Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/_gDz9tfRDvisxKbGvi0mCQPwGyA.roa
File: _gDz9tfRDvisxKbGvi0mCQPwGyA.roa (raw, json)
Hash identifier: Di/rTMybCTryYWp82DMyNxrK+VT234qdrPw1aFzasjM=
Subject key identifier: FE:00:F3:F6:D7:D1:0E:F8:AC:C4:A6:C6:BE:2D:26:09:03:F0:1B:20
Certificate issuer: /CN=43039a68130f19631e1527946e1e127db1e8f9d9
Certificate serial: 018B0B8D7CBB55FBE558CD0B744AF4476D61
Authority key identifier: 43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/_gDz9tfRDvisxKbGvi0mCQPwGyA.roa
Signing time: Sat 07 Oct 2023 19:11:43 +0000
ROA not before: Sat 07 Oct 2023 19:11:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:0b:8d:7c:bb:55:fb:e5:58:cd:0b:74:4a:f4:47:6d:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43039a68130f19631e1527946e1e127db1e8f9d9
Validity
Not Before: Oct 7 19:11:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe00f3f6d7d10ef8acc4a6c6be2d260903f01b20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:41:10:82:f5:02:9b:8b:57:92:0b:f2:dd:6e:
17:e6:78:13:08:fa:7d:cf:06:9c:e4:a9:63:ec:14:
f2:96:b0:c0:b5:58:15:73:5c:fd:40:0c:39:5a:de:
f8:84:69:d0:67:69:c4:b7:8a:0e:40:31:16:4c:1f:
45:85:35:29:72:c8:9e:4a:b2:e3:f7:bc:32:78:8b:
a3:32:79:3d:6a:4c:d5:a2:c7:0b:cd:05:9d:61:69:
ce:b6:b6:86:dc:7e:1a:cd:44:d8:47:7b:46:c9:ac:
4a:fd:80:45:d1:15:5d:05:29:55:8b:8e:4e:10:82:
8e:91:fb:77:4a:52:89:f6:4c:ad:93:4e:d0:36:95:
cf:38:b3:73:d7:96:9b:6b:7f:df:4a:56:4a:76:dd:
10:06:5a:d1:4a:9c:c9:85:02:b0:d7:47:24:18:bc:
9a:f7:3f:c0:20:5e:b5:de:7b:f0:24:c4:f6:e8:7d:
b9:cf:a4:d4:07:23:bb:1a:b0:ad:1f:4e:aa:69:bb:
92:18:c6:ad:89:75:60:0a:a5:be:2f:eb:81:f4:68:
80:78:e4:e2:9e:65:5d:f5:9c:b4:9b:52:1a:9e:7f:
bf:ef:67:e5:d0:3e:49:69:cf:77:54:47:68:05:08:
a8:46:8d:df:66:5b:d1:35:d7:a4:71:b0:21:3d:d0:
ea:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:00:F3:F6:D7:D1:0E:F8:AC:C4:A6:C6:BE:2D:26:09:03:F0:1B:20
X509v3 Authority Key Identifier:
keyid:43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/_gDz9tfRDvisxKbGvi0mCQPwGyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/QwOaaBMPGWMeFSeUbh4SfbHo-dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
b9:0d:5a:3f:e3:4f:10:ad:b7:64:5d:4d:4a:b8:0c:62:40:98:
15:ee:c1:6b:79:d9:81:23:00:b6:08:b5:d8:3f:89:21:42:19:
b4:91:40:73:65:bc:2d:8c:77:e3:c4:e4:5b:70:2a:b2:f9:61:
df:f6:fe:44:ec:cb:06:ca:81:36:21:41:46:62:07:82:60:06:
d0:cc:70:c6:c7:a1:7a:3e:24:94:b5:68:53:e7:df:09:5a:45:
a5:8f:bb:85:0b:eb:8f:7e:a2:4b:7f:e7:00:b9:96:32:c6:ad:
29:f2:0d:a1:73:20:80:1f:4e:e8:1c:99:f3:0e:4b:7d:50:da:
8f:04:73:32:8b:e3:86:bc:8f:c7:4a:7c:c1:bf:de:64:7b:4f:
83:3f:7e:82:ea:96:9a:db:29:eb:7e:53:ec:6c:7a:cf:b4:84:
c6:ab:b1:73:54:4d:aa:bf:a3:8c:38:b8:c3:28:dd:11:96:b2:
5f:13:a4:8b:2d:aa:88:c2:56:da:c9:05:94:48:93:9f:72:ee:
c2:20:9f:39:c1:67:5b:17:96:05:cd:9b:48:8a:c6:3f:f6:b6:
2c:16:dd:c4:63:bd:51:92:5e:d9:19:6c:5c:ed:19:6b:14:34:
9a:f2:5c:47:ed:43:f2:53:98:7a:f9:57:b9:8d:55:c3:32:9e:
07:52:0f:f2
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYsLjXy7VfvlWM0LdEr0R21hMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzMDM5YTY4MTMwZjE5NjMxZTE1Mjc5NDZlMWUxMjdkYjFl
OGY5ZDkwHhcNMjMxMDA3MTkxMTQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZTAwZjNmNmQ3ZDEwZWY4YWNjNGE2YzZiZTJkMjYwOTAzZjAxYjIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg0EQgvUCm4tXkgvy3W4X5ngTCPp9
zwac5Klj7BTylrDAtVgVc1z9QAw5Wt74hGnQZ2nEt4oOQDEWTB9FhTUpcsieSrLj
97wyeIujMnk9akzVoscLzQWdYWnOtraG3H4azUTYR3tGyaxK/YBF0RVdBSlVi45O
EIKOkft3SlKJ9kytk07QNpXPOLNz15aba3/fSlZKdt0QBlrRSpzJhQKw10ckGLya
9z/AIF613nvwJMT26H25z6TUByO7GrCtH06qabuSGMatiXVgCqW+L+uB9GiAeOTi
nmVd9Zy0m1Iann+/72fl0D5Jac93VEdoBQioRo3fZlvRNdekcbAhPdDqBwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFP4A8/bX0Q74rMSmxr4tJgkD8BsgMB8GA1UdIwQY
MBaAFEMDmmgTDxljHhUnlG4eEn2x6PnZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXdPYWFCTVBHV01lRlNlVWJoNFNmYkhvLWRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9mNjAxNzgtOTkxYS00MjYxLTk2YTAt
ZGQ1YzMwMGJlNTRlLzEvX2dEejl0ZlJEdmlzeEtiR3ZpMG1DUVB3R3lBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9mNjAxNzgtOTkxYS00MjYxLTk2YTAtZGQ1YzMwMGJlNTRl
LzEvUXdPYWFCTVBHV01lRlNlVWJoNFNmYkhvLWRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBALkNWj/jTxCtt2RdTUq4
DGJAmBXuwWt52YEjALYItdg/iSFCGbSRQHNlvC2Md+PE5FtwKrL5Yd/2/kTsywbK
gTYhQUZiB4JgBtDMcMbHoXo+JJS1aFPn3wlaRaWPu4UL649+okt/5wC5ljLGrSny
DaFzIIAfTugcmfMOS31Q2o8EczKL44a8j8dKfMG/3mR7T4M/foLqlprbKet+U+xs
es+0hMarsXNUTaq/o4w4uMMo3RGWsl8TpIstqojCVtrJBZRIk59y7sIgnznBZ1sX
lgXNm0iKxj/2tiwW3cRjvVGSXtkZbFztGWsUNJryXEftQ/JTmHr5V7mNVcMyngdS
D/I=
-----END CERTIFICATE-----
Generated at Tue Apr 22 01:32:18 2025 by rpki-client