Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/1uODplFp4MbF6Nprxx5VfuegOcI.roa
File: 1uODplFp4MbF6Nprxx5VfuegOcI.roa (raw, json)
Hash identifier: LGicWBQ1Ai5vI5CzE4iQnuUV6LTKV61MAkCWYVj1ZQk=
Subject key identifier: D6:E3:83:A6:51:69:E0:C6:C5:E8:DA:6B:C7:1E:55:7E:E7:A0:39:C2
Certificate issuer: /CN=43039a68130f19631e1527946e1e127db1e8f9d9
Certificate serial: 018AD3543B09D3A0E8693BA8A7601696393F
Authority key identifier: 43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/1uODplFp4MbF6Nprxx5VfuegOcI.roa
Signing time: Tue 26 Sep 2023 21:10:27 +0000
ROA not before: Tue 26 Sep 2023 21:10:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d3:54:3b:09:d3:a0:e8:69:3b:a8:a7:60:16:96:39:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43039a68130f19631e1527946e1e127db1e8f9d9
Validity
Not Before: Sep 26 21:10:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d6e383a65169e0c6c5e8da6bc71e557ee7a039c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:4c:4c:15:2a:c7:89:db:73:92:73:47:c7:67:
bd:6a:e6:71:d3:f2:06:2c:98:f3:de:d0:34:14:6c:
7f:23:4d:18:08:35:20:6e:78:32:25:60:06:b9:f5:
66:ac:f8:a9:e4:a7:a5:ac:0a:eb:bb:43:cf:65:c7:
c8:6b:7c:73:96:34:fc:28:99:0d:70:50:78:f0:c7:
ab:8f:bb:a1:6d:06:f7:34:d7:10:16:36:01:d3:e2:
a5:41:27:c8:7b:90:17:7c:ea:64:f0:de:98:9e:d1:
51:cd:3a:6c:f7:03:de:3a:15:d6:81:2e:48:cd:11:
9b:bd:7d:09:8e:81:21:56:2d:09:9f:8c:ac:52:d5:
a9:92:4f:3a:71:52:bd:02:62:4e:f0:98:aa:4e:f5:
e6:93:3d:a8:c6:99:ff:60:dd:8c:fc:4f:82:7a:34:
a2:36:42:0a:ff:92:d0:68:67:ec:a4:c5:50:91:ae:
e1:2c:29:06:ff:1a:c0:72:84:82:c5:4a:a2:f8:51:
d8:e1:a7:96:ca:89:1a:3c:ae:fb:c5:3a:d8:e7:dc:
4f:1b:18:2a:f7:2a:95:08:b4:49:81:b4:42:7d:ae:
b0:4b:19:94:2f:78:3f:3f:36:aa:a7:74:f7:6e:6e:
0c:82:7b:8f:75:88:cb:22:45:bf:0e:b7:fb:45:07:
d6:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:E3:83:A6:51:69:E0:C6:C5:E8:DA:6B:C7:1E:55:7E:E7:A0:39:C2
X509v3 Authority Key Identifier:
keyid:43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/1uODplFp4MbF6Nprxx5VfuegOcI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/QwOaaBMPGWMeFSeUbh4SfbHo-dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
87:55:74:4b:c4:f3:c5:88:52:61:fc:c9:11:20:c1:92:80:16:
80:5f:42:32:ba:3d:96:74:78:a4:5a:39:0d:68:fb:a7:50:bc:
d2:0c:99:2e:f5:7d:d8:b8:f8:a3:3c:08:33:61:79:db:88:09:
0b:20:ba:6d:38:dd:b9:7f:d4:ed:5d:70:3b:47:f4:39:ec:71:
39:73:94:e2:ec:d0:d4:78:d3:5f:95:61:80:e1:ea:31:91:5b:
98:a7:c2:73:47:51:d0:c4:6a:cb:96:be:b5:b4:75:e5:05:5f:
cf:61:86:b9:d9:76:a3:6a:82:ef:d3:7f:79:5a:21:9b:24:7b:
31:3e:7a:3d:82:3b:dd:50:fb:ec:c9:bf:4d:ef:44:61:67:9e:
bc:a2:a8:9c:be:51:1d:5c:b7:a5:45:02:b3:ea:85:29:03:e9:
84:d0:67:1b:99:c3:1e:39:b8:6d:51:de:d4:35:48:72:00:83:
07:40:aa:a7:63:e5:ed:e0:2b:e6:be:d3:34:0c:ed:58:9e:42:
46:4c:7e:e6:e8:e0:f2:cd:89:d9:3e:db:a1:48:60:28:8c:74:
41:74:c0:9e:e3:67:4a:1f:0e:dc:57:ae:89:f9:b6:87:06:8f:
d7:bf:0e:a1:ab:73:0b:18:cc:43:52:b4:5e:84:a5:a5:ed:70:
46:aa:da:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:43:37 2025 by rpki-client