Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/78dUI0Hl3zYmnkHlxD8EB9iBKo4.roa
File: 78dUI0Hl3zYmnkHlxD8EB9iBKo4.roa (raw, json)
Hash identifier: HLRU7D5zuqlo2swxQj0ex69xZpI2cThnmd69g8H2J18=
Subject key identifier: EF:C7:54:23:41:E5:DF:36:26:9E:41:E5:C4:3F:04:07:D8:81:2A:8E
Certificate issuer: /CN=43039a68130f19631e1527946e1e127db1e8f9d9
Certificate serial: 018B5B9865C37CC75E7D5FE60B20AF20690E
Authority key identifier: 43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/78dUI0Hl3zYmnkHlxD8EB9iBKo4.roa
Signing time: Mon 23 Oct 2023 08:13:15 +0000
ROA not before: Mon 23 Oct 2023 08:13:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/96 maxlen: 128
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:5b:98:65:c3:7c:c7:5e:7d:5f:e6:0b:20:af:20:69:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43039a68130f19631e1527946e1e127db1e8f9d9
Validity
Not Before: Oct 23 08:13:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=efc7542341e5df36269e41e5c43f0407d8812a8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:39:27:00:bc:d8:8c:95:64:51:68:31:37:48:
6b:45:d4:2a:e2:5f:dd:dd:a5:3a:83:90:9b:61:63:
eb:76:63:af:c2:db:1c:8c:e2:50:b6:bf:09:b5:ac:
0c:3f:0c:ed:b6:9b:39:1f:d4:0b:03:60:f9:dd:ee:
d4:66:c3:b0:68:d7:3e:86:f0:d6:72:41:58:56:a5:
9d:67:ff:f5:d5:0d:b8:b7:68:7e:26:0a:a0:ab:19:
a0:82:78:2a:08:07:42:f9:ea:fc:1c:75:31:d9:e7:
d6:fa:6b:72:c3:08:13:79:1b:15:ab:e1:88:21:40:
8d:ab:15:de:7d:2f:09:58:f5:00:a0:54:86:e7:d1:
79:e6:78:ef:5b:80:0f:71:fd:04:73:35:46:62:89:
4b:91:77:ec:bf:e9:17:14:2c:8b:8c:47:bd:45:3e:
4c:42:cd:eb:f8:6b:4d:07:5c:7d:84:f4:00:75:4a:
f1:bd:ef:37:81:6d:16:10:f6:ab:98:98:fb:32:06:
56:6c:3a:e2:ab:93:b7:8a:e7:da:79:78:83:b4:28:
b7:eb:23:4e:20:44:f9:3e:81:9c:22:70:fd:44:07:
3e:64:b1:31:2f:ee:c7:4f:2d:d1:41:42:5a:31:e4:
5d:37:20:0a:9e:4b:3a:86:a1:01:2a:a3:6c:a3:6a:
6c:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:C7:54:23:41:E5:DF:36:26:9E:41:E5:C4:3F:04:07:D8:81:2A:8E
X509v3 Authority Key Identifier:
keyid:43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/78dUI0Hl3zYmnkHlxD8EB9iBKo4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/QwOaaBMPGWMeFSeUbh4SfbHo-dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
4e:00:d6:cc:07:ea:df:5d:b9:70:2d:82:c3:c7:c7:47:48:45:
b6:4c:b6:5b:88:c4:b8:41:92:03:22:64:82:b1:87:39:20:8c:
a9:fd:04:a4:7b:4b:6c:ba:75:94:30:ba:9a:ff:62:60:c8:74:
08:19:7f:a1:a8:f2:99:b6:d9:fc:e1:1f:57:c5:70:a7:5a:fc:
57:c9:c4:38:dc:ad:78:29:4a:ae:03:1d:8d:2d:dc:56:96:8f:
0d:7a:9e:9b:fc:4a:90:94:f7:c9:a8:25:64:24:dc:ec:f8:70:
93:98:e7:13:d6:ad:d3:81:92:df:48:70:51:d1:bc:4d:57:4b:
04:8c:45:51:c2:59:7f:41:f8:b2:96:5d:14:76:8c:5f:b6:d8:
c8:48:4c:ae:4a:4c:93:1e:d6:73:79:47:85:ce:ef:5a:87:b9:
b7:c0:59:14:93:95:12:66:58:0d:b5:00:89:41:99:5b:ae:53:
4e:d8:7a:f8:24:6b:44:ba:b8:7e:58:00:dc:76:fa:ff:50:c3:
ce:78:7e:bf:75:07:2a:30:65:04:67:03:40:ed:0d:d1:f0:eb:
d9:41:b2:b3:17:8e:0b:55:f8:17:1e:1a:b7:29:43:9f:7d:b5:
9b:25:bc:8a:e2:fc:50:91:6b:c2:29:4d:3d:73:0b:8e:30:bc:
c6:e5:25:1c
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYtbmGXDfMdefV/mCyCvIGkOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzMDM5YTY4MTMwZjE5NjMxZTE1Mjc5NDZlMWUxMjdkYjFl
OGY5ZDkwHhcNMjMxMDIzMDgxMzE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZmM3NTQyMzQxZTVkZjM2MjY5ZTQxZTVjNDNmMDQwN2Q4ODEyYThlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwzknALzYjJVkUWgxN0hrRdQq4l/d
3aU6g5CbYWPrdmOvwtscjOJQtr8JtawMPwzttps5H9QLA2D53e7UZsOwaNc+hvDW
ckFYVqWdZ//11Q24t2h+JgqgqxmggngqCAdC+er8HHUx2efW+mtywwgTeRsVq+GI
IUCNqxXefS8JWPUAoFSG59F55njvW4APcf0EczVGYolLkXfsv+kXFCyLjEe9RT5M
Qs3r+GtNB1x9hPQAdUrxve83gW0WEParmJj7MgZWbDriq5O3iufaeXiDtCi36yNO
IET5PoGcInD9RAc+ZLExL+7HTy3RQUJaMeRdNyAKnks6hqEBKqNso2ps6QIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFO/HVCNB5d82Jp5B5cQ/BAfYgSqOMB8GA1UdIwQY
MBaAFEMDmmgTDxljHhUnlG4eEn2x6PnZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXdPYWFCTVBHV01lRlNlVWJoNFNmYkhvLWRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9mNjAxNzgtOTkxYS00MjYxLTk2YTAt
ZGQ1YzMwMGJlNTRlLzEvNzhkVUkwSGwzelltbmtIbHhEOEVCOWlCS280LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9mNjAxNzgtOTkxYS00MjYxLTk2YTAtZGQ1YzMwMGJlNTRl
LzEvUXdPYWFCTVBHV01lRlNlVWJoNFNmYkhvLWRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAE4A1swH6t9duXAtgsPH
x0dIRbZMtluIxLhBkgMiZIKxhzkgjKn9BKR7S2y6dZQwupr/YmDIdAgZf6Go8pm2
2fzhH1fFcKda/FfJxDjcrXgpSq4DHY0t3FaWjw16npv8SpCU98moJWQk3Oz4cJOY
5xPWrdOBkt9IcFHRvE1XSwSMRVHCWX9B+LKWXRR2jF+22MhITK5KTJMe1nN5R4XO
71qHubfAWRSTlRJmWA21AIlBmVuuU07Yevgka0S6uH5YANx2+v9Qw854fr91Byow
ZQRnA0DtDdHw69lBsrMXjgtV+BceGrcpQ599tZslvIri/FCRa8IpTT1zC44wvMbl
JRw=
-----END CERTIFICATE-----
Generated at Sat Apr 19 15:21:30 2025 by rpki-client