Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/FovCM2vs0jtlg2lSk2YGb2S4Id4.roa
File: FovCM2vs0jtlg2lSk2YGb2S4Id4.roa (raw, json)
Hash identifier: aI5fG6FHV46ly2qqCrWckq4y/WapmA86pLzVB6zVFqU=
Subject key identifier: 16:8B:C2:33:6B:EC:D2:3B:65:83:69:52:93:66:06:6F:64:B8:21:DE
Certificate issuer: /CN=43039a68130f19631e1527946e1e127db1e8f9d9
Certificate serial: 018B0886F3B934FFF0CCEE7ED653F75B7057
Authority key identifier: 43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/FovCM2vs0jtlg2lSk2YGb2S4Id4.roa
Signing time: Sat 07 Oct 2023 05:05:43 +0000
ROA not before: Sat 07 Oct 2023 05:05:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18b:886:211e/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:08:86:f3:b9:34:ff:f0:cc:ee:7e:d6:53:f7:5b:70:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43039a68130f19631e1527946e1e127db1e8f9d9
Validity
Not Before: Oct 7 05:05:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=168bc2336becd23b658369529366066f64b821de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ec:8a:c8:3e:79:ac:d8:cf:f5:f5:dc:b9:42:
e9:ae:62:02:c2:68:ff:82:28:fe:10:91:ef:a7:63:
20:50:c3:1d:a4:8e:bb:a3:2e:10:bc:41:3a:7c:af:
25:88:54:0a:4b:c2:57:3c:39:62:57:7a:a1:64:dc:
bf:32:c8:4a:98:0c:36:8d:2c:3e:63:8b:31:be:65:
0b:bf:92:41:ef:45:7c:84:ff:95:e4:b5:ae:44:2e:
a0:09:ea:e2:f4:4b:76:b3:fe:70:3d:1e:dc:12:74:
54:92:48:f4:13:b3:68:28:e8:9b:7e:e6:75:a6:74:
16:d9:dc:5a:62:61:0b:17:cb:9f:20:1a:c7:b0:bf:
ea:ed:2a:58:b2:6c:86:5b:3f:ce:81:dc:5d:e7:66:
8d:8b:35:7f:ed:a8:73:ba:e0:4a:cd:d8:15:fd:74:
7d:54:77:19:08:5a:f1:83:26:ce:71:4f:17:dc:a7:
0a:aa:9a:23:ce:eb:3d:d6:3e:5b:d4:1e:d0:35:76:
d3:b0:9d:67:23:36:d8:06:f4:9e:11:18:2f:c9:94:
ba:0a:be:4a:05:e5:6d:4e:bd:a7:1f:35:90:88:ca:
d9:b4:82:6b:a8:a5:ab:b8:41:04:9e:8b:b2:7e:07:
8c:ad:2f:97:dc:bd:31:5e:70:f1:1b:51:8b:07:61:
81:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:8B:C2:33:6B:EC:D2:3B:65:83:69:52:93:66:06:6F:64:B8:21:DE
X509v3 Authority Key Identifier:
keyid:43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/FovCM2vs0jtlg2lSk2YGb2S4Id4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/QwOaaBMPGWMeFSeUbh4SfbHo-dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
9a:80:98:aa:41:fb:27:e4:8f:ad:f2:e6:33:31:ec:3a:2a:3d:
55:b9:95:96:b6:1c:d4:d2:2d:26:3e:c0:32:fd:55:fc:60:92:
d4:0a:31:3c:96:a2:92:b3:60:15:92:40:d0:74:66:09:d2:71:
3d:2d:3d:ed:23:53:04:13:e3:b0:c1:20:de:fd:88:1d:02:79:
90:50:78:96:f2:d3:14:77:5d:31:c1:1a:8e:64:1d:ed:f8:d9:
60:70:90:56:88:bd:53:9c:54:84:93:03:fd:ce:30:02:cc:10:
7c:1b:06:fb:73:a3:52:9f:b5:db:96:70:7d:1f:93:9a:a7:cb:
fa:d5:ca:2b:af:7e:b3:13:e5:6c:c9:b3:e4:50:2a:44:24:ff:
70:f0:42:05:ba:d8:af:db:b3:47:77:e5:a7:e7:4d:00:6e:2b:
f8:88:e2:59:b3:46:3d:1a:c3:33:f4:89:f1:1d:17:91:50:93:
9a:00:1d:66:09:5f:ac:c4:d0:6b:5d:2e:44:51:90:b0:14:7d:
16:bf:e2:8e:af:57:6c:84:04:81:bf:3a:fd:e2:86:c9:41:3b:
a9:fb:2c:a2:4b:a4:ac:4a:a9:bc:61:32:52:be:64:cd:f0:f7:
f7:03:22:14:73:e5:b5:5b:d6:61:c5:b2:ae:2e:67:e6:45:35:
04:6d:0c:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 16 02:39:54 2025 by rpki-client