Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/Gk6-smYUZ_uBHeKmzGurgWaxhjA.roa
File: Gk6-smYUZ_uBHeKmzGurgWaxhjA.roa (raw, json)
Hash identifier: /X2gxtUv7iYuHM+8zUyJTAl4PXdg1FT93ZztNY8Ds1c=
Subject key identifier: 1A:4E:BE:B2:66:14:67:FB:81:1D:E2:A6:CC:6B:AB:81:66:B1:86:30
Certificate issuer: /CN=43039a68130f19631e1527946e1e127db1e8f9d9
Certificate serial: 018B36E6C81D67BBB967E27BF37D28A33F18
Authority key identifier: 43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/Gk6-smYUZ_uBHeKmzGurgWaxhjA.roa
Signing time: Mon 16 Oct 2023 05:12:55 +0000
ROA not before: Mon 16 Oct 2023 05:12:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/96 maxlen: 128
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:36:e6:c8:1d:67:bb:b9:67:e2:7b:f3:7d:28:a3:3f:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43039a68130f19631e1527946e1e127db1e8f9d9
Validity
Not Before: Oct 16 05:12:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a4ebeb2661467fb811de2a6cc6bab8166b18630
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:08:6c:8b:ba:65:3b:6d:62:4f:cc:3a:58:7b:
00:3b:ce:35:6a:02:58:17:28:3d:92:87:88:82:6c:
ef:ce:f9:61:74:da:10:b8:00:ee:c7:6c:32:e7:bb:
03:39:0b:58:59:f5:81:32:6e:4c:4f:98:a1:24:b5:
dd:e7:df:e2:e8:ff:99:4e:40:d9:3d:f1:49:8d:93:
49:62:8b:3f:ed:93:ef:56:7d:e7:43:a9:72:92:23:
76:21:00:84:e0:2b:f0:c6:0a:fb:27:be:6f:9e:14:
bf:4a:88:2c:8a:03:97:ef:d0:eb:13:d4:32:53:72:
17:14:4f:6a:c1:dc:f2:e9:b6:1f:82:61:21:7a:11:
de:4c:4c:12:2f:72:2b:78:03:cb:75:ab:26:e7:01:
e1:e1:ee:08:32:7d:44:77:2b:fc:4a:40:0d:b8:25:
9f:86:c6:de:b1:70:f3:1a:fd:7e:df:a3:cd:29:ef:
2e:45:5c:ba:b3:cf:21:88:30:81:c4:d6:9b:e4:be:
e3:3a:33:1e:23:97:68:83:f0:a2:a4:60:75:a2:28:
7d:07:28:70:a0:34:e3:f0:65:7c:02:ef:32:17:5f:
f3:71:6b:3d:1c:a1:9b:17:a8:56:69:5a:45:1b:0b:
4b:4f:89:3d:03:b4:89:ea:10:6c:44:cd:fc:ba:37:
a9:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:4E:BE:B2:66:14:67:FB:81:1D:E2:A6:CC:6B:AB:81:66:B1:86:30
X509v3 Authority Key Identifier:
keyid:43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/Gk6-smYUZ_uBHeKmzGurgWaxhjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/QwOaaBMPGWMeFSeUbh4SfbHo-dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
48:69:19:21:3d:c5:9c:d4:0b:b0:78:21:e7:68:b7:6b:dd:01:
a3:76:84:33:b6:0f:9b:57:5c:77:49:2b:00:d6:9f:b1:43:ce:
