Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/VPhi0LgA9ne_6eT4MLUJDGkZ8FU.roa
File: VPhi0LgA9ne_6eT4MLUJDGkZ8FU.roa (raw, json)
Hash identifier: Bf85o0TzUen9Bcp6X3WqgIlVuem6bs4wru+AVPEl2Ng=
Subject key identifier: 54:F8:62:D0:B8:00:F6:77:BF:E9:E4:F8:30:B5:09:0C:69:19:F0:55
Certificate issuer: /CN=43039a68130f19631e1527946e1e127db1e8f9d9
Certificate serial: 018AD08EBCE2A1BC62BC2CC60A2C3106828B
Authority key identifier: 43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/VPhi0LgA9ne_6eT4MLUJDGkZ8FU.roa
Signing time: Tue 26 Sep 2023 08:15:29 +0000
ROA not before: Tue 26 Sep 2023 08:15:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d0:8e:bc:e2:a1:bc:62:bc:2c:c6:0a:2c:31:06:82:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43039a68130f19631e1527946e1e127db1e8f9d9
Validity
Not Before: Sep 26 08:15:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=54f862d0b800f677bfe9e4f830b5090c6919f055
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:62:cf:f0:e4:57:b3:82:f9:a2:3f:25:26:97:
b8:59:a4:f7:9c:9e:09:d6:69:73:2c:bd:85:90:88:
d9:26:95:33:43:5b:15:dc:61:65:40:b6:17:57:3a:
b9:53:fe:d3:88:ec:1b:01:93:21:41:74:10:b9:4e:
1a:7e:79:66:57:6a:fb:8d:37:5d:42:9d:5b:72:64:
ee:79:e8:ba:c6:01:00:95:22:e5:e6:68:99:fa:6c:
65:15:e4:68:de:d4:36:c5:be:4e:50:c9:ee:6c:df:
33:bf:4f:9e:ac:d7:cc:c7:5d:10:a7:24:4d:2c:06:
d6:06:c9:c8:a7:37:7e:8b:59:4f:22:8f:ab:51:7c:
4f:68:9c:33:b8:2f:e5:fc:4e:52:80:59:9a:5d:5d:
4a:89:30:d9:0d:34:d3:f5:4a:fb:ff:5c:d0:11:2a:
b4:2f:58:ee:28:b2:29:28:e3:bc:6e:be:ea:75:cf:
ff:7f:88:d4:5f:4e:1d:12:f3:b2:92:f1:0a:74:b3:
79:35:9c:5a:92:3d:c9:ff:75:13:dc:6a:3b:9e:32:
62:41:ee:44:11:53:ba:86:96:00:c0:bb:45:02:41:
b9:51:55:4f:7b:f9:79:d6:8f:81:cb:6c:95:7c:4a:
23:2c:ba:c4:e8:22:4c:d6:57:89:80:be:85:e5:b9:
8d:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:F8:62:D0:B8:00:F6:77:BF:E9:E4:F8:30:B5:09:0C:69:19:F0:55
X509v3 Authority Key Identifier:
keyid:43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/VPhi0LgA9ne_6eT4MLUJDGkZ8FU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/QwOaaBMPGWMeFSeUbh4SfbHo-dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
98:db:7d:4f:0a:85:99:e6:eb:ec:84:18:e5:69:a6:06:c5:27:
a3:34:61:37:cd:8e:20:5e:89:7f:6a:7c:16:6e:b0:af:c3:e1:
fa:36:3e:82:6f:df:b3:43:4d:bb:94:e8:c7:1d:cb:49:28:f5:
14:87:78:5d:e4:a9:ef:ed:65:53:07:64:69:e8:35:a2:83:a5:
e2:fb:a5:a1:90:9b:09:a7:02:9a:9b:15:36:c5:06:dd:43:d8:
0f:04:d5:24:eb:fb:80:a5:5e:69:a7:4a:32:a0:09:d0:1d:39:
49:49:7a:7f:95:d5:99:5c:09:e2:3f:a9:ef:eb:f1:9e:70:11:
4e:48:21:23:4c:59:60:db:7e:eb:6c:71:58:df:bb:b6:c3:08:
38:26:a7:61:d9:07:ff:ce:bb:5f:34:68:b0:48:95:43:2a:bc:
a1:b3:3c:68:06:90:30:f7:3c:f0:f9:91:8c:a8:1c:a6:ed:21:
79:76:4a:4c:3d:bc:14:85:9e:87:5c:38:c2:84:74:c1:1f:f5:
63:66:5c:ee:7b:d7:75:93:c1:2e:9b:dd:ca:30:af:23:45:9b:
4f:27:02:c6:ec:13:a3:00:57:5f:cc:bf:63:54:22:1f:a0:af:
b5:c9:9e:00:62:55:e7:e2:39:a3:67:a1:da:0c:77:46:85:09:
bf:61:b9:