Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/N_bxV__6SdeK6AMYKgVS4iyR4To.roa
File: N_bxV__6SdeK6AMYKgVS4iyR4To.roa (raw, json)
Hash identifier: i1BvIZGKZ4KiB22DAo20bwM2G2UJU2Eleb/tqjrRkoI=
Subject key identifier: 37:F6:F1:57:FF:FA:49:D7:8A:E8:03:18:2A:05:52:E2:2C:91:E1:3A
Certificate issuer: /CN=43039a68130f19631e1527946e1e127db1e8f9d9
Certificate serial: 018AFEE4BD53066C5D86DD0FEABC7EA29A6A
Authority key identifier: 43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/N_bxV__6SdeK6AMYKgVS4iyR4To.roa
Signing time: Thu 05 Oct 2023 08:11:58 +0000
ROA not before: Thu 05 Oct 2023 08:11:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:fe:e4:bd:53:06:6c:5d:86:dd:0f:ea:bc:7e:a2:9a:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43039a68130f19631e1527946e1e127db1e8f9d9
Validity
Not Before: Oct 5 08:11:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37f6f157fffa49d78ae803182a0552e22c91e13a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ab:7a:03:cf:ea:cb:a5:17:a2:fd:10:6d:46:
d4:b6:0b:50:15:80:b9:b2:59:e1:39:18:45:4e:ed:
bd:60:65:81:63:58:e2:e2:4d:32:7a:91:55:39:0f:
60:8d:56:d5:a6:4c:ed:b6:c7:cd:c3:06:a3:36:21:
1d:ff:8d:4d:c7:c0:03:6e:73:89:f4:5a:db:59:60:
87:28:b5:85:c5:9e:87:82:ec:86:95:15:0b:22:d3:
2e:bd:f2:4b:b2:3d:fc:46:48:06:54:43:0a:a7:c8:
19:1e:64:14:29:78:9d:54:23:98:9b:c6:23:75:f1:
0b:01:fc:20:0d:49:c4:37:e4:a5:35:fb:8b:d1:5f:
ef:d5:dd:6e:3b:56:4a:b7:7f:2d:54:6c:a8:99:b3:
a9:bf:75:df:82:6e:97:1e:51:34:bd:12:06:e7:0c:
97:7b:e5:45:fb:23:72:2c:d0:64:d2:f2:22:13:ec:
c7:0f:b1:79:1c:7d:b2:25:8c:59:d4:3d:70:40:3f:
c6:83:bc:ab:3b:7e:d9:8a:b8:2a:b9:41:ed:1d:d3:
c9:86:17:b1:5e:a0:3e:e6:5c:c6:ab:bd:ce:d4:dc:
34:cf:20:e9:de:cb:4e:28:85:05:5f:44:7e:af:b4:
be:a8:2c:ba:dc:00:1e:31:c7:b6:75:d8:d4:f6:cc:
93:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:F6:F1:57:FF:FA:49:D7:8A:E8:03:18:2A:05:52:E2:2C:91:E1:3A
X509v3 Authority Key Identifier:
keyid:43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/N_bxV__6SdeK6AMYKgVS4iyR4To.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/QwOaaBMPGWMeFSeUbh4SfbHo-dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
71:58:f7:72:bc:03:b5:55:eb:ea:1d:a1:22:d2:8f:21:c2:30:
b0:de:e9:69:86:cf:4c:b4:6c:1f:cc:ee:27:f9:a7:c4:0b:23:
4c:2b:63:e2:d7:1c:27:ba:2d:89:ec:95:92:45:15:7f:fb:57:
f7:32:a7:f2:8b:0a:5f:e0:e7:49:a8:78:4b:c8:93:0f:a3:63:
4e:4b:ea:01:73:c9:d5:d8:c6:24:28:6d:65:e6:1a:dd:e2:90:
dd:b4:fd:ef:d6:66:f7:1a:1d:e5:9f:4a:d7:bd:8e:ed:2f:e2:
f3:a8:ec:43:69:0a:c3:3d:77:d7:2c:a6:14:25:ff:af:e3:29:
bd:34:3f:66:1e:4b:27:13:e5:20:2a:37:47:03:94:7a:25:39:
7b:6f:f9:62:a2:ed:19:ee:aa:24:68:64:bb:ac:9c:54:0f:80:
de:92:68:91:93:8f:41:0f:dd:4a:12:34:67:df:00:c3:7c:a0:
b2:81:f9:f3:8d:bf:96:88:ed:1f:61:3b:3c:69:2c:37:18:94:
41:de:e2:62:a8:f6:6e:49:5a:ea:34:c2:7e:3f:53:a3:59:0a:
d4:79:0e:30:53:09:22:5e:6f:bf:d3:01:b7:53:53:77:27:53:
8d:eb:cc:3e:39:80:c7:e7:ed:7f:54:d9:ff:1d:a8:8f:34:fd:
6d:d0:fb:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 14:27:00 2025 by rpki-client