Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/TeRBZOjIlhCj0deBEpEKZBdQnEo.roa
File: TeRBZOjIlhCj0deBEpEKZBdQnEo.roa (raw, json)
Hash identifier: dwBWKK+u0ag2moTlR0yvpla6t8oAJK28fSZxtM2eUWk=
Subject key identifier: 4D:E4:41:64:E8:C8:96:10:A3:D1:D7:81:12:91:0A:64:17:50:9C:4A
Certificate issuer: /CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Certificate serial: 018A5E9F1EE6FF7AA59AC4C1B60012F4D20E
Authority key identifier: AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/TeRBZOjIlhCj0deBEpEKZBdQnEo.roa
Signing time: Mon 04 Sep 2023 05:16:40 +0000
ROA not before: Mon 04 Sep 2023 05:16:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5e:9f:1e:e6:ff:7a:a5:9a:c4:c1:b6:00:12:f4:d2:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Validity
Not Before: Sep 4 05:16:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4de44164e8c89610a3d1d78112910a6417509c4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:f0:d7:9a:d5:26:aa:68:5c:33:c0:c4:b5:07:
2b:a2:6c:e1:a6:c6:7a:33:3d:2f:ea:05:a5:f4:ea:
62:e2:0b:b1:b7:78:cb:06:4e:5c:52:1c:6c:52:99:
10:fb:c2:2f:1e:21:f3:61:88:ac:aa:d0:5f:75:83:
50:4c:5c:b5:fb:ed:df:71:21:a1:46:cd:6d:d6:7d:
21:6b:db:69:85:aa:3d:35:a0:8c:81:57:77:d8:fe:
9c:fd:1f:2c:89:83:e0:2b:00:dc:36:ea:4e:c7:8b:
49:4c:ec:43:9a:ec:23:f1:5a:18:75:0c:80:7c:0b:
98:b6:bb:74:fb:b4:3f:84:14:21:50:5f:4f:a4:6a:
8c:f1:8c:e2:be:36:84:08:0a:59:a5:1a:80:7b:8d:
ee:55:ac:70:2b:ab:3d:6a:ad:44:54:3d:be:a1:a9:
4c:4c:59:17:a0:21:2e:78:14:e7:c9:a0:88:36:91:
ec:12:7a:19:33:81:a5:82:38:24:4b:89:fe:35:07:
e5:97:78:21:bd:62:d0:02:3b:2c:8e:81:0e:16:30:
0b:fd:57:1d:cb:a8:aa:c8:e0:3f:2a:2f:cd:55:8c:
5b:6c:ca:a2:95:f7:b2:05:f7:27:42:03:84:c8:fc:
95:80:53:36:08:e3:56:29:d6:88:2a:3a:66:e8:73:
c3:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:E4:41:64:E8:C8:96:10:A3:D1:D7:81:12:91:0A:64:17:50:9C:4A
X509v3 Authority Key Identifier:
keyid:AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/TeRBZOjIlhCj0deBEpEKZBdQnEo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/qh8UyFB0WnwxLqLrC-AwUuSWcnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
a0:a8:da:19:39:01:0e:a9:d7:2d:35:bf:6e:e5:a4:7d:fc:d7:
73:a0:91:c7:30:25:01:1a:ee:89:fc:fd:7e:e9:e4:62:5e:f2:
fc:1c:7e:c8:a1:2d:7a:f2:9d:55:a0:cf:77:de:cc:81:63:79:
67:99:07:72:de:da:ca:a1:29:0d:47:3b:df:9e:80:52:54:21:
01:9e:be:8c:39:bb:dc:63:a6:4c:32:d3:e3:c7:21:8c:ea:1a:
38:b1:a9:bc:91:e7:67:e3:0f:26:5e:b9:ec:f3:b5:a3:49:11:
15:fb:96:2c:03:61:c6:02:c3:a0:1c:44:ad:5d:bb:a7:de:72:
0f:1b:0f:9d:5f:9e:6c:0f:1f:33:ba:cc:8c:d9:67:dd:73:05:
9f:7b:56:8c:13:3a:13:c6:20:07:08:0a:e2:d8:2c:9d:9d:81:
9e:2c:b1:7a:89:e4:66:f7:9c:26:19:bc:e4:7a:0d:e4:32:eb:
88:60:3d:e8:82:5a:2f:d1:c1:74:30:db:b4:11:ba:3a:6b:b9:
98:f0:35:b7:e0:26:8a:39:ca:f3:37:8a:53:4b:03:c0:04:24:
aa:c1:4a:6d:04:6a:b8:82:90:7f:ab:24:eb:20:6b:60:45:24:
11:00:81:32:df:7d:f8:7e:4d:3a:81:17:3b:84:54:77:af:29:
91:bc:59:90
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYpenx7m/3qlmsTBtgAS9NIOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhMWYxNGM4NTA3NDVhN2MzMTJlYTJlYjBiZTAzMDUyZTQ5
NjcyNzUwHhcNMjMwOTA0MDUxNjQwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZGU0NDE2NGU4Yzg5NjEwYTNkMWQ3ODExMjkxMGE2NDE3NTA5YzRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgfDXmtUmqmhcM8DEtQcromzhpsZ6
Mz0v6gWl9Opi4guxt3jLBk5cUhxsUpkQ+8IvHiHzYYisqtBfdYNQTFy1++3fcSGh
Rs1t1n0ha9tphao9NaCMgVd32P6c/R8siYPgKwDcNupOx4tJTOxDmuwj8VoYdQyA
fAuYtrt0+7Q/hBQhUF9PpGqM8YzivjaECApZpRqAe43uVaxwK6s9aq1EVD2+oalM
TFkXoCEueBTnyaCINpHsEnoZM4GlgjgkS4n+NQfll3ghvWLQAjssjoEOFjAL/Vcd
y6iqyOA/Ki/NVYxbbMqilfeyBfcnQgOEyPyVgFM2CONWKdaIKjpm6HPDUwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFE3kQWToyJYQo9HXgRKRCmQXUJxKMB8GA1UdIwQY
MBaAFKofFMhQdFp8MS6i6wvgMFLklnJ1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcWg4VXlGQjBXbnd4THFMckMtQXdVdVNXY25VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi84YmY5YzUtMWQyMi00MzllLWIwYmQt
ODNmY2QyMjU0ODJhLzEvVGVSQlpPaklsaENqMGRlQkVwRUtaQmRRbkVvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi84YmY5YzUtMWQyMi00MzllLWIwYmQtODNmY2QyMjU0ODJh
LzEvcWg4VXlGQjBXbnd4THFMckMtQXdVdVNXY25VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAKCo2hk5AQ6p1y01v27l
pH3813OgkccwJQEa7on8/X7p5GJe8vwcfsihLXrynVWgz3fezIFjeWeZB3Le2sqh
KQ1HO9+egFJUIQGevow5u9xjpkwy0+PHIYzqGjixqbyR52fjDyZeuezztaNJERX7
liwDYcYCw6AcRK1du6fecg8bD51fnmwPHzO6zIzZZ91zBZ97VowTOhPGIAcICuLY
LJ2dgZ4ssXqJ5Gb3nCYZvOR6DeQy64hgPeiCWi/RwXQw27QRujpruZjwNbfgJoo5
yvM3ilNLA8AEJKrBSm0EariCkH+rJOsga2BFJBEAgTLfffh+TTqBFzuEVHevKZG8
WZA=
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:24:49 2025 by rpki-client