Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/vvc618a4lpey_1yvWqdZ4krLAUw.roa
File: vvc618a4lpey_1yvWqdZ4krLAUw.roa (raw, json)
Hash identifier: dt1gvn8riFVWemc1on+GA6Gn38j8g4SM+SOQgpvNs0o=
Subject key identifier: BE:F7:3A:D7:C6:B8:96:97:B2:FF:5C:AF:5A:A7:59:E2:4A:CB:01:4C
Certificate issuer: /CN=43039a68130f19631e1527946e1e127db1e8f9d9
Certificate serial: 018AFA93B1BF08ABA6CE74A0C36FB5C36DA1
Authority key identifier: 43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/vvc618a4lpey_1yvWqdZ4krLAUw.roa
Signing time: Wed 04 Oct 2023 12:04:57 +0000
ROA not before: Wed 04 Oct 2023 12:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:18a:fa93:33d2/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:fa:93:b1:bf:08:ab:a6:ce:74:a0:c3:6f:b5:c3:6d:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43039a68130f19631e1527946e1e127db1e8f9d9
Validity
Not Before: Oct 4 12:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bef73ad7c6b89697b2ff5caf5aa759e24acb014c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d9:1b:17:41:80:ac:35:1d:97:63:a3:53:eb:
66:27:37:f6:19:c3:4a:97:d5:30:42:04:ec:5a:7a:
4b:04:a7:60:bc:66:c7:81:4a:bf:4e:66:f8:84:26:
15:d5:9f:2b:0a:81:74:91:f3:76:fe:d1:c9:f4:35:
5f:58:7a:10:21:fb:79:a5:e7:0f:b7:4a:35:d8:ef:
4b:c7:ae:24:7c:ff:e6:ad:33:7e:f6:94:f0:85:be:
79:a1:1c:64:53:a0:41:17:01:1f:90:36:2e:2f:e8:
fc:64:5d:36:4a:ee:09:b2:0d:bc:84:ff:e0:78:5e:
28:5e:87:4c:35:7a:77:04:97:02:3c:fc:68:e1:9a:
2f:4b:ba:ae:89:f3:28:84:33:95:82:38:30:3e:c9:
c7:73:5b:2b:f8:b1:19:40:68:46:9f:7a:1c:49:fc:
b8:84:a1:5f:7d:f0:29:c1:4e:ed:e5:d5:ac:9f:64:
d8:47:bd:10:18:6d:ca:88:c9:ca:f8:6a:3c:99:b6:
a5:2d:51:ca:cc:d9:42:8b:d9:c2:5f:bf:7b:ea:17:
6a:c5:5a:1e:93:c0:2d:cb:f5:b4:c7:77:c6:95:75:
8b:7d:9c:67:76:c3:ba:af:01:cb:22:b2:7d:aa:4d:
74:8f:b9:d1:47:a6:93:29:24:fb:db:25:08:80:01:
45:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:F7:3A:D7:C6:B8:96:97:B2:FF:5C:AF:5A:A7:59:E2:4A:CB:01:4C
X509v3 Authority Key Identifier:
keyid:43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/vvc618a4lpey_1yvWqdZ4krLAUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/QwOaaBMPGWMeFSeUbh4SfbHo-dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
19:60:d7:f7:fe:5d:8a:c0:8a:c8:86:17:a4:9d:29:61:20:31:
a1:66:30:f1:66:d2:a1:01:8d:21:9e:5b:66:5b:2d:1d:08:01:
25:63:1b:af:0d:02:4f:93:08:85:3a:ec:cc:4d:d5:20:5e:66:
