Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/KoBCWqW7UltRa-KL7z0RTTwTA3o.roa
File: KoBCWqW7UltRa-KL7z0RTTwTA3o.roa (raw, json)
Hash identifier: d5TOPbaRIv/Ymz0bQZDSjWHUANFo32jmO1xO4lVn304=
Subject key identifier: 2A:80:42:5A:A5:BB:52:5B:51:6B:E2:8B:EF:3D:11:4D:3C:13:03:7A
Certificate issuer: /CN=43039a68130f19631e1527946e1e127db1e8f9d9
Certificate serial: 018AB9992A0A32B8BFB12A11FB58AC248153
Authority key identifier: 43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/KoBCWqW7UltRa-KL7z0RTTwTA3o.roa
Signing time: Thu 21 Sep 2023 21:15:37 +0000
ROA not before: Thu 21 Sep 2023 21:15:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b9:99:2a:0a:32:b8:bf:b1:2a:11:fb:58:ac:24:81:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43039a68130f19631e1527946e1e127db1e8f9d9
Validity
Not Before: Sep 21 21:15:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2a80425aa5bb525b516be28bef3d114d3c13037a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:33:bb:7e:38:5b:e1:c9:17:76:97:71:f8:cc:
b3:b8:e3:33:0b:1a:3f:0c:f2:6b:69:a4:52:bb:49:
92:61:2d:41:b7:a8:d6:95:55:7e:11:35:1a:8e:26:
d2:74:91:2d:30:08:22:3a:c3:78:eb:d4:3e:f2:48:
df:79:9e:cf:27:dd:64:00:b8:63:3b:b5:85:13:18:
b2:b4:eb:cf:1b:80:07:83:f6:19:de:d8:c0:c5:9c:
01:d5:fc:4f:91:1e:56:23:9a:46:7e:47:d1:88:ac:
63:5e:7f:27:3a:c9:27:21:24:7c:81:d7:cd:ce:6a:
91:df:74:67:b4:df:4c:68:ef:14:08:71:fa:ba:47:
d2:26:de:c6:88:c1:c3:2f:48:25:f7:97:0f:33:c5:
08:1f:1a:57:46:bb:19:e2:ef:3f:17:ce:58:45:4d:
ba:94:e3:7e:90:d3:f4:af:d5:83:cb:62:02:4b:0e:
2a:e4:c4:e7:9e:b3:86:52:9a:42:40:3d:3f:79:98:
4a:1f:72:17:55:d0:48:6e:f7:9b:eb:ef:9a:13:b7:
d5:ed:b9:7d:ec:af:21:7c:3f:6f:3c:3b:89:80:c6:
ce:23:e9:f3:49:6e:0b:1f:3c:a5:e4:44:7f:41:2e:
8f:9e:4c:54:7e:e1:4c:e8:b4:7e:03:f1:1a:0f:46:
8f:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:80:42:5A:A5:BB:52:5B:51:6B:E2:8B:EF:3D:11:4D:3C:13:03:7A
X509v3 Authority Key Identifier:
keyid:43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/KoBCWqW7UltRa-KL7z0RTTwTA3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/QwOaaBMPGWMeFSeUbh4SfbHo-dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
65:39:37:76:29:dd:13:5f:87:af:ee:fe:08:7c:66:48:f9:d3:
02:a6:10:db:23:c4:71:78:ec:f0:2c:20:1b:36:ee:72:37:bc:
17:9e:98:f0:5f:60:6a:7d:4b:db:36:f6:a7:e4:ad:49:f3:7e:
c0:cb:f5:76:7b:4d:e8:e2:f0:75:a9:4b:91:3d:b5:82:b0:93:
48:33:c4:22:37:87:a1:90:ce:b3:07:f5:da:5a:28:d9:6c:5c:
00:7d:ee:8d:bb:93:1b:70:2e:d8:5f:59:a1:86:a4:86:97:8d:
5d:ef:f7:55:94:a6:9b:b2:fa:9d:0e:de:e5:30:af:e1:f9:80:
3d:5c:3e:18:96:64:66:67:29:99:df:65:30:a2:c2:30:17:86:
d7:45:80:ed:d9:d9:83:bb:19:77:6f:13:b2:31:83:9f:d5:ce:
48:88:82:ee:a3:d9:27:69:a6:9b:2d:7f:36:f5:e9:da:41:47:
7c:68:bc:8d:79:4d:d9:6e:60:62:d6:0d:e0:51:84:21:2d:5d:
e2:e8:6a:94:fe:df:18:22:d9:ac:4b:7e:03:db:b9:e8:a1:58:
3f:e0:ae:88:98:7a:1f:b4:cf:85:b1:b2:bd:bf:f5:72:3a:9a:
e7:58:f7:16:0a:10:30:cb:dd:df:8d:8e:da:74:65:db:d6:35:
a3:ed:8b:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 05:46:52 2025 by rpki-client