Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/E0hAb6oF6FjBUbtJh1ppBJo48ug.roa
File: E0hAb6oF6FjBUbtJh1ppBJo48ug.roa (raw, json)
Hash identifier: X5pJIwCkaLTNkPIBCmqnJLVn4hiry96Xv24wAbGbk+g=
Subject key identifier: 13:48:40:6F:AA:05:E8:58:C1:51:BB:49:87:5A:69:04:9A:38:F2:E8
Certificate issuer: /CN=43039a68130f19631e1527946e1e127db1e8f9d9
Certificate serial: 018AB17020ACCCEE297315EBEACA2A47094B
Authority key identifier: 43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/E0hAb6oF6FjBUbtJh1ppBJo48ug.roa
Signing time: Wed 20 Sep 2023 07:13:50 +0000
ROA not before: Wed 20 Sep 2023 07:13:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b1:70:20:ac:cc:ee:29:73:15:eb:ea:ca:2a:47:09:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43039a68130f19631e1527946e1e127db1e8f9d9
Validity
Not Before: Sep 20 07:13:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1348406faa05e858c151bb49875a69049a38f2e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:d9:d3:3d:7d:36:5d:1b:a2:8b:89:f1:31:07:
15:ea:80:79:e9:98:0f:d9:e9:67:c0:9e:ce:c4:05:
9d:85:fd:7c:31:df:28:31:69:c9:c9:7a:c6:04:99:
0e:01:e3:a7:2e:5c:e1:38:c6:e3:8f:10:c4:9a:54:
6b:7f:6a:19:a7:2b:a8:a7:89:22:f9:02:33:c7:7e:
b2:a4:0e:fa:3f:05:07:f9:d0:3a:33:32:b1:b8:05:
45:e5:9f:0f:65:7e:bc:82:ae:4b:8d:78:42:72:86:
da:24:b5:61:1e:50:85:fc:9b:4c:4e:46:50:cc:89:
43:94:35:0e:be:50:a6:9b:a1:6a:59:41:a2:bb:30:
ba:20:40:4e:37:bd:17:41:39:f1:6d:07:47:b5:ae:
2b:10:92:11:db:dc:5f:49:58:11:cc:eb:73:d4:33:
73:2c:4b:4f:f6:05:8c:99:ab:79:a9:f0:5c:94:13:
2c:ac:bc:dd:6f:e2:17:7c:c7:c5:8e:31:9a:fb:95:
27:83:cf:b6:aa:74:e3:4a:f4:f1:24:20:a0:72:87:
6f:29:b9:21:77:63:45:3a:30:2c:42:22:ae:b5:bf:
d2:aa:c8:1b:11:24:8d:82:94:7c:4b:ba:dc:58:d0:
29:b5:f6:91:89:11:1d:8c:12:2e:e7:f4:5f:eb:29:
2a:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:48:40:6F:AA:05:E8:58:C1:51:BB:49:87:5A:69:04:9A:38:F2:E8
X509v3 Authority Key Identifier:
keyid:43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/E0hAb6oF6FjBUbtJh1ppBJo48ug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/QwOaaBMPGWMeFSeUbh4SfbHo-dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
6a:8a:10:13:12:84:e1:2f:25:0c:33:8c:54:30:9d:45:82:b8:
a7:83:16:13:86:d3:a5:c1:99:19:87:29:43:dc:fd:ad:03:f4:
3a:9b:e6:e3:b1:6c:c0:dc:ce:a2:db:19:c9:ba:39:4d:2b:49:
b7:2c:ad:31:dd:94:9f:3d:4a:5c:a5:e9:bf:86:b2:37:a3:5c:
46:d8:9d:1e:5a:f5:48:75:79:07:f1:cc:49:2e:a0:ea:bf:6a:
d6:66:0f:e9:f7:b1:2f:a1:47:11:2d:44:0f:d6:b8:cc:e4:ef:
78:3e:f2:8a:8b:7a:74:97:9e:14:92:22:01:86:9a:0e:ed:22:
27:f1:b2:95:44:ed:a4:08:9c:7a:07:4b:6e:b1:70:7e:a7:8c:
c0:10:1e:23:66:6a:7f:c2:33:ab:38:af:a0:eb:0d:50:2c:b6:
4e:78:9a:60:b0:6c:76:44:a8:86:34:91:4c:55:0d:8a:36:ef:
9c:b1:94:ef:67:2b:da:8c:6f:df:8a:42:96:23:c6:37:b5:50:
3b:36:b8:d5:e8:a9:c7:08:6b:db:f8:93:78:65:28:03:f9:27:
01:ba:60:62:a8:0d:d8:0e:4c:9e:64:96:0f:f5:51:4e:b7:74:
b7:d1:d1:41:9b:b8:fd:6b:3b:52:e3:c5:a6:92:47:e8:63:1f:
86:ab:bc:8b
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYqxcCCszO4pcxXr6soqRwlLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzMDM5YTY4MTMwZjE5NjMxZTE1Mjc5NDZlMWUxMjdkYjFl
OGY5ZDkwHhcNMjMwOTIwMDcxMzUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMzQ4NDA2ZmFhMDVlODU4YzE1MWJiNDk4NzVhNjkwNDlhMzhmMmU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3tnTPX02XRuii4nxMQcV6oB56ZgP
2elnwJ7OxAWdhf18Md8oMWnJyXrGBJkOAeOnLlzhOMbjjxDEmlRrf2oZpyuop4ki
+QIzx36ypA76PwUH+dA6MzKxuAVF5Z8PZX68gq5LjXhCcobaJLVhHlCF/JtMTkZQ
zIlDlDUOvlCmm6FqWUGiuzC6IEBON70XQTnxbQdHta4rEJIR29xfSVgRzOtz1DNz
LEtP9gWMmat5qfBclBMsrLzdb+IXfMfFjjGa+5Ung8+2qnTjSvTxJCCgcodvKbkh
d2NFOjAsQiKutb/SqsgbESSNgpR8S7rcWNAptfaRiREdjBIu5/Rf6ykqKwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFBNIQG+qBehYwVG7SYdaaQSaOPLoMB8GA1UdIwQY
MBaAFEMDmmgTDxljHhUnlG4eEn2x6PnZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXdPYWFCTVBHV01lRlNlVWJoNFNmYkhvLWRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9mNjAxNzgtOTkxYS00MjYxLTk2YTAt
ZGQ1YzMwMGJlNTRlLzEvRTBoQWI2b0Y2RmpCVWJ0SmgxcHBCSm80OHVnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9mNjAxNzgtOTkxYS00MjYxLTk2YTAtZGQ1YzMwMGJlNTRl
LzEvUXdPYWFCTVBHV01lRlNlVWJoNFNmYkhvLWRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAGqKEBMShOEvJQwzjFQw
nUWCuKeDFhOG06XBmRmHKUPc/a0D9Dqb5uOxbMDczqLbGcm6OU0rSbcsrTHdlJ89
Slyl6b+GsjejXEbYnR5a9Uh1eQfxzEkuoOq/atZmD+n3sS+hRxEtRA/WuMzk73g+
8oqLenSXnhSSIgGGmg7tIifxspVE7aQInHoHS26xcH6njMAQHiNman/CM6s4r6Dr
DVAstk54mmCwbHZEqIY0kUxVDYo275yxlO9nK9qMb9+KQpYjxje1UDs2uNXoqccI
a9v4k3hlKAP5JwG6YGKoDdgOTJ5klg/1UU63dLfR0UGbuP1rO1LjxaaSR+hjH4ar
vIs=
-----END CERTIFICATE-----
Generated at Tue May 13 19:34:53 2025 by rpki-client