b0:22:be:36:56:3d:f9:b9:e6:2e:9e:4e:60:47:8c:d4:c8:a8:
a3:03:7f:df:fb:66:b3:ab:b4:59:85:c4:27:16:3e:06:a9:15:
3f:a9:37:a7:a3:0d:95:f9:df:fd:4e:9f:42:dc:17:10:b2:25:
7b:b8:bc:03:d8:6c:21:66:ce:9d:30:a7:ff:c5:4f:3b:53:f8:
e4:f3:4c:f8:b8:fd:82:e5:46:61:90:f3:64:d4:c9:99:1c:cf:
e7:8b:46:50:ea:c2:9d:bb:bb:d2:43:bd:ed:66:b8:23:e9:b2:
6c:60:e4:ce:ae:ed:d4:1f:71:bb:5d:a1:71:62:f8:e7:5d:89:
7d:43:e6:8f:65:a3:91:68:87:3f:8e:6b:ef:67:81:d6:01:e5:
d1:94:b5:65:87:d2:b3:3b:5b:76:e9:6b:b2:3a:72:19:4d:4f:
04:6b:af:4b:d8:b7:9c:0d:d4:14:36:96:0d:33:27:20:b6:7d:
ef:d4:12:47:5f:0a:70:cb:56:ba:fe:66:7f:62:81:2e:8c:92:
f4:30:a3:9a
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYr6k7G/CKumznSgw2+1w22hMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzMDM5YTY4MTMwZjE5NjMxZTE1Mjc5NDZlMWUxMjdkYjFl
OGY5ZDkwHhcNMjMxMDA0MTIwNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZWY3M2FkN2M2Yjg5Njk3YjJmZjVjYWY1YWE3NTllMjRhY2IwMTRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxNkbF0GArDUdl2OjU+tmJzf2GcNK
l9UwQgTsWnpLBKdgvGbHgUq/Tmb4hCYV1Z8rCoF0kfN2/tHJ9DVfWHoQIft5pecP
t0o12O9Lx64kfP/mrTN+9pTwhb55oRxkU6BBFwEfkDYuL+j8ZF02Su4Jsg28hP/g
eF4oXodMNXp3BJcCPPxo4ZovS7quifMohDOVgjgwPsnHc1sr+LEZQGhGn3ocSfy4
hKFfffApwU7t5dWsn2TYR70QGG3KiMnK+Go8mbalLVHKzNlCi9nCX7976hdqxVoe
k8Aty/W0x3fGlXWLfZxndsO6rwHLIrJ9qk10j7nRR6aTKST72yUIgAFFZwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFL73OtfGuJaXsv9cr1qnWeJKywFMMB8GA1UdIwQY
MBaAFEMDmmgTDxljHhUnlG4eEn2x6PnZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXdPYWFCTVBHV01lRlNlVWJoNFNmYkhvLWRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9mNjAxNzgtOTkxYS00MjYxLTk2YTAt
ZGQ1YzMwMGJlNTRlLzEvdnZjNjE4YTRscGV5XzF5dldxZFo0a3JMQVV3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9mNjAxNzgtOTkxYS00MjYxLTk2YTAtZGQ1YzMwMGJlNTRl
LzEvUXdPYWFCTVBHV01lRlNlVWJoNFNmYkhvLWRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBABlg1/f+XYrAisiGF6Sd
KWEgMaFmMPFm0qEBjSGeW2ZbLR0IASVjG68NAk+TCIU67MxN1SBeZrAivjZWPfm5
5i6eTmBHjNTIqKMDf9/7ZrOrtFmFxCcWPgapFT+pN6ejDZX53/1On0LcFxCyJXu4
vAPYbCFmzp0wp//FTztT+OTzTPi4/YLlRmGQ82TUyZkcz+eLRlDqwp27u9JDve1m
uCPpsmxg5M6u7dQfcbtdoXFi+OddiX1D5o9lo5Fohz+Oa+9ngdYB5dGUtWWH0rM7
W3bpa7I6chlNTwRrr0vYt5wN1BQ2lg0zJyC2fe/UEkdfCnDLVrr+Zn9igS6MkvQw
o5o=
-----END CERTIFICATE-----
Generated at Mon Apr 21 19:19:07 2025 by rpki-client