Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/SGWGk_8ilE9tuUbihyFVspd8thY.roa
File: SGWGk_8ilE9tuUbihyFVspd8thY.roa (raw, json)
Hash identifier: Blqa8V5wSzDC/m6DAKG4fQ7Q3bZCPt/PmBE4IlylTLM=
Subject key identifier: 48:65:86:93:FF:22:94:4F:6D:B9:46:E2:87:21:55:B2:97:7C:B6:16
Certificate issuer: /CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Certificate serial: 018A5FE8E90DE8F2D39D7CA6191F9320A462
Authority key identifier: AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/SGWGk_8ilE9tuUbihyFVspd8thY.roa
Signing time: Mon 04 Sep 2023 11:16:53 +0000
ROA not before: Mon 04 Sep 2023 11:16:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5f:e8:e9:0d:e8:f2:d3:9d:7c:a6:19:1f:93:20:a4:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Validity
Not Before: Sep 4 11:16:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=48658693ff22944f6db946e2872155b2977cb616
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:a1:5a:42:0b:0d:c0:fe:35:ad:a9:1e:ab:a4:
47:34:26:23:7c:27:23:de:dc:fe:97:cc:6e:ac:ef:
e2:04:de:c8:93:08:12:1c:a6:f4:9f:e4:2a:67:76:
e2:01:4d:f0:57:8f:a0:88:19:4d:91:d3:15:fa:ba:
fd:3c:f8:fc:2d:84:92:48:b9:31:c4:7d:c2:ca:8b:
38:7f:87:aa:95:63:04:9a:85:25:08:76:3f:63:a2:
f6:09:74:1e:56:63:89:ca:c3:01:c5:9f:ba:d4:f6:
f6:ac:a9:50:bd:66:85:4a:f7:20:9b:3a:e4:0f:27:
fb:01:cb:ba:b2:6a:68:a0:ca:e2:c4:62:8e:2e:21:
80:cd:99:40:0d:4e:1e:06:cd:91:6d:10:d1:ec:26:
ed:6e:43:a5:bd:db:3d:fe:ed:90:22:2f:57:19:ce:
ff:56:86:22:28:41:30:9e:36:43:3c:a0:da:e4:fa:
9a:5f:77:03:74:b2:c2:2d:89:60:47:b7:1e:b5:78:
82:f9:2c:df:c4:95:bb:28:ec:4a:ba:92:46:ab:48:
aa:32:b5:15:fe:fb:ba:ed:2a:0d:95:bc:8d:5a:02:
51:6b:9b:8b:12:17:0e:2d:ec:a3:e1:e8:1e:73:78:
e8:bc:2f:fe:bb:db:b1:36:32:9d:59:e8:bd:4e:f1:
7a:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:65:86:93:FF:22:94:4F:6D:B9:46:E2:87:21:55:B2:97:7C:B6:16
X509v3 Authority Key Identifier:
keyid:AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/SGWGk_8ilE9tuUbihyFVspd8thY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/qh8UyFB0WnwxLqLrC-AwUuSWcnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
69:5a:cf:ce:4d:11:2a:51:b0:88:e9:cd:30:2e:ca:2f:07:da:
42:18:ed:0e:cc:9b:1a:1d:36:8b:8d:d5:ff:dd:7e:46:09:8d:
3c:0a:f2:f5:46:dc:0a:58:b9:57:80:49:a3:54:d6:e2:c5:07:
68:03:05:83:67:3b:51:38:12:c1:0f:65:f3:2b:52:a1:b0:42:
22:ff:94:eb:40:87:a0:7a:05:ed:5e:d9:fa:d2:a2:b0:15:f1:
03:7b:4b:ff:e9:18:b5:86:2e:30:a5:98:1e:8a:2a:50:23:e3:
ae:d8:b8:96:9b:0f:bb:16:6b:f3:e1:60:9d:8b:28:81:65:dc:
df:e5:00:52:97:9b:88:75:18:98:63:32:40:94:2d:6c:c7:ab:
e5:20:ab:c6:be:54:3c:19:a3:b3:f1:83:4b:af:9f:c5:82:e4:
b7:c9:97:7a:01:ed:fe:0f:3e:d1:46:f4:d1:93:cc:c9:e0:88:
4e:99:7b:93:b3:fb:d8:20:06:94:46:8e:92:b5:c6:5b:5e:0f:
87:b1:72:06:27:62:56:4b:89:85:30:4f:6c:e3:e5:6e:e8:1f:
ca:fd:35:db:27:41:c5:42:31:ff:99:03:b0:47:bc:0e:e1:66:
53:de:c0:f5:76:20:cb:61:b4:36:b7:b9:39:5d:92:f2:56:73:
7b:4b:50:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:26:34 2025 by rpki-client