39:c8:67:09:34:ec:db:7f:28:a3:f3:a4:a7:6d:ee:dd:5a:1f:
16:80:03:d8:fc:9d:90:cf:06:90:55:53:03:a1:e5:72:a7:75:
f7:92:a3:4e:4d:25:80:f9:97:3a:d9:f1:47:a2:53:7d:c6:91:
86:3b:1d:96:4a:c2:39:4d:58:dd:70:f1:6b:c5:25:68:16:dd:
e8:e6:1d:8c:53:70:92:5d:da:ba:3b:b9:86:9e:07:a8:8d:63:
2f:33:95:66:95:b5:7e:eb:16:80:ca:1b:09:e4:8e:69:a4:f8:
60:5b:93:45:4c:6b:52:d7:91:82:66:13:d2:fe:ae:e0:dd:d5:
6e:18:e2:4c:12:f6:08:0b:a5:82:69:a7:67:b6:a8:dd:f4:c7:
ff:c2:b0:ec:45:63:73:79:b7:7e:5a:b6:a0:0f:60:d2:cc:11:
b8:de:cb:9c:73:65:68:f5:62:8e:35:1a:1c:ca:0e:4c:db:bb:
fc:4d:78:60:b3:cd:9c:31:db:d4:ae:a9:a3:ee:e1:a3:bc:e3:
42:ef:5f:f3:09:5b:24:ed:4b:ab:1c:aa:f6:d3:5b:d3:fd:c4:
4f:11:1d:0b
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYs25sgdZ7u5Z+J7830ooz8YMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzMDM5YTY4MTMwZjE5NjMxZTE1Mjc5NDZlMWUxMjdkYjFl
OGY5ZDkwHhcNMjMxMDE2MDUxMjU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYTRlYmViMjY2MTQ2N2ZiODExZGUyYTZjYzZiYWI4MTY2YjE4NjMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ghsi7plO21iT8w6WHsAO841agJY
Fyg9koeIgmzvzvlhdNoQuADux2wy57sDOQtYWfWBMm5MT5ihJLXd59/i6P+ZTkDZ
PfFJjZNJYos/7ZPvVn3nQ6lykiN2IQCE4Cvwxgr7J75vnhS/SogsigOX79DrE9Qy
U3IXFE9qwdzy6bYfgmEhehHeTEwSL3IreAPLdasm5wHh4e4IMn1Edyv8SkANuCWf
hsbesXDzGv1+36PNKe8uRVy6s88hiDCBxNab5L7jOjMeI5dog/CipGB1oih9Byhw
oDTj8GV8Au8yF1/zcWs9HKGbF6hWaVpFGwtLT4k9A7SJ6hBsRM38ujepNQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFBpOvrJmFGf7gR3ipsxrq4FmsYYwMB8GA1UdIwQY
MBaAFEMDmmgTDxljHhUnlG4eEn2x6PnZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXdPYWFCTVBHV01lRlNlVWJoNFNmYkhvLWRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9mNjAxNzgtOTkxYS00MjYxLTk2YTAt
ZGQ1YzMwMGJlNTRlLzEvR2s2LXNtWVVaX3VCSGVLbXpHdXJnV2F4aGpBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9mNjAxNzgtOTkxYS00MjYxLTk2YTAtZGQ1YzMwMGJlNTRl
LzEvUXdPYWFCTVBHV01lRlNlVWJoNFNmYkhvLWRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAEhpGSE9xZzUC7B4Iedo
t2vdAaN2hDO2D5tXXHdJKwDWn7FDzjnIZwk07Nt/KKPzpKdt7t1aHxaAA9j8nZDP
BpBVUwOh5XKndfeSo05NJYD5lzrZ8UeiU33GkYY7HZZKwjlNWN1w8WvFJWgW3ejm
HYxTcJJd2ro7uYaeB6iNYy8zlWaVtX7rFoDKGwnkjmmk+GBbk0VMa1LXkYJmE9L+
ruDd1W4Y4kwS9ggLpYJpp2e2qN30x//CsOxFY3N5t35atqAPYNLMEbjey5xzZWj1
Yo41GhzKDkzbu/xNeGCzzZwx29SuqaPu4aO840LvX/MJWyTtS6scqvbTW9P9xE8R
HQs=
-----END CERTIFICATE-----
Generated at Sat Apr 19 05:50:01 2025 by rpki-client