Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/S-WD_qO0Js1uuq7QDVIq4Ulb2uQ.roa
File: S-WD_qO0Js1uuq7QDVIq4Ulb2uQ.roa (raw, json)
Hash identifier: 9OV1MpXaPnEfGIxrZJIWP4KG9FFkF3uSbFH85d6xuXM=
Subject key identifier: 4B:E5:83:FE:A3:B4:26:CD:6E:BA:AE:D0:0D:52:2A:E1:49:5B:DA:E4
Certificate issuer: /CN=43039a68130f19631e1527946e1e127db1e8f9d9
Certificate serial: 018AB4A97FBA2A2EB8B1A05FFE8170CA2882
Authority key identifier: 43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/S-WD_qO0Js1uuq7QDVIq4Ulb2uQ.roa
Signing time: Wed 20 Sep 2023 22:15:21 +0000
ROA not before: Wed 20 Sep 2023 22:15:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b4:a9:7f:ba:2a:2e:b8:b1:a0:5f:fe:81:70:ca:28:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43039a68130f19631e1527946e1e127db1e8f9d9
Validity
Not Before: Sep 20 22:15:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4be583fea3b426cd6ebaaed00d522ae1495bdae4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:f3:1c:36:f5:69:ea:a0:41:68:f9:a9:b4:b2:
0d:9b:1a:26:71:4c:cd:db:15:e7:91:e0:a1:88:1f:
45:b8:b1:d0:ea:02:07:e8:78:4a:7b:08:9a:7f:4c:
62:76:72:1f:6c:29:da:d2:02:52:cd:dd:a8:44:4f:
6b:b1:9b:1e:e3:53:33:0c:94:b5:83:00:ad:27:e6:
97:e4:cf:6c:35:29:4e:b8:87:81:0b:e5:8c:78:97:
c3:e0:79:eb:9e:61:28:59:f3:96:91:e0:46:d6:88:
c8:78:b5:63:14:20:13:69:6b:ce:a8:17:6f:d1:61:
a0:f7:f8:0f:71:aa:2d:09:b7:5c:4a:8a:8c:ad:69:
40:4b:f0:75:96:e9:0f:0e:18:4d:c5:1c:08:ef:3e:
fa:92:ba:bf:fc:cf:15:48:a2:75:a7:5a:b5:d7:e6:
a6:63:4e:2f:21:77:55:ad:19:e4:b6:60:de:cd:d1:
34:80:df:e0:85:38:95:91:ae:82:f3:5e:f7:bf:53:
5b:7d:d6:a5:1f:62:58:cb:d8:29:b3:3e:8d:fc:dc:
72:54:5c:a2:6b:a9:6e:14:8e:6d:09:1d:ef:79:29:
69:f9:9e:3b:81:3c:0d:96:be:60:f4:d7:91:e6:ed:
b8:da:a8:9e:b6:4c:23:52:fe:04:ca:3e:f1:f1:5e:
96:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:E5:83:FE:A3:B4:26:CD:6E:BA:AE:D0:0D:52:2A:E1:49:5B:DA:E4
X509v3 Authority Key Identifier:
keyid:43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/S-WD_qO0Js1uuq7QDVIq4Ulb2uQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/QwOaaBMPGWMeFSeUbh4SfbHo-dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
b4:cc:32:8d:87:26:94:bb:c0:51:d5:e7:3f:1b:0d:56:06:74:
cc:cf:65:c0:c9:47:67:2c:f2:87:9e:99:bc:81:db:7f:8f:24:
4e:e9:6e:44:97:7b:ae:05:2e:e0:cd:0b:a0:46:a8:5e:a3:66:
f3:e7:48:11:1a:47:b2:2e:e0:fc:1b:51:fb:54:70:35:44:b9:
91:3b:00:de:b6:77:4d:67:15:d8:57:84:76:2d:38:4b:c7:69:
46:56:0c:23:3b:a1:b0:18:7a:4b:16:e8:a0:bd:fa:f1:d2:79:
e5:28:91:52:c4:18:18:e1:ef:ec:2e:f6:e8:57:71:52:76:04:
e5:b6:42:35:0c:0c:ba:49:ee:7b:d6:20:82:67:95:b2:1a:11:
10:80:67:f0:f6:3d:19:f5:c4:37:f5:96:27:e4:3f:6c:89:b4:
72:b3:74:50:92:1d:e1:5a:5d:1c:19:4f:4c:ed:0b:fb:d0:55:
57:75:8f:43:04:c6:b1:21:25:a1:30:0a:3e:53:28:1b:1d:61:
0a:27:3d:fe:bf:e0:8b:d7:e0:2b:fd:2d:d1:7a:37:7d:2f:af:
9e:36:ef:40:45:62:35:fe:cd:54:76:86:06:03:12:85:0a:49:
fb:50:c0:99:7c:f0:25:e7:58:cb:dc:ba:98:04:44:71:4d:59:
98:83:69:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 13:38:02 2025 by rpki-client