Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/pvoj_mrULT2wnsARQU_tSD5-Cww.roa
File: pvoj_mrULT2wnsARQU_tSD5-Cww.roa (raw, json)
Hash identifier: 3c6wrY5nThHNI3yR6FD92Rjkawaknmawqd6n5+JWvYA=
Subject key identifier: A6:FA:23:FE:6A:D4:2D:3D:B0:9E:C0:11:41:4F:ED:48:3E:7E:0B:0C
Certificate issuer: /CN=43039a68130f19631e1527946e1e127db1e8f9d9
Certificate serial: 018B80EBC1F6F4086D48A6D1C1075DA4B918
Authority key identifier: 43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/pvoj_mrULT2wnsARQU_tSD5-Cww.roa
Signing time: Mon 30 Oct 2023 14:10:16 +0000
ROA not before: Mon 30 Oct 2023 14:10:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/96 maxlen: 128
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:80:eb:c1:f6:f4:08:6d:48:a6:d1:c1:07:5d:a4:b9:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43039a68130f19631e1527946e1e127db1e8f9d9
Validity
Not Before: Oct 30 14:10:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a6fa23fe6ad42d3db09ec011414fed483e7e0b0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:3f:b6:20:93:ed:7f:b6:3c:8f:06:a8:ed:21:
0d:bc:1a:42:5d:8c:8d:ae:81:65:84:51:70:a7:72:
1d:7a:07:5f:49:c0:ab:36:97:c9:d0:35:4d:27:03:
5d:6d:c0:dc:18:8e:c7:55:fa:31:ce:ac:2c:82:41:
9e:65:b3:44:48:5b:6a:b9:88:08:ec:4f:75:93:f4:
75:0f:08:cb:07:b1:3b:5b:02:f3:5c:1a:bd:1d:27:
88:93:44:58:df:39:f2:2c:65:7e:2b:f8:72:73:b1:
cf:dd:5d:c9:0b:68:50:d4:7b:79:24:01:c5:7e:d7:
49:bc:38:fb:77:47:d8:ca:3d:5e:f5:88:2c:66:9f:
e3:57:c6:89:d6:f6:15:8a:4a:8b:18:bc:8b:b9:b4:
e0:00:63:cb:f4:12:fb:1c:2e:99:5d:db:ba:11:f2:
80:29:5b:6f:8b:3f:74:73:07:32:26:5f:59:25:2c:
dc:8a:96:0b:92:3b:9f:78:77:d5:a1:47:28:79:55:
35:cd:0b:e3:e7:2b:95:88:39:c9:af:d8:16:fe:78:
c7:9f:d2:a8:94:1d:50:99:d3:92:0a:51:85:06:72:
ac:6c:fd:8b:81:42:64:db:df:f9:c7:2d:02:30:64:
9d:91:3b:f5:41:9b:fd:b8:7d:1e:33:3c:ef:33:b3:
3e:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:FA:23:FE:6A:D4:2D:3D:B0:9E:C0:11:41:4F:ED:48:3E:7E:0B:0C
X509v3 Authority Key Identifier:
keyid:43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/pvoj_mrULT2wnsARQU_tSD5-Cww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/QwOaaBMPGWMeFSeUbh4SfbHo-dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
00:8b:cd:61:8e:bd:f0:d4:90:28:83:ae:ac:4f:7c:f3:01:ef:
67:f1:cb:9a:a3:db:65:d1:90:9c:26:83:33:06:05:70:38:54:
c2:cc:5e:9e:9d:c8:4f:2e:89:6b:d6:08:fa:f4:7f:73:52:3d:
8b:c7:7f:8f:37:f5:42:1c:0b:65:85:1d:98:17:9f:77:b1:9c:
11:5b:52:77:44:22:85:98:66:ae:7d:fd:98:2d:4e:ab:9c:02:
a3:f3:25:52:1b:04:fc:6d:fc:50:07:82:30:ca:c3:98:12:30:
f2:28:84:91:e8:29:ff:0b:0f:20:05:16:17:f4:c2:0d:fb:76:
fe:83:6a:bd:68:13:a4:39:e4:0d:0a:34:c8:49:dd:4b:58:19:
49:c1:8d:2d:9d:67:e5:51:1a:69:b3:2e:05:c8:17:c0:28:4f:
23:04:ef:7f:f8:50:21:ae:8f:e0:bd:92:18:05:ae:e8:e6:92:
0e:12:f6:af:a7:ad:94:3a:41:2c:fc:4c:17:49:ce:1e:34:cc:
43:37:1f:77:e5:4f:5a:53:74:2b:28:67:5b:dd:a3:84:ca:a9:
ff:af:ef:4a:88:82:2b:d6:6b:06:42:ba:58:da:6b:2a:fa:60:
08:a3:e3:dd:ff:e5:1b:3b:c0:e8:43:26:5d:20:dc:dc:35:7e:
08:8b:20:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:07:38 2025 by rpki-client