Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/67f049-879e-4eb4-b1c2-8c8ebf5889da/1/UbVDw7VS6WhMTrz2Z4Qbs3JnD5g.roa
File: UbVDw7VS6WhMTrz2Z4Qbs3JnD5g.roa (raw, json)
Hash identifier: Dj0grY5OfGood3ySts7ScXOVyvPI8CmMC9B6PvMkHg4=
Subject key identifier: 51:B5:43:C3:B5:52:E9:68:4C:4E:BC:F6:67:84:1B:B3:72:67:0F:98
Certificate issuer: /CN=40b132c17e598f11b6a10f42ef3bce961e18e8ef
Certificate serial: 018EE964DFC82688A4142221608AD0F27FB5
Authority key identifier: 40:B1:32:C1:7E:59:8F:11:B6:A1:0F:42:EF:3B:CE:96:1E:18:E8:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLEywX5ZjxG2oQ9C7zvOlh4Y6O8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/67f049-879e-4eb4-b1c2-8c8ebf5889da/1/UbVDw7VS6WhMTrz2Z4Qbs3JnD5g.roa
Signing time: Wed 17 Apr 2024 00:11:25 +0000
ROA not before: Wed 17 Apr 2024 00:11:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e9:64:df:c8:26:88:a4:14:22:21:60:8a:d0:f2:7f:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b132c17e598f11b6a10f42ef3bce961e18e8ef
Validity
Not Before: Apr 17 00:11:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=51b543c3b552e9684c4ebcf667841bb372670f98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:f2:f4:27:1f:7b:0b:50:ce:5c:3a:36:b4:ad:
ba:f9:b2:9a:f7:af:62:9f:59:ef:d8:7f:04:85:47:
31:05:44:7d:4c:74:1f:7b:4a:55:aa:0e:55:a2:b7:
b1:e7:24:f4:20:88:1f:15:4a:d6:a4:8c:bb:94:8c:
eb:a1:3b:97:a7:7b:23:23:ab:ca:19:06:52:e2:c3:
c2:5b:a0:b3:fb:ba:d6:b4:06:bc:04:44:2f:7f:ab:
82:0f:fb:32:24:48:1a:fe:f9:4b:0c:2e:18:5b:63:
fe:8e:a8:9a:a2:22:1b:54:52:80:a0:74:1a:41:7c:
59:05:19:75:0a:34:a1:94:a5:a8:c8:21:12:98:46:
fe:86:28:b9:58:8b:74:e1:cf:f3:51:e8:b8:3d:c3:
02:46:29:76:bc:fe:a8:f8:5d:7e:ff:33:2e:72:92:
f2:a9:90:3d:ff:f5:5b:a7:b4:28:30:43:16:68:50:
54:58:d2:fa:1c:5e:b3:4c:21:ae:22:95:1f:b2:4a:
cb:40:ab:31:c4:ee:fb:c6:81:9e:d9:26:a3:59:ed:
03:ee:14:9d:be:0e:3a:f5:be:fd:bd:ae:f8:8a:05:
bb:f3:a8:3f:e9:15:bb:38:09:fd:5b:65:db:7c:d6:
12:29:25:e3:f7:38:41:2d:de:0e:9b:49:fd:18:07:
1b:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:B5:43:C3:B5:52:E9:68:4C:4E:BC:F6:67:84:1B:B3:72:67:0F:98
X509v3 Authority Key Identifier:
keyid:40:B1:32:C1:7E:59:8F:11:B6:A1:0F:42:EF:3B:CE:96:1E:18:E8:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLEywX5ZjxG2oQ9C7zvOlh4Y6O8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/67f049-879e-4eb4-b1c2-8c8ebf5889da/1/UbVDw7VS6WhMTrz2Z4Qbs3JnD5g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/67f049-879e-4eb4-b1c2-8c8ebf5889da/1/QLEywX5ZjxG2oQ9C7zvOlh4Y6O8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
58:c5:5a:65:cd:c5:20:ed:b9:39:76:cf:70:e0:b5:c1:d4:d7:
c0:56:54:0b:55:f0:3a:bf:f3:2d:e6:05:e8:81:59:7c:3d:5c:
c8:4e:bf:cd:2f:3c:2f:0f:76:51:4e:05:1b:c6:f4:3a:0a:51:
ce:fb:a4:18:a4:a3:c5:77:d9:95:d0:a4:88:88:4d:05:85:05:
90:1d:d6:33:10:08:4b:72:8e:4b:a2:04:8f:c3:14:9f:e6:3c:
5f:36:ba:a0:18:36:c1:8f:3a:0f:56:6a:bc:38:6e:08:b8:f9:
30:db:a2:d1:a0:73:f1:cf:2e:4e:2c:26:06:1b:fa:15:f7:06:
aa:86:f6:e1:88:6c:77:b5:0f:da:a9:10:cc:7e:bd:4d:4e:68:
28:66:4b:85:e3:76:07:b4:ee:96:12:70:49:ce:3a:bc:bb:81:
f6:52:4a:3c:fe:ed:b5:2a:c8:3c:b4:e3:13:9d:76:9f:39:a6:
2b:8e:b5:6a:6e:a3:2a:b9:60:48:ed:fb:f1:f7:b1:6e:51:79:
d1:a7:39:28:0b:6a:ab:ed:ac:89:55:c0:19:96:c6:3d:ca:27:
47:16:40:64:59:9f:ac:82:31:9b:62:58:45:80:8c:3f:a8:85:
30:51:dd:40:d9:0f:db:db:74:32:95:99:61:3b:a5:90:0d:81:
29:d0:ab:4f
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY7pZN/IJoikFCIhYIrQ8n+1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwYjEzMmMxN2U1OThmMTFiNmExMGY0MmVmM2JjZTk2MWUx
OGU4ZWYwHhcNMjQwNDE3MDAxMTI1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MWI1NDNjM2I1NTJlOTY4NGM0ZWJjZjY2Nzg0MWJiMzcyNjcwZjk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhPL0Jx97C1DOXDo2tK26+bKa969i
n1nv2H8EhUcxBUR9THQfe0pVqg5Vorex5yT0IIgfFUrWpIy7lIzroTuXp3sjI6vK
GQZS4sPCW6Cz+7rWtAa8BEQvf6uCD/syJEga/vlLDC4YW2P+jqiaoiIbVFKAoHQa
QXxZBRl1CjShlKWoyCESmEb+hii5WIt04c/zUei4PcMCRil2vP6o+F1+/zMucpLy
qZA9//Vbp7QoMEMWaFBUWNL6HF6zTCGuIpUfskrLQKsxxO77xoGe2SajWe0D7hSd
vg469b79va74igW786g/6RW7OAn9W2XbfNYSKSXj9zhBLd4Om0n9GAcb7wIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFFG1Q8O1UuloTE689meEG7NyZw+YMB8GA1UdIwQY
MBaAFECxMsF+WY8RtqEPQu87zpYeGOjvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUxFeXdYNVpqeEcyb1E5Qzd6dk9saDRZNk84LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy82N2YwNDktODc5ZS00ZWI0LWIxYzIt
OGM4ZWJmNTg4OWRhLzEvVWJWRHc3VlM2V2hNVHJ6Mlo0UWJzM0puRDVnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy82N2YwNDktODc5ZS00ZWI0LWIxYzItOGM4ZWJmNTg4OWRh
LzEvUUxFeXdYNVpqeEcyb1E5Qzd6dk9saDRZNk84LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAFjFWmXNxSDtuTl2z3Dg
tcHU18BWVAtV8Dq/8y3mBeiBWXw9XMhOv80vPC8PdlFOBRvG9DoKUc77pBiko8V3
2ZXQpIiITQWFBZAd1jMQCEtyjkuiBI/DFJ/mPF82uqAYNsGPOg9Warw4bgi4+TDb
otGgc/HPLk4sJgYb+hX3BqqG9uGIbHe1D9qpEMx+vU1OaChmS4Xjdge07pYScEnO
Ory7gfZSSjz+7bUqyDy04xOddp85piuOtWpuoyq5YEjt+/H3sW5RedGnOSgLaqvt
rIlVwBmWxj3KJ0cWQGRZn6yCMZtiWEWAjD+ohTBR3UDZD9vbdDKVmWE7pZANgSnQ
q08=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:00 2024 by rpki-client on console-ams.rpki-client.org