Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/jX7q7efcGIeREZufscknXX1Ordg.roa
File: jX7q7efcGIeREZufscknXX1Ordg.roa (raw, json)
Hash identifier: CfTCu5UjxU6pzxS9pnc1nMXfp7XbhaEPEpdxWiFi9Yc=
Subject key identifier: 8D:7E:EA:ED:E7:DC:18:87:91:11:9B:9F:B1:C9:27:5D:7D:4E:AD:D8
Certificate issuer: /CN=43039a68130f19631e1527946e1e127db1e8f9d9
Certificate serial: 018B6DD76A7E72DAD8746DEE9D0DFF77F5C0
Authority key identifier: 43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/jX7q7efcGIeREZufscknXX1Ordg.roa
Signing time: Thu 26 Oct 2023 21:15:15 +0000
ROA not before: Thu 26 Oct 2023 21:15:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/96 maxlen: 128
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:6d:d7:6a:7e:72:da:d8:74:6d:ee:9d:0d:ff:77:f5:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43039a68130f19631e1527946e1e127db1e8f9d9
Validity
Not Before: Oct 26 21:15:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8d7eeaede7dc188791119b9fb1c9275d7d4eadd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e3:fb:0a:ed:8b:f7:d8:a0:51:ed:d5:9b:4c:
42:07:9d:4b:03:d5:7b:77:07:b7:78:b5:05:24:1a:
1e:53:7c:73:32:26:f5:93:4a:36:c9:7c:2d:91:c8:
cc:db:80:5d:fb:27:0a:3b:69:82:86:cb:86:b6:5e:
88:6d:87:d9:e4:bf:21:b1:76:e6:82:af:88:13:a1:
a0:00:39:da:e9:b6:2e:c0:34:65:11:ee:97:ec:33:
fa:e5:dc:8b:34:0c:da:67:30:af:43:2f:7d:ac:42:
d0:f8:f6:49:a1:7d:c2:98:ee:a7:e3:41:56:fe:a8:
69:d8:d4:06:38:3c:16:4f:da:89:7c:bd:39:7d:04:
f4:6b:7a:b4:da:ca:c0:0a:d6:80:28:11:f0:8c:eb:
d9:d1:a0:d9:6b:63:45:c3:c8:c6:b9:9d:e7:b6:09:
43:9d:ee:1d:a0:b4:50:79:e5:97:c5:74:46:03:1e:
fc:13:16:e1:7b:4c:82:0f:96:04:33:a3:0b:7e:48:
dc:30:fe:1d:6b:fe:a8:ad:50:37:d7:ec:43:8c:b5:
27:71:97:e8:f8:6e:98:f8:91:33:05:99:83:5e:8b:
aa:f6:96:d2:1d:f1:2e:87:dc:b0:14:fc:9a:a4:3f:
22:42:78:82:4b:2f:9f:86:1d:0f:e5:ac:02:37:90:
fa:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:7E:EA:ED:E7:DC:18:87:91:11:9B:9F:B1:C9:27:5D:7D:4E:AD:D8
X509v3 Authority Key Identifier:
keyid:43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/jX7q7efcGIeREZufscknXX1Ordg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/QwOaaBMPGWMeFSeUbh4SfbHo-dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
2d:5b:dd:0b:5f:16:b3:99:b0:e5:78:d7:d8:0a:f0:f2:6d:dc:
15:11:85:6b:39:95:d9:b5:15:96:61:09:3b:17:7a:bf:b2:db:
e9:c4:32:48:1d:9e:a5:cc:7d:cd:ae:34:76:5a:f6:9b:12:6a:
a0:7f:88:5d:2d:c6:54:1b:91:48:07:f1:d0:18:45:98:37:f9:
af:f1:79:5a:18:0c:c2:7f:42:8e:02:4d:65:6e:5b:33:00:ed:
98:74:c7:c2:80:ef:c5:54:55:84:67:3e:72:65:9c:cf:57:cd:
39:38:54:ee:5c:73:3a:76:21:f3:e0:65:e1:ed:fc:b5:1b:00:
b4:03:23:99:58:e5:c3:9e:9d:bf:38:48:1c:e9:f4:03:04:5d:
a8:50:33:c7:3d:bd:29:48:a2:b3:53:89:bb:a7:00:37:3c:4d:
8c:d5:c9:04:b4:16:9a:33:c5:26:b9:28:1a:35:44:4a:0c:29:
db:c3:25:c2:b5:b3:27:56:27:8c:e4:9d:9d:d0:1e:9d:be:66:
08:c0:cb:82:d3:c7:49:81:f1:e4:30:dc:59:75:81:52:e5:96:
4c:e1:5b:88:b6:f7:38:68:14:51:e4:4a:80:64:d6:2a:2e:d0:
d7:09:8f:72:fe:d0:ff:f7:b9:12:9e:86:05:56:a4:c3:45:87:
ba:83:40:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 05:04:56 2025 by rpki-client