Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/Bo4cZeLI5p6aBVsDtnZWhVuBQKs.roa
File: Bo4cZeLI5p6aBVsDtnZWhVuBQKs.roa (raw, json)
Hash identifier: E3rzZOkCUxuBtDNIWbHmJGL9sADDCKWRnKvQi+rgilQ=
Subject key identifier: 06:8E:1C:65:E2:C8:E6:9E:9A:05:5B:03:B6:76:56:85:5B:81:40:AB
Certificate issuer: /CN=43039a68130f19631e1527946e1e127db1e8f9d9
Certificate serial: 018B65782AB743AC8490921D93BC0F9A01BC
Authority key identifier: 43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/Bo4cZeLI5p6aBVsDtnZWhVuBQKs.roa
Signing time: Wed 25 Oct 2023 06:14:15 +0000
ROA not before: Wed 25 Oct 2023 06:14:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/96 maxlen: 128
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:65:78:2a:b7:43:ac:84:90:92:1d:93:bc:0f:9a:01:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43039a68130f19631e1527946e1e127db1e8f9d9
Validity
Not Before: Oct 25 06:14:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=068e1c65e2c8e69e9a055b03b67656855b8140ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:b9:3d:3a:99:32:e1:ea:cd:23:9e:02:0b:e2:
3a:6d:e6:0a:60:04:13:b8:21:fd:a9:49:0a:b9:c2:
c0:0a:73:f4:db:55:45:41:4b:6b:8e:42:4b:fc:c7:
60:04:45:2d:6f:4b:86:dd:0f:45:af:76:37:cf:f8:
66:1a:a0:15:39:79:fe:13:ed:b6:fc:58:82:5a:47:
06:8b:78:a0:f6:7c:b7:95:13:83:f3:49:1c:63:8e:
9b:35:da:f5:78:01:c0:c3:2e:ed:33:61:06:cc:e3:
3d:9e:8b:29:2f:48:b9:4f:ef:20:b5:84:da:a2:0f:
b6:c2:ad:61:71:f3:e0:77:25:e1:e0:cf:66:09:64:
bb:ad:1c:ce:25:11:0b:8c:73:5f:d4:12:5a:b5:68:
52:a7:39:3b:fb:7d:4c:c1:fa:4d:a2:07:7d:cd:fd:
b8:b0:66:4d:50:0f:b9:ba:04:de:e1:22:00:83:e9:
9d:32:73:31:7b:e7:ad:90:30:a5:a7:9e:7a:7c:61:
90:fd:1a:f0:66:38:ba:34:26:af:4d:91:d5:7a:78:
00:44:9c:ea:21:df:ce:ec:1b:f2:cc:5a:b5:1c:bb:
56:45:7d:19:44:2a:1c:46:97:6f:fa:8b:a6:bd:da:
b1:f3:0a:af:11:5f:70:7c:0c:2f:0b:66:0b:c4:b4:
c1:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:8E:1C:65:E2:C8:E6:9E:9A:05:5B:03:B6:76:56:85:5B:81:40:AB
X509v3 Authority Key Identifier:
keyid:43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/Bo4cZeLI5p6aBVsDtnZWhVuBQKs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/QwOaaBMPGWMeFSeUbh4SfbHo-dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
68:95:3b:a8:52:96:61:eb:08:4e:fa:11:1b:8d:d1:de:9e:8f:
c7:c0:f7:bd:ed:10:be:b2:71:53:53:22:45:b8:a1:9e:a1:f7:
e7:58:f8:3d:f0:84:72:ee:1a:bd:d0:43:8b:22:1a:b0:95:59:
ac:ab:f0:c6:fe:12:1e:42:41:26:b9:de:eb:1b:5b:4b:8b:5f:
c1:d4:f5:21:17:18:7f:ea:36:ee:a0:87:69:cc:32:d9:5a:ae:
46:b6:fc:66:42:8f:73:27:7d:e8:26:d8:6a:aa:9d:ec:23:13:
40:be:e8:eb:8f:22:78:8d:63:0f:1a:ff:58:5e:0a:25:96:e3:
88:03:8e:3d:74:ae:a8:ad:c7:dc:24:88:eb:60:6d:47:f4:32:
e5:d0:bb:cd:7c:0b:49:5f:9e:40:82:c8:1f:1b:d6:d7:f7:a6:
29:c8:09:33:c0:2c:86:56:26:31:61:61:bd:74:55:da:d1:07:
a3:c8:7b:70:33:ac:8e:9c:db:52:c3:05:ad:bd:46:9c:84:d3:
fe:73:e4:e8:31:33:70:d7:80:21:c9:de:00:ce:fd:50:6e:63:
c4:0a:da:e9:c7:08:58:49:0a:cd:e2:ab:4a:46:09:ba:39:75:
33:d6:d6:11:82:c1:23:c9:92:be:40:f7:3a:3a:1b:2f:34:d7:
93:d4:c3:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 05:50:04 2025 by rpki-client