Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/YtB6JVFePzWLp3X4mDPLZ-URboQ.roa
File: YtB6JVFePzWLp3X4mDPLZ-URboQ.roa (raw, json)
Hash identifier: 9z4NBGcfhjnC3vcRX4ApdzLqRkBNISMTjCyQdiD9qP4=
Subject key identifier: 62:D0:7A:25:51:5E:3F:35:8B:A7:75:F8:98:33:CB:67:E5:11:6E:84
Certificate issuer: /CN=43039a68130f19631e1527946e1e127db1e8f9d9
Certificate serial: 018B0DEAA75AED8FDDE25689BC6161E399C6
Authority key identifier: 43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/YtB6JVFePzWLp3X4mDPLZ-URboQ.roa
Signing time: Sun 08 Oct 2023 06:12:43 +0000
ROA not before: Sun 08 Oct 2023 06:12:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:0d:ea:a7:5a:ed:8f:dd:e2:56:89:bc:61:61:e3:99:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43039a68130f19631e1527946e1e127db1e8f9d9
Validity
Not Before: Oct 8 06:12:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62d07a25515e3f358ba775f89833cb67e5116e84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:ef:b9:5b:3d:0a:36:51:7a:4f:3b:0f:1e:80:
84:7a:7c:38:9c:8f:0f:54:22:1e:05:30:8a:35:f5:
a9:b2:5a:14:4a:90:cd:b2:ac:b7:40:7f:ec:6e:84:
3c:79:d8:1b:88:f5:27:77:08:83:a6:ee:2a:91:70:
0c:73:9a:41:98:ee:8a:b8:48:00:1b:78:eb:27:bf:
df:3d:dc:b9:a4:64:53:a5:bb:05:e0:30:da:94:15:
c2:e4:ab:6d:c9:ae:92:0f:bd:5d:aa:a8:30:bf:c3:
16:c9:4d:fc:df:3c:17:61:39:0f:be:0b:ad:65:47:
a3:9e:28:d6:b2:03:78:bb:dc:dc:52:27:0c:36:5e:
e5:2e:b8:ae:54:ec:e0:c5:51:a7:ee:2e:03:68:e3:
ce:44:67:3b:05:43:28:c5:ae:3a:2e:bd:21:94:03:
cb:70:56:7b:97:f8:c6:0d:31:79:68:94:a6:bd:5e:
81:b8:26:c2:d1:99:70:d4:42:d7:53:79:9a:70:d1:
0a:e3:62:58:9f:53:06:27:d4:37:dc:89:d9:a9:3c:
bf:26:45:a1:f1:53:dc:90:82:f9:f3:45:59:13:d9:
f8:65:2a:6c:46:47:62:29:44:45:aa:69:a4:21:86:
36:72:6c:04:74:09:5b:44:8f:96:2b:46:f5:57:bd:
da:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:D0:7A:25:51:5E:3F:35:8B:A7:75:F8:98:33:CB:67:E5:11:6E:84
X509v3 Authority Key Identifier:
keyid:43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/YtB6JVFePzWLp3X4mDPLZ-URboQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/QwOaaBMPGWMeFSeUbh4SfbHo-dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
b2:90:db:54:03:d2:50:58:cd:fd:0a:af:52:72:e2:da:c7:08:
25:83:eb:1c:33:84:e3:44:ff:e5:08:40:02:a6:66:79:13:1f:
07:5b:91:6f:b0:30:d3:26:6f:06:37:ec:36:35:ee:98:b7:1c:
49:10:e7:18:09:d6:80:87:ab:a0:d5:b1:d3:2f:86:ff:bc:7f:
9c:19:76:6a:a9:9f:5d:8a:b0:27:6c:15:6e:00:82:62:ce:72:
cb:08:9e:9e:1a:37:6e:ea:3d:be:22:12:a9:99:ac:6d:c5:3a:
ec:72:4d:ed:f8:b4:22:51:a9:cf:7c:e9:c2:21:45:e5:d9:bc:
a2:4e:ba:f1:70:72:8f:5d:e2:7a:56:41:79:90:4c:d0:5b:ee:
fc:bf:ed:07:c3:15:aa:56:2b:cb:b4:3e:84:46:cf:23:d5:ac:
27:7e:74:a1:8d:28:fc:b5:8e:69:63:17:ae:d9:b0:f0:c6:d0:
a5:93:88:a0:23:7c:62:73:37:98:89:d2:1a:98:8f:b8:f6:d0:
5d:9c:d9:50:44:ae:09:8d:e6:db:d9:c3:31:10:de:76:1d:9b:
f2:9e:61:54:13:1c:0d:be:76:96:f6:38:f6:2f:47:e8:db:7e:
e9:f9:dd:2a:cd:d8:80:d0:1e:5b:f4:21:92:e7:df:6f:65:36:
26:d1:29:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 06:48:26 2025 by rpki-client