Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/wJ-Z_Z8n2SQCAJW6mCONYJtEjOg.roa
File: wJ-Z_Z8n2SQCAJW6mCONYJtEjOg.roa (raw, json)
Hash identifier: O3Yua8DkLCiWYkB5IqBPdch5rjQ+wc6H+MDo8iPK0mY=
Subject key identifier: C0:9F:99:FD:9F:27:D9:24:02:00:95:BA:98:23:8D:60:9B:44:8C:E8
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FEC260C9C8F30EFCCFD97254C1A32F6FF
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/wJ-Z_Z8n2SQCAJW6mCONYJtEjOg.roa
Signing time: Thu 06 Jun 2024 06:04:27 +0000
ROA not before: Thu 06 Jun 2024 06:04:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18f:ec25:d0b2/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ec:26:0c:9c:8f:30:ef:cc:fd:97:25:4c:1a:32:f6:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 6 06:04:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c09f99fd9f27d924020095ba98238d609b448ce8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:86:08:1b:99:62:f3:f6:87:ca:89:8a:b2:7a:
2f:2b:c4:f0:f5:bb:91:99:f9:ed:0e:a6:8f:2b:05:
5f:68:c2:2b:f5:f8:27:6e:7c:d2:99:08:43:b7:db:
98:6b:14:bc:21:67:04:c4:4f:c8:5c:1e:1e:a4:09:
93:37:33:5c:3d:3a:df:e0:24:09:03:df:8d:d1:e8:
d9:c8:cd:cb:f1:62:8f:c8:8a:1e:43:d4:d5:47:95:
f6:4f:c7:9d:b6:bc:94:d5:5a:86:6d:69:46:34:3d:
92:9c:6a:d8:3c:b9:22:53:31:0e:82:03:6d:78:6d:
4d:7f:bf:17:c0:ef:c5:25:bc:4d:ab:c0:79:a0:13:
7e:86:b9:24:d6:34:ea:db:92:c0:03:39:c6:50:bb:
e3:5c:e7:0f:92:e8:12:52:4e:f4:cb:70:01:8e:bc:
16:49:16:79:7e:85:2c:36:2a:2e:0b:29:8b:64:16:
d8:36:ec:73:ad:0f:f1:76:80:50:ff:12:65:a9:04:
5f:71:7f:e0:5c:33:b6:5e:c2:6f:cd:5f:23:f9:b1:
ed:45:e0:48:56:e9:03:81:7a:27:40:11:84:09:69:
c1:1b:e4:11:30:e8:52:50:0d:87:6a:b8:98:7f:b6:
a7:67:43:9a:58:02:ad:8b:23:7b:5d:bd:d9:fe:31:
d1:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:9F:99:FD:9F:27:D9:24:02:00:95:BA:98:23:8D:60:9B:44:8C:E8
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/wJ-Z_Z8n2SQCAJW6mCONYJtEjOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
41:34:c3:a6:44:65:11:d8:55:d4:ba:a2:14:e8:cb:bf:6a:07:
5f:4d:99:e7:92:6f:3e:50:2b:36:38:06:66:ce:ff:51:07:03:
d6:b1:6f:65:f1:6c:32:5d:f8:54:34:df:32:40:7a:14:0f:86:
63:d5:c0:3d:1d:ca:14:fc:f8:c0:09:2c:6a:06:ac:11:7e:3d:
50:ee:b3:35:17:27:0e:61:29:7e:6f:54:39:c2:93:f0:5b:0c:
3f:55:54:18:81:b6:7a:78:75:ab:dc:b0:7e:4c:24:5b:5f:85:
8b:24:d9:3b:da:c7:c2:98:f2:26:91:76:92:1a:87:43:5f:ba:
2d:6c:06:c6:6f:ae:fa:e4:05:d7:1c:00:60:07:7d:32:78:1f:
6f:02:85:6b:da:a9:02:d2:a9:c4:d8:58:43:26:ce:49:1c:0a:
b6:11:8f:ff:68:27:1d:19:dc:36:d9:db:6f:e9:b4:d8:c9:ec:
92:19:d3:76:cc:21:7b:60:36:5f:34:c6:a0:c4:f7:ac:43:5c:
b3:56:4b:20:3b:4a:b6:10:6c:64:5f:2c:18:4b:fb:72:7e:b4:
4a:2e:4d:bc:2e:98:8a:0b:6a:e8:a5:0a:68:52:d5:d5:6f:6f:
42:30:11:2c:d2:31:1e:67:51:84:12:38:a7:58:87:0d:fb:bb:
fa:79:2a:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:08:34 2025 by rpki-client