Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/uV4qwT6ILW8iI-_sw0wUDfWKzto.roa
File: uV4qwT6ILW8iI-_sw0wUDfWKzto.roa (raw, json)
Hash identifier: dvh4hC9ZIhiM+fcrB43lHxit3iteDTy0bt/TSUE29Qc=
Subject key identifier: B9:5E:2A:C1:3E:88:2D:6F:22:23:EF:EC:C3:4C:14:0D:F5:8A:CE:DA
Certificate issuer: /CN=43039a68130f19631e1527946e1e127db1e8f9d9
Certificate serial: 018B511A3E9F4D4228B8C521E688F04E6EAC
Authority key identifier: 43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/uV4qwT6ILW8iI-_sw0wUDfWKzto.roa
Signing time: Sat 21 Oct 2023 07:19:16 +0000
ROA not before: Sat 21 Oct 2023 07:19:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/96 maxlen: 128
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:51:1a:3e:9f:4d:42:28:b8:c5:21:e6:88:f0:4e:6e:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43039a68130f19631e1527946e1e127db1e8f9d9
Validity
Not Before: Oct 21 07:19:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b95e2ac13e882d6f2223efecc34c140df58aceda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:f2:93:19:a2:ea:cb:e4:40:0e:2a:4c:00:dd:
9e:e3:3e:b0:48:9d:6d:33:59:be:6c:d4:1c:5a:57:
ce:98:46:39:21:34:b0:15:c7:bd:e0:10:50:22:7e:
23:4b:d0:5f:1b:e5:39:bd:43:6e:69:9e:c3:78:22:
86:7b:9e:bb:b9:07:b8:c5:5e:b8:3b:57:e3:66:89:
00:f3:bb:90:75:85:55:e1:3a:ab:78:0c:08:12:bd:
00:fd:75:61:38:6c:19:e2:1e:10:64:d3:4a:83:e7:
b9:63:01:bd:1a:c9:9e:fa:f4:bc:4d:c2:a3:50:0c:
77:73:85:b6:06:45:1c:14:be:c4:76:4b:15:cd:db:
68:5f:27:d7:7f:40:61:6a:0c:87:73:4a:2d:c9:54:
c8:46:40:af:0e:d4:91:66:77:31:38:1c:97:0d:16:
4c:ad:31:0d:06:9f:4a:22:8b:25:b3:7a:2d:06:fa:
cd:3d:fb:bd:e7:1e:32:ea:4d:d9:5b:bd:3e:68:6e:
95:6f:cd:31:22:76:d9:91:a6:8d:36:8b:50:2e:77:
bc:f7:34:2e:c2:0e:83:d5:8c:a0:6e:69:21:b8:a4:
38:6d:65:1f:9c:c9:1e:03:7f:c9:db:b2:f6:d1:4a:
ac:1f:09:e2:a6:a0:57:01:77:f8:bb:85:3c:65:8b:
35:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:5E:2A:C1:3E:88:2D:6F:22:23:EF:EC:C3:4C:14:0D:F5:8A:CE:DA
X509v3 Authority Key Identifier:
keyid:43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/uV4qwT6ILW8iI-_sw0wUDfWKzto.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/QwOaaBMPGWMeFSeUbh4SfbHo-dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
cd:c7:2c:fb:e7:c4:1e:c5:8c:f5:53:60:f7:3d:b6:9c:b8:8f:
1a:f1:a0:12:93:02:07:9e:4b:70:d8:b3:4c:ce:01:16:8b:2f:
cd:10:72:02:aa:4e:1f:75:19:5c:eb:31:c1:d4:87:61:f9:fd:
b1:7e:ad:1f:6e:3e:b4:f5:d5:71:0e:23:51:06:87:5d:16:26:
e1:84:60:22:9a:01:04:4b:ad:e9:27:76:91:28:cf:c7:ef:5b:
f0:37:8b:0e:24:4e:3a:16:e2:4c:40:21:7d:0a:2e:74:e5:2b:
72:98:85:06:0b:47:e0:be:19:44:93:c6:49:7a:83:e2:30:f1:
c0:ae:e9:30:02:72:26:14:c2:23:38:f4:c6:ae:a1:4e:8e:05:
69:ac:de:06:d5:23:99:ba:06:07:2a:34:fc:21:62:4e:60:95:
5b:f3:d9:17:40:7b:87:be:86:61:45:e2:ed:18:e4:0c:e1:66:
6c:74:f9:0a:65:4a:db:b1:99:05:08:56:28:70:8f:e7:a5:1a:
5a:df:e7:5f:d6:09:22:b7:39:ae:a4:e5:bb:3a:1f:b5:bf:23:
08:a9:fc:34:26:f0:c9:1a:f2:46:c3:4c:02:48:af:90:02:40:
b3:45:7a:2f:09:99:02:a7:ab:36:b8:d3:a5:d7:e4:6b:a8:53:
14:08:42:e5
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYtRGj6fTUIouMUh5ojwTm6sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzMDM5YTY4MTMwZjE5NjMxZTE1Mjc5NDZlMWUxMjdkYjFl
OGY5ZDkwHhcNMjMxMDIxMDcxOTE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOTVlMmFjMTNlODgyZDZmMjIyM2VmZWNjMzRjMTQwZGY1OGFjZWRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgPKTGaLqy+RADipMAN2e4z6wSJ1t
M1m+bNQcWlfOmEY5ITSwFce94BBQIn4jS9BfG+U5vUNuaZ7DeCKGe567uQe4xV64
O1fjZokA87uQdYVV4TqreAwIEr0A/XVhOGwZ4h4QZNNKg+e5YwG9Gsme+vS8TcKj
UAx3c4W2BkUcFL7EdksVzdtoXyfXf0BhagyHc0otyVTIRkCvDtSRZncxOByXDRZM
rTENBp9KIosls3otBvrNPfu95x4y6k3ZW70+aG6Vb80xInbZkaaNNotQLne89zQu
wg6D1YygbmkhuKQ4bWUfnMkeA3/J27L20UqsHwnipqBXAXf4u4U8ZYs19QIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFLleKsE+iC1vIiPv7MNMFA31is7aMB8GA1UdIwQY
MBaAFEMDmmgTDxljHhUnlG4eEn2x6PnZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXdPYWFCTVBHV01lRlNlVWJoNFNmYkhvLWRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9mNjAxNzgtOTkxYS00MjYxLTk2YTAt
ZGQ1YzMwMGJlNTRlLzEvdVY0cXdUNklMVzhpSS1fc3cwd1VEZldLenRvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9mNjAxNzgtOTkxYS00MjYxLTk2YTAtZGQ1YzMwMGJlNTRl
LzEvUXdPYWFCTVBHV01lRlNlVWJoNFNmYkhvLWRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAM3HLPvnxB7FjPVTYPc9
tpy4jxrxoBKTAgeeS3DYs0zOARaLL80QcgKqTh91GVzrMcHUh2H5/bF+rR9uPrT1
1XEOI1EGh10WJuGEYCKaAQRLrekndpEoz8fvW/A3iw4kTjoW4kxAIX0KLnTlK3KY
hQYLR+C+GUSTxkl6g+Iw8cCu6TACciYUwiM49MauoU6OBWms3gbVI5m6BgcqNPwh
Yk5glVvz2RdAe4e+hmFF4u0Y5AzhZmx0+QplStuxmQUIVihwj+elGlrf51/WCSK3
Oa6k5bs6H7W/Iwip/DQm8Mka8kbDTAJIr5ACQLNFei8JmQKnqza406XX5GuoUxQI
QuU=
-----END CERTIFICATE-----
Generated at Sun Apr 20 19:30:21 2025 by rpki-client