Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/TtUO-_U1eE6oe1e3PjhbNEFK-cc.roa
File: TtUO-_U1eE6oe1e3PjhbNEFK-cc.roa (raw, json)
Hash identifier: oVDIKd+UEgV7X+MW4lN46tI8gG2BksofZgdkgapwkIM=
Subject key identifier: 4E:D5:0E:FB:F5:35:78:4E:A8:7B:57:B7:3E:38:5B:34:41:4A:F9:C7
Certificate issuer: /CN=43039a68130f19631e1527946e1e127db1e8f9d9
Certificate serial: 018AC3AED743CE6DDD7F59FB001ED90928A2
Authority key identifier: 43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/TtUO-_U1eE6oe1e3PjhbNEFK-cc.roa
Signing time: Sat 23 Sep 2023 20:15:30 +0000
ROA not before: Sat 23 Sep 2023 20:15:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:c3:ae:d7:43:ce:6d:dd:7f:59:fb:00:1e:d9:09:28:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43039a68130f19631e1527946e1e127db1e8f9d9
Validity
Not Before: Sep 23 20:15:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ed50efbf535784ea87b57b73e385b34414af9c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c7:01:15:36:7c:04:ea:62:96:13:48:d9:f0:
13:f4:76:8b:e6:85:7c:73:23:a7:24:4f:64:aa:87:
9a:cd:b6:69:66:53:29:d6:b5:4b:5e:6e:af:36:78:
6d:2a:1c:b5:60:28:34:81:9f:ec:56:04:39:9c:89:
80:08:36:36:4a:5a:8d:39:6b:3b:36:9d:b7:97:99:
84:bf:25:e0:ff:72:c6:46:a3:ad:87:83:62:81:2e:
7b:29:4f:20:9e:05:72:d1:a2:6a:05:9e:2d:5a:9b:
2d:bf:09:f8:aa:62:05:b1:1e:f7:a2:8b:d5:4f:14:
42:c9:f2:39:a4:38:d1:98:26:b0:0e:39:72:83:84:
6f:c2:7d:d2:9c:6d:74:c4:79:24:4b:45:a5:5b:4e:
86:86:78:45:12:9d:fb:a7:d0:61:31:0c:ce:12:3c:
75:22:a7:7f:7d:ad:c1:3a:07:60:d0:39:60:f7:3f:
03:67:e5:7a:d7:23:8b:f9:a5:4e:6d:41:2d:35:fe:
bc:64:9f:66:a1:37:b2:49:f4:2d:52:c8:29:22:20:
0f:d6:c9:62:f1:d5:e2:85:a6:f6:0d:3d:61:fa:c0:
b2:80:12:4d:5b:ed:9b:2c:de:62:99:1f:0a:fe:a1:
d1:6a:26:13:08:4d:21:d0:0a:97:1a:44:4e:4a:d0:
e7:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:D5:0E:FB:F5:35:78:4E:A8:7B:57:B7:3E:38:5B:34:41:4A:F9:C7
X509v3 Authority Key Identifier:
keyid:43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/TtUO-_U1eE6oe1e3PjhbNEFK-cc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/QwOaaBMPGWMeFSeUbh4SfbHo-dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
c6:41:d9:d2:7c:03:8a:01:42:90:68:d2:59:af:24:7a:00:ba:
e4:da:64:8f:85:dd:8d:ce:fb:13:d9:64:85:e1:74:c0:6f:cb:
ce:42:ed:51:f7:d9:05:29:01:f2:09:bc:2d:42:9d:fd:f4:11:
93:2e:ea:89:67:9f:76:b6:00:30:1c:fc:7f:37:f3:fa:65:62:
f8:83:85:ad:e8:6e:23:e9:89:16:5b:49:0e:c1:7b:93:62:b2:
88:aa:83:7c:8e:49:d1:49:a8:79:7e:fe:d7:9e:8c:99:bd:1f:
66:53:0d:f2:f2:7d:af:55:9b:70:2d:89:9d:48:57:52:9f:b0:
62:8e:f8:70:dc:2e:6e:36:9c:1b:e3:4c:a0:79:a1:42:f8:32:
34:40:3e:b9:cb:d0:1b:81:8f:31:aa:ab:32:22:bd:c9:65:11:
e5:e5:27:16:a9:2e:cf:d6:72:6a:95:c4:7c:b6:0c:17:0c:62:
14:6c:96:fe:93:61:e4:8a:16:3b:e0:f5:6b:45:a6:27:cc:91:
04:5c:9e:65:7c:14:84:86:0e:a2:fb:43:0b:48:6d:21:49:06:
e3:4f:39:72:2f:e8:80:40:ef:f6:62:bf:cb:de:13:f9:cc:e1:
81:e7:d0:d1:47:43:2e:35:f7:c2:01:8e:7a:d7:2e:b8:8a:80:
f6:2d:b7:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 22:06:23 2025 by rpki-client