Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/6SImuQ6PUgBdQH_CdNdwlbNq9aM.roa
File: 6SImuQ6PUgBdQH_CdNdwlbNq9aM.roa (raw, json)
Hash identifier: 3K/PnL8B+0aUZv0lya9EPGTKA1cK5FPV4vOSoetJvA4=
Subject key identifier: E9:22:26:B9:0E:8F:52:00:5D:40:7F:C2:74:D7:70:95:B3:6A:F5:A3
Certificate issuer: /CN=43039a68130f19631e1527946e1e127db1e8f9d9
Certificate serial: 018AE25D9B142055464C91D42163100426CA
Authority key identifier: 43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/6SImuQ6PUgBdQH_CdNdwlbNq9aM.roa
Signing time: Fri 29 Sep 2023 19:14:59 +0000
ROA not before: Fri 29 Sep 2023 19:14:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:e2:5d:9b:14:20:55:46:4c:91:d4:21:63:10:04:26:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43039a68130f19631e1527946e1e127db1e8f9d9
Validity
Not Before: Sep 29 19:14:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e92226b90e8f52005d407fc274d77095b36af5a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:c0:a4:3c:ce:ec:77:9a:40:fe:f7:a1:fa:e0:
2d:61:64:e3:b9:62:b0:ea:53:1d:84:71:2e:a3:9c:
52:4c:ef:c8:8d:3f:6f:43:51:5e:9d:c6:d1:a7:be:
a0:a9:61:90:12:51:a4:02:56:74:fd:54:6a:59:56:
26:43:b1:3b:76:61:e9:1d:a1:76:05:95:36:7d:fd:
f9:fd:20:aa:70:63:62:b5:1c:99:da:26:c7:71:b6:
16:82:42:ce:db:c4:71:6a:67:d4:01:9e:16:f6:e8:
24:1d:8c:c8:05:70:01:da:5d:3f:eb:b9:23:a7:75:
f3:68:c7:05:68:fd:e9:fe:5e:3a:2d:e4:5b:f1:84:
0b:93:0e:ea:41:8a:e1:fd:00:11:aa:10:e2:8b:34:
99:25:7b:63:03:e7:ee:5b:26:84:e4:26:bc:a6:5b:
f7:03:6b:a9:bf:e9:50:50:e8:2e:a2:ca:e5:97:8d:
7e:16:d6:2b:87:36:6f:4f:7f:79:8f:e9:66:54:c2:
25:8d:1a:ef:f8:d4:e3:9e:28:7c:06:30:1b:e0:25:
9c:b3:0f:fd:29:b0:a3:0f:f6:28:92:25:69:98:ea:
17:60:69:5c:42:d0:dc:6e:44:36:5f:79:7e:77:2c:
52:20:c1:1b:6f:7a:de:e3:10:4a:5f:bb:89:98:5a:
60:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:22:26:B9:0E:8F:52:00:5D:40:7F:C2:74:D7:70:95:B3:6A:F5:A3
X509v3 Authority Key Identifier:
keyid:43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/6SImuQ6PUgBdQH_CdNdwlbNq9aM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/QwOaaBMPGWMeFSeUbh4SfbHo-dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
84:ce:a8:b0:05:96:7b:ca:e7:55:2c:52:62:9b:bb:af:c9:e1:
ba:d7:95:03:b9:23:9f:a5:cf:57:0e:90:92:e2:88:42:82:d7:
60:bd:7f:8c:27:4a:8e:80:aa:2d:b4:49:91:55:14:d6:3a:83:
18:c9:a6:fa:23:2b:3d:2a:1b:35:42:b3:91:1b:88:6f:57:71:
e8:d7:28:ce:a1:ea:1a:61:5b:61:e1:1d:c8:15:00:3c:fc:28:
3a:dd:d5:7f:e7:4d:91:7e:a5:98:e8:ae:c6:89:24:49:35:18:
e4:78:7b:80:01:a4:d2:79:b9:11:a5:88:36:13:44:0b:a3:3e:
ae:5e:ed:05:32:ed:35:2a:4c:be:91:4d:26:24:44:8c:d3:da:
d1:c4:e5:0a:5b:99:fd:33:d7:42:54:00:ed:e5:35:36:c5:f6:
e4:df:c6:d2:9a:50:60:09:97:39:45:8d:df:5c:0c:6c:a9:53:
46:85:c2:79:31:de:21:a9:b5:01:0a:86:9d:51:c1:19:46:f6:
dd:b9:55:db:aa:4d:42:d9:ea:14:95:c1:22:bf:96:d3:80:14:
f9:88:86:38:fd:e9:23:dc:27:9b:62:b3:17:a7:ae:ae:84:1c:
27:8d:82:50:b7:a0:d7:47:ea:12:b2:14:44:fc:e2:78:9b:ff:
4a:38:d0:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:17:41 2025 by rpki-client