a0:00:cf:ff:10:54:e5:69:
1f:c5:7d:95:6a:0b:8e:60:76:ea:99:fc:5c:85:54:
29:fa:f2:f3:78:21:13:31:f6:6d:29:ba:4c:ce:b3:
84:cf:26:ec:08:0a:9a:1d:8c:2a:e9:65:b2:63:ba:
59:77:e7:9e:2d:77:4a:86:02:6a:eb:de:5f:28:da:
21:04:4b:49:df:b8:52:4d:ca:14:98:51:c9:ed:03:
d9:8f:e2:3c:fd:4e:ff:07:c0:ad:e3:10:67:38:e7:
11:c1:89:f5:08:fa:36:71:25:f6:2d:05:17:e7:c0:
d4:03:b4:c6:8e:45:7e:02:0c:69:fc:05:49:0c:3c:
1f:64:e1:11:34:be:22:3a:e6:93:49:e7:ac:0c:cc:
68:c5:26:21:01:25:bf:8b:a3:dc:99:81:b0:08:dc:
d0:22:62:b0:10:11:a1:78:4b:7e:21:c7:da:54:8d:
78:48:20:ea:1a:3c:89:a1:90:31:9a:95:da:dd:53:
0d:58:25:21:06:31:06:b0:33:00:ba:27:ed:8c:ba:
38:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:29:51:C3:BE:E4:F3:35:1A:56:08:50:B5:B4:4F:C9:88:56:1C:17
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/gylRw77k8zUaVghQtbRPyYhWHBc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
1d:87:19:9f:b5:2f:7e:a1:95:c8:19:e0:23:ce:e4:4b:54:ab:
3f:23:af:8d:ef:db:0c:0c:72:44:a0:dc:e3:ed:c8:24:7c:32:
08:59:9b:39:74:a2:82:9a:67:8c:e8:7a:fb:b0:c0:15:9a:f4:
81:13:85:99:f9:70:bf:6a:5d:c2:12:8a:3d:21:dc:d7:7e:64:
b5:5c:61:e9:5c:06:c3:9c:f9:63:78:8a:05:54:73:c2:53:3d:
fa:02:04:74:bc:dd:17:88:52:c7:9e:9f:e1:df:28:d9:f9:14:
02:5e:87:55:67:60:64:f4:3f:89:af:33:90:06:8d:ac:eb:2b:
88:42:35:1e:2a:56:7c:30:0d:38:b0:f3:f4:4a:7c:b5:21:56:
97:a1:95:7c:fb:aa:97:b5:6e:53:7a:99:a1:fd:63:e2:94:62:
23:e1:fa:fc:07:51:72:f4:ad:92:ad:82:4f:6b:d4:a3:03:1e:
eb:1c:42:08:b4:60:a6:4c:e1:55:fd:fe:4d:a7:a3:1a:06:98:
02:ad:a9:f6:bd:86:d6:61:b2:d5:a6:c1:e4:37:aa:b5:7c:ef:
b1:e8:99:c3:b4:d4:8e:3e:a9:d6:f9:3b:4d:01:3e:f5:cf:2f:
30:bf:a8:39:15:69:7e:87:1a:9a:35:cb:e9:46:5b:85:32:d1:
16:81:3b:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 03:28:56 2025 by rpki-client