Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/ldptAP_UUqy1Z-a0vVF7fGxVanI.roa
File: ldptAP_UUqy1Z-a0vVF7fGxVanI.roa (raw, json)
Hash identifier: 3/ylNbKU0nRYwRU9cDkEB5ol2RFVu9Fdh+M0nUmrD1U=
Subject key identifier: 95:DA:6D:00:FF:D4:52:AC:B5:67:E6:B4:BD:51:7B:7C:6C:55:6A:72
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190ADF0BF9E331172B47F924AE9F751C420
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/ldptAP_UUqy1Z-a0vVF7fGxVanI.roa
Signing time: Sat 13 Jul 2024 21:12:34 +0000
ROA not before: Sat 13 Jul 2024 21:12:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ad:f0:bf:9e:33:11:72:b4:7f:92:4a:e9:f7:51:c4:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 13 21:12:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=95da6d00ffd452acb567e6b4bd517b7c6c556a72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:5f:5e:26:7d:58:64:dd:b5:30:ef:39:81:29:
1a:3e:27:8b:80:2c:07:50:21:ba:eb:db:c5:77:88:
12:61:b7:ed:36:34:6b:18:13:79:d3:b7:d1:c9:42:
a5:18:91:2c:74:1d:d1:1f:50:43:31:35:3c:68:b1:
e2:56:ff:19:9e:53:26:35:8f:eb:13:c0:c9:51:77:
dd:0d:04:de:00:e0:ca:6f:c4:85:6a:74:b7:cc:12:
e7:3e:03:9f:08:53:33:53:36:1e:d1:92:14:25:e6:
74:bc:6a:bc:af:8b:4d:3f:da:18:97:f5:7b:b5:6b:
fa:99:5a:41:94:72:e0:92:18:8e:02:ca:e6:f7:02:
08:40:0f:2d:bd:10:8c:bb:b0:89:c6:26:8a:0a:b8:
2f:89:a1:21:60:a4:e1:ac:0b:eb:27:63:0d:39:5f:
d3:67:95:49:13:fa:33:71:70:ef:50:9a:62:11:86:
60:0c:d9:bd:7c:ff:d0:63:18:58:5b:06:18:2c:78:
bc:73:e5:0c:b8:34:e5:54:4b:55:cf:31:c0:d1:98:
18:ff:e1:93:df:bd:67:c3:64:32:6b:de:b5:f1:f9:
16:45:e1:ce:31:45:58:98:3c:fa:82:2a:dd:5f:55:
b8:36:5a:21:59:ab:62:71:96:37:e8:54:ac:8f:78:
dd:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:DA:6D:00:FF:D4:52:AC:B5:67:E6:B4:BD:51:7B:7C:6C:55:6A:72
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/ldptAP_UUqy1Z-a0vVF7fGxVanI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
1a:7b:60:ac:87:8e:49:0f:d8:9e:b2:41:b0:ce:9b:08:94:31:
de:da:ff:0f:3d:79:54:a8:d2:ec:d9:28:4d:a7:c5:69:43:2e:
43:15:7f:72:17:6c:c6:cf:8a:b8:18:2d:c5:93:b1:d8:10:85:
e4:f0:59:fe:b7:07:8c:53:89:3a:4c:c4:c8:69:52:34:17:76:
05:82:76:80:80:d2:70:2d:21:25:e1:83:51:f3:27:05:ed:75:
ef:e6:df:f5:96:89:76:b0:b5:dd:4b:1f:89:c0:e0:19:96:19:
ce:d7:bd:be:c3:6e:8c:ea:e2:c1:f7:55:66:f4:ba:d4:48:e1:
bf:65:cb:c5:96:49:ef:43:e7:ed:7a:a2:75:d8:86:c7:2d:41:
01:19:5c:13:47:75:d5:96:4b:ee:d6:f6:8f:be:0e:36:1e:a1:
49:ec:75:61:9b:11:33:04:3a:aa:57:37:8c:83:36:c1:2e:fe:
24:77:19:5c:6d:c4:90:72:0e:b2:3d:66:c5:d7:2b:c4:65:85:
64:7c:db:de:71:f2:88:5b:af:99:55:c0:c5:6e:93:a2:ad:48:
fe:86:e5:0f:0c:9c:46:e5:dc:5e:26:95:51:ce:6f:52:03:e4:
7c:ec:82:0e:87:c1:7c:68:80:86:9c:0f:5f:a8:be:ea:45:80:
68:a3:c6:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 05:03:33 2025 by rpki-client