Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/nB1mAIdVFONjQ0ZiIXBS28mat7Y.roa
File: nB1mAIdVFONjQ0ZiIXBS28mat7Y.roa (raw, json)
Hash identifier: DXkjHlMlPJDo+esuIXpo2WQwRYmjPt0NXVAInumd0AA=
Subject key identifier: 9C:1D:66:00:87:55:14:E3:63:43:46:62:21:70:52:DB:C9:9A:B7:B6
Certificate issuer: /CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Certificate serial: 018A4DACCB798820F16DEB9588F8BB27FBA7
Authority key identifier: AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/nB1mAIdVFONjQ0ZiIXBS28mat7Y.roa
Signing time: Thu 31 Aug 2023 22:18:04 +0000
ROA not before: Thu 31 Aug 2023 22:18:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4d:ac:cb:79:88:20:f1:6d:eb:95:88:f8:bb:27:fb:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Validity
Not Before: Aug 31 22:18:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9c1d6600875514e363434662217052dbc99ab7b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:0e:ab:f5:43:f4:b8:10:ae:06:2f:48:5e:c0:
ee:3b:3d:4a:1e:82:03:39:e7:fd:f3:6e:33:d2:f9:
e0:96:d6:6e:61:e8:63:02:68:4e:80:ce:5d:66:07:
eb:b5:26:ac:d1:11:ce:e6:cb:c0:61:7d:bf:2c:4b:
1b:93:e0:4e:84:39:a6:41:71:bc:6f:86:44:7a:22:
81:18:5b:9a:7d:cd:26:32:d7:cc:4f:84:bc:40:88:
ee:c3:94:dc:ac:30:26:24:12:f3:fe:49:ca:f2:ba:
b3:e9:2f:c7:48:3b:9e:1a:d2:ca:fe:b1:33:e7:73:
30:1a:81:82:cb:b2:c5:b6:3f:48:70:ea:0f:e7:83:
b7:9b:75:be:54:34:27:cd:73:49:f9:ea:56:b3:05:
1a:52:1f:b1:bf:bb:75:2c:f3:98:54:4d:d7:2d:f2:
68:be:3f:94:2e:16:46:6c:8c:d1:e6:1f:69:98:46:
b1:81:9b:5d:c3:8d:f9:23:f3:c5:98:a6:dc:4b:af:
11:e2:3d:03:92:e7:81:c0:43:56:09:ab:98:15:f6:
ac:2d:c0:7f:50:d9:16:3e:2d:97:1b:a8:3a:7f:11:
d4:07:b1:0a:66:77:46:4c:6f:c2:ee:f5:ca:60:84:
78:9d:bc:fd:dd:5c:69:1b:15:42:b3:0d:13:89:a9:
74:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:1D:66:00:87:55:14:E3:63:43:46:62:21:70:52:DB:C9:9A:B7:B6
X509v3 Authority Key Identifier:
keyid:AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/nB1mAIdVFONjQ0ZiIXBS28mat7Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/qh8UyFB0WnwxLqLrC-AwUuSWcnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
61:fe:28:88:b7:1c:b8:34:5f:19:35:61:30:9f:30:dc:f3:8e:
3e:26:d9:79:8e:21:38:aa:cc:72:e8:8b:87:38:28:e3:da:74:
f1:d4:25:ee:22:55:ac:75:71:61:5c:39:1f:0c:1a:f1:cc:e9:
f6:fc:32:c0:ab:4f:86:1e:71:b2:de:fa:16:6b:2d:33:30:83:
e7:d6:a7:91:fb:e1:75:20:77:09:41:df:84:9f:88:24:99:fa:
2a:80:e8:5a:8f:d9:a8:17:1a:74:93:d8:d7:e2:e9:44:6c:87:
04:0e:c1:26:0d:6b:aa:aa:ee:91:56:0c:30:87:bd:af:2a:0d:
c5:b3:0d:9e:86:1d:e6:57:bf:35:e9:9c:1f:32:35:18:64:c8:
c7:35:3d:d3:7f:03:03:cb:de:20:01:73:08:a3:86:d6:d8:31:
7b:b0:63:a9:e7:03:2a:82:62:ed:ba:9f:25:6a:8c:4d:16:de:
5b:46:c8:15:b0:5a:79:92:b5:5c:b8:29:04:17:d4:7d:7c:05:
41:c6:1c:24:76:a0:0e:e1:b2:2e:09:e2:99:ed:04:d9:99:16:
78:c3:81:ca:31:c4:53:d5:e7:05:b4:1e:fa:64:7a:28:fa:c6:
06:db:5b:c6:d2:3a:25:9e:e6:bf:b7:ee:c6:89:4b:e7:a0:19:
c7:44:c5:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:51:43 2025 by rpki-client