Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/MOdeu01uKeA8-vRKjLzyc5Pbb18.roa
File: MOdeu01uKeA8-vRKjLzyc5Pbb18.roa (raw, json)
Hash identifier: ImX9vOU88LfoXXavR4eW4e/UFtIVaikHMUz19Fm9Mu4=
Subject key identifier: 30:E7:5E:BB:4D:6E:29:E0:3C:FA:F4:4A:8C:BC:F2:73:93:DB:6F:5F
Certificate issuer: /CN=43039a68130f19631e1527946e1e127db1e8f9d9
Certificate serial: 018AC78B70EC419D6645B8473575CCE05795
Authority key identifier: 43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/MOdeu01uKeA8-vRKjLzyc5Pbb18.roa
Signing time: Sun 24 Sep 2023 14:15:18 +0000
ROA not before: Sun 24 Sep 2023 14:15:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:c7:8b:70:ec:41:9d:66:45:b8:47:35:75:cc:e0:57:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43039a68130f19631e1527946e1e127db1e8f9d9
Validity
Not Before: Sep 24 14:15:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=30e75ebb4d6e29e03cfaf44a8cbcf27393db6f5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:cd:29:74:c7:99:8c:af:90:79:a8:9d:c4:fa:
a5:57:88:57:20:ed:26:e7:f6:d7:4f:ed:2a:22:8e:
9f:51:c7:03:7d:26:46:7a:18:ad:dc:7b:1b:9e:66:
d2:2f:70:f2:10:06:04:26:10:6b:87:cb:8b:9b:ad:
a1:aa:e9:b0:e3:dc:f3:95:7b:6b:91:92:53:3c:95:
22:9e:f5:80:dc:c7:50:7a:a3:84:87:dc:72:ed:56:
ef:36:5f:0b:22:60:a7:c4:9b:ec:8f:c2:f3:3d:16:
cc:8f:63:4e:2f:f9:71:23:60:db:d0:4d:50:75:9b:
06:96:ea:53:c8:7f:29:9a:92:9f:9c:35:c9:78:05:
49:2a:63:64:7d:80:3b:e6:9c:6b:69:11:86:f2:80:
95:f0:58:dd:ac:ea:f2:01:fc:3d:ef:9e:fa:f4:aa:
c1:b5:a5:82:d4:5c:41:9a:39:ec:f8:3b:d8:48:f6:
5d:65:27:d4:84:01:f3:5a:b4:8f:6c:1b:da:b5:6f:
07:c7:a9:59:26:ff:e2:5f:5e:ce:01:46:d3:53:46:
79:8e:cd:06:a6:29:b4:6a:a7:69:c0:4a:b9:5f:e2:
50:f0:01:99:75:4b:53:d5:09:54:b1:14:16:32:fb:
fc:9c:2b:58:08:23:92:73:28:90:7a:52:14:12:98:
c1:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:E7:5E:BB:4D:6E:29:E0:3C:FA:F4:4A:8C:BC:F2:73:93:DB:6F:5F
X509v3 Authority Key Identifier:
keyid:43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/MOdeu01uKeA8-vRKjLzyc5Pbb18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/QwOaaBMPGWMeFSeUbh4SfbHo-dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
9a:d2:46:ed:71:ba:94:ba:20:67:fa:6e:7c:27:27:c7:e4:26:
a1:81:53:89:1f:be:49:0f:5c:8c:6e:75:62:91:c2:49:a2:af:
8c:4c:f8:c0:8e:8e:1d:97:84:70:53:4a:8a:cf:80:07:a3:4d:
42:41:d4:e2:28:92:4c:0d:2b:4e:da:9b:ad:01:da:12:b3:73:
c3:e0:2a:16:13:46:96:f8:03:9c:92:c4:01:51:16:f1:18:10:
64:28:a3:14:79:ef:9c:61:16:cd:57:0b:4d:91:4b:ad:26:a6:
20:b2:de:75:be:08:ee:5a:5c:c6:3b:fc:93:1f:9b:c6:1b:ae:
4f:32:c6:e2:a0:03:a2:50:4f:88:05:52:d6:f1:e4:4b:1f:b2:
2c:f7:d7:9c:0f:e3:a9:a8:65:2f:53:6b:7b:cb:82:57:d0:2e:
07:de:aa:d8:2d:1f:55:da:1c:25:44:d6:60:19:a1:1f:4f:59:
4d:52:20:a2:1b:3f:fc:96:21:79:cd:03:f8:de:52:cb:05:3a:
24:1d:c9:a9:e0:93:a5:e0:1c:2b:4c:f7:fa:47:0c:07:10:54:
c2:48:90:f7:9d:b2:8f:42:12:d2:14:94:8c:05:1b:3f:6f:12:
1b:02:f1:11:f3:52:3a:98:e1:28:8e:44:bc:38:6d:98:5e:25:
ea:89:44:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 16:45:34 2025 by rpki-client