Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/9U77B_784jrGnT77f1j4y0_HmsM.roa
File: 9U77B_784jrGnT77f1j4y0_HmsM.roa (raw, json)
Hash identifier: 2elOiM+cOEQka5zdzFQ++8ab7BdBr65roRMpmTAcur4=
Subject key identifier: F5:4E:FB:07:FE:FC:E2:3A:C6:9D:3E:FB:7F:58:F8:CB:4F:C7:9A:C3
Certificate issuer: /CN=43039a68130f19631e1527946e1e127db1e8f9d9
Certificate serial: 018B009DCE80FE8E3694084B0C498C7EB3B3
Authority key identifier: 43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/9U77B_784jrGnT77f1j4y0_HmsM.roa
Signing time: Thu 05 Oct 2023 16:13:43 +0000
ROA not before: Thu 05 Oct 2023 16:13:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:00:9d:ce:80:fe:8e:36:94:08:4b:0c:49:8c:7e:b3:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43039a68130f19631e1527946e1e127db1e8f9d9
Validity
Not Before: Oct 5 16:13:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f54efb07fefce23ac69d3efb7f58f8cb4fc79ac3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:67:30:0c:1a:3f:83:09:f2:2e:ae:c2:d4:0d:
e6:d3:87:6a:84:d3:14:36:27:60:cd:b0:cc:3a:c1:
9e:65:f7:d2:d0:e7:a2:31:19:5e:c5:c7:95:7f:d8:
c2:50:3b:2c:f9:d3:cd:22:bc:36:91:02:a4:0d:f5:
ba:e7:7f:4c:fc:18:43:ea:ac:74:9a:07:51:9d:95:
0a:87:22:c4:02:cd:85:c5:01:c8:5f:dd:21:61:74:
96:8b:72:8e:55:a3:0e:3b:86:36:0c:c9:ad:84:94:
c8:52:41:7f:45:7e:4f:bb:ea:bb:52:d3:ae:1c:24:
18:53:7a:7e:db:66:54:dc:a6:d5:1a:2c:02:d5:fe:
75:26:fc:7c:84:e0:25:3e:59:90:29:88:05:12:02:
ab:6d:cc:07:ce:65:32:d6:5c:f4:aa:6a:89:e9:5a:
39:39:4a:2f:06:0d:66:8c:76:b6:e5:a5:8c:b1:a3:
33:d7:39:b0:7d:fa:de:df:c4:82:16:20:02:39:17:
1c:96:ed:79:07:89:95:fe:fc:33:5a:d2:e3:dd:ee:
dd:46:88:c4:9c:38:3a:4c:e3:57:8b:5c:d5:fa:d3:
38:14:b4:e8:1a:85:c0:e0:cd:f6:34:13:7b:ce:e0:
9a:57:79:68:5f:ba:da:55:bb:12:73:1c:ca:96:9b:
ab:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:4E:FB:07:FE:FC:E2:3A:C6:9D:3E:FB:7F:58:F8:CB:4F:C7:9A:C3
X509v3 Authority Key Identifier:
keyid:43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/9U77B_784jrGnT77f1j4y0_HmsM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/QwOaaBMPGWMeFSeUbh4SfbHo-dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
13:ab:ec:1c:25:21:6a:42:f5:6a:65:35:98:2f:5d:65:2c:a2:
f7:8f:f4:6b:df:ff:d2:9b:68:55:b4:0a:53:7e:aa:3a:7b:c6:
bc:c9:88:dd:43:8c:1f:2c:59:ab:b0:80:87:a3:89:a9:ae:eb:
e3:84:b5:64:84:72:9e:98:c1:e3:a2:82:78:c5:27:1a:4c:96:
5f:5e:f4:51:d5:f9:12:b3:6a:da:d9:f6:a5:db:6a:14:31:4b:
91:de:f8:9e:ea:14:bb:97:1f:0f:53:30:bb:66:17:6a:97:63:
17:6b:97:41:45:43:70:93:db:ab:07:f2:65:cd:85:fb:cb:f5:
40:aa:d9:fe:3d:af:57:23:58:5d:58:5e:21:4f:1c:91:80:6c:
e5:6e:1a:5e:29:46:4f:bc:d4:f6:ad:9c:7e:58:8e:75:5a:df:
df:1f:17:3b:ab:42:e5:27:fc:0f:15:65:5e:08:22:e9:a5:a4:
06:1f:5a:b2:ea:b9:7f:74:7d:87:71:41:99:2b:7e:80:52:23:
3a:4d:f7:c6:0c:17:43:c1:24:16:1e:fc:ac:da:85:32:9a:58:
38:f1:7c:2a:1f:89:75:2b:d4:42:8b:f1:49:81:6b:71:8e:e6:
59:dd:df:a5:67:e4:a1:ea:fb:8c:09:0f:41:a6:a7:54:34:f9:
7c:90:62:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 15:27:47 2025 by rpki-client