Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/Y_NoEiESQBiA3nwHdseFaVX4GhM.roa
File: Y_NoEiESQBiA3nwHdseFaVX4GhM.roa (raw, json)
Hash identifier: WwXuwdkh3aN4jmGmyiovarNIT7Ljwhra/0Zanm3dfCI=
Subject key identifier: 63:F3:68:12:21:12:40:18:80:DE:7C:07:76:C7:85:69:55:F8:1A:13
Certificate issuer: /CN=43039a68130f19631e1527946e1e127db1e8f9d9
Certificate serial: 018B119167901F8FDA4575B1BBEA4049D765
Authority key identifier: 43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/Y_NoEiESQBiA3nwHdseFaVX4GhM.roa
Signing time: Sun 08 Oct 2023 23:13:43 +0000
ROA not before: Sun 08 Oct 2023 23:13:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:11:91:67:90:1f:8f:da:45:75:b1:bb:ea:40:49:d7:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43039a68130f19631e1527946e1e127db1e8f9d9
Validity
Not Before: Oct 8 23:13:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=63f368122112401880de7c0776c7856955f81a13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:aa:c8:73:9d:e5:82:c7:c8:c8:4f:fd:81:36:
b5:c2:31:dd:88:29:41:fd:f0:77:4b:68:81:da:39:
93:9b:67:02:a9:f3:de:7b:be:44:a6:08:5a:72:52:
da:e0:4a:e4:f1:8f:e2:39:e2:51:71:7e:00:c5:c9:
07:8c:5a:1c:09:a7:58:97:65:f5:bc:16:8e:ca:f4:
9d:b9:43:f1:37:99:e1:b1:0b:2c:49:0a:0f:0a:01:
18:7b:9a:d8:d2:86:02:7b:9c:e3:dd:ae:b6:35:9d:
54:50:4a:32:31:a4:93:d7:de:50:d0:96:a6:18:33:
ac:ec:60:50:54:4d:df:e9:c3:ba:c8:11:78:ab:54:
77:7a:a6:6f:d2:e9:30:f9:6c:b6:e4:cd:c9:32:29:
ea:3a:a9:0f:f9:d7:f9:28:d3:30:08:9e:45:33:6a:
22:92:f2:d1:83:6f:e1:15:28:1d:9b:e2:11:4a:76:
62:7e:92:90:84:b9:fb:40:a8:5d:87:51:db:d7:28:
36:79:e1:77:1a:ec:12:11:49:3c:f2:a9:4a:f5:4f:
4d:68:f0:64:f8:3e:0a:d7:75:54:27:b5:7b:4c:9a:
4c:6e:55:01:6d:3a:8f:38:d4:96:58:6b:8e:b1:c7:
3a:82:5d:4e:fa:be:5e:4e:17:c1:bd:09:94:65:b3:
ed:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:F3:68:12:21:12:40:18:80:DE:7C:07:76:C7:85:69:55:F8:1A:13
X509v3 Authority Key Identifier:
keyid:43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/Y_NoEiESQBiA3nwHdseFaVX4GhM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/QwOaaBMPGWMeFSeUbh4SfbHo-dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
77:f4:44:00:82:ea:f8:97:02:97:ff:01:4a:77:15:2f:80:e6:
23:67:7c:10:75:ca:28:df:ee:06:1a:d0:2b:c4:a1:6c:11:9b:
2a:d4:ba:e2:db:7d:fc:42:76:26:6d:48:b2:cf:af:c5:91:f5:
3f:59:79:92:a3:a6:f9:92:c9:da:9a:d8:92:13:3b:04:f5:18:
f1:9b:c9:77:f4:ea:92:fe:a1:23:8e:81:66:81:68:7a:51:82:
38:65:f5:25:e4:ac:08:b3:e2:0d:88:f9:27:dc:02:fc:75:10:
9b:04:dd:92:bd:b9:35:4c:57:43:82:e4:24:75:a5:ac:f4:ee:
36:db:aa:de:a5:fe:00:e3:09:db:0b:08:87:24:52:e8:b7:e4:
b0:47:4a:b5:75:8e:da:b7:14:a3:d6:20:5d:65:9f:88:a0:38:
ac:7e:ea:02:57:c5:31:f5:d9:06:72:f3:ab:7a:a7:d9:82:90:
b5:b9:6c:c4:e9:08:fb:c7:53:5a:b6:52:a2:62:03:6e:f9:96:
e8:e1:bf:08:13:13:dd:3b:fc:d1:df:8d:55:93:b5:6a:db:1a:
42:c3:7f:9f:f9:b4:df:f1:e6:14:04:9f:88:3f:dd:db:91:48:
4a:0b:1f:dc:8d:f0:87:50:a6:d5:3a:1d:f4:ae:32:ea:6e:61:
79:71:6e:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 03:35:36 2025 by rpki-client