Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/udEQY0oRHbh5OHT8YwDLMMs5SbM.roa
File: udEQY0oRHbh5OHT8YwDLMMs5SbM.roa (raw, json)
Hash identifier: GojAyJRapWvY1Wgn9PEACvhtydWWQ523lEhM2Y2NWzc=
Subject key identifier: B9:D1:10:63:4A:11:1D:B8:79:38:74:FC:63:00:CB:30:CB:39:49:B3
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01905F9D8A3F191F809C02DCD93D14DBED11
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/udEQY0oRHbh5OHT8YwDLMMs5SbM.roa
Signing time: Fri 28 Jun 2024 16:11:18 +0000
ROA not before: Fri 28 Jun 2024 16:11:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:5f:9d:8a:3f:19:1f:80:9c:02:dc:d9:3d:14:db:ed:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 28 16:11:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b9d110634a111db8793874fc6300cb30cb3949b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e3:56:8c:c2:93:50:80:83:f5:a0:43:65:85:
3d:49:73:aa:5a:b0:3b:d3:92:ef:ca:1e:e3:97:12:
94:86:08:15:5f:bf:27:ca:d7:ee:17:9b:03:03:e5:
0f:e4:45:3c:bc:0e:67:a3:fd:fe:61:ce:f3:48:c3:
79:ef:ef:f3:38:c0:d4:78:e8:3e:dd:f7:98:b5:59:
17:cb:96:08:a3:db:f7:2f:3a:45:28:eb:2f:c9:22:
14:9d:25:35:38:07:09:59:fd:69:1b:4c:3f:3c:04:
02:98:b6:dd:e1:a0:36:1f:42:e5:a3:f1:0c:6a:c1:
77:bf:02:7a:ef:10:0a:f9:2e:a7:66:44:85:5f:40:
fe:0a:8c:ea:69:80:88:29:93:40:1f:88:74:4c:f1:
88:cf:af:19:19:c8:7c:59:6e:04:a3:18:ca:b8:ae:
28:33:d4:56:07:25:e3:2b:c7:94:37:48:b9:1f:3b:
ef:d6:ae:09:e1:32:66:3d:ce:0b:4b:f6:a6:e6:bd:
a3:1e:39:0b:cc:36:de:1a:c6:56:32:e7:ce:1b:94:
ef:e8:a2:32:6b:a8:80:03:98:df:75:a7:7f:f0:3e:
1c:2d:72:8f:0f:c3:9b:cc:6b:e5:65:85:ce:c0:03:
a9:89:2a:f5:a4:f4:37:b5:c2:7a:71:80:ad:76:2e:
d7:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:D1:10:63:4A:11:1D:B8:79:38:74:FC:63:00:CB:30:CB:39:49:B3
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/udEQY0oRHbh5OHT8YwDLMMs5SbM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
59:d3:8f:9f:fe:47:11:de:79:12:9c:30:ba:6e:8c:9e:8e:15:
ec:41:1a:57:b1:fe:b5:b4:22:6f:9e:fa:3b:f6:09:71:f9:aa:
a6:21:74:11:47:0f:74:c3:1c:8e:73:98:6a:c3:42:06:fd:48:
27:27:64:fc:b8:63:f6:74:64:d6:c2:79:fb:6a:8f:ef:4e:92:
81:c9:67:6b:7e:5f:91:ee:5c:69:bb:66:4f:dc:d9:d5:83:b5:
ba:85:9a:8f:34:92:96:b4:d1:46:e9:8a:85:60:5b:ae:8a:f2:
80:de:98:3e:44:84:0a:c4:48:4f:9a:a9:d8:63:eb:80:7b:b9:
18:ac:66:23:ba:1d:d9:87:6b:f8:a6:e8:96:54:66:18:81:41:
1b:e8:a5:7b:f9:22:68:06:53:de:e2:f0:4d:f3:19:f3:8a:11:
8b:ad:ed:71:5c:7a:c4:4e:2c:5a:2c:eb:b6:d1:ec:cd:1d:8e:
36:2b:c2:b6:74:09:84:6a:bb:59:fb:fd:c1:e5:d9:e5:c0:d4:
b2:f5:45:fb:a3:bb:ab:01:93:ea:b2:f9:34:25:5b:98:dc:c8:
17:3d:f1:a2:18:3d:eb:c5:30:ab:9d:bb:0f:34:52:a6:da:fb:
73:f7:b5:00:cf:3f:66:59:18:61:75:55:42:39:c3:7b:8f:b5:
2c:22:25:23
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZBfnYo/GR+AnALc2T0U2+0RMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNjI4MTYxMTE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOWQxMTA2MzRhMTExZGI4NzkzODc0ZmM2MzAwY2IzMGNiMzk0OWIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyONWjMKTUICD9aBDZYU9SXOqWrA7
05Lvyh7jlxKUhggVX78nytfuF5sDA+UP5EU8vA5no/3+Yc7zSMN57+/zOMDUeOg+
3feYtVkXy5YIo9v3LzpFKOsvySIUnSU1OAcJWf1pG0w/PAQCmLbd4aA2H0Llo/EM
asF3vwJ67xAK+S6nZkSFX0D+CozqaYCIKZNAH4h0TPGIz68ZGch8WW4EoxjKuK4o
M9RWByXjK8eUN0i5Hzvv1q4J4TJmPc4LS/am5r2jHjkLzDbeGsZWMufOG5Tv6KIy
a6iAA5jfdad/8D4cLXKPD8ObzGvlZYXOwAOpiSr1pPQ3tcJ6cYCtdi7XcwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFLnREGNKER24eTh0/GMAyzDLOUmzMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvdWRFUVkwb1JIYmg1T0hUOFl3RExNTXM1U2JNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAFnTj5/+RxHeeRKcMLpu
jJ6OFexBGlex/rW0Im+e+jv2CXH5qqYhdBFHD3TDHI5zmGrDQgb9SCcnZPy4Y/Z0
ZNbCeftqj+9OkoHJZ2t+X5HuXGm7Zk/c2dWDtbqFmo80kpa00UbpioVgW66K8oDe
mD5EhArESE+aqdhj64B7uRisZiO6HdmHa/im6JZUZhiBQRvopXv5ImgGU97i8E3z
GfOKEYut7XFcesROLFos67bR7M0djjYrwrZ0CYRqu1n7/cHl2eXA1LL1Rfuju6sB
k+qy+TQlW5jcyBc98aIYPevFMKuduw80Uqba+3P3tQDPP2ZZGGF1VUI5w3uPtSwi
JSM=
-----END CERTIFICATE-----
Generated at Sat Apr 19 12:07:14 2025 by rpki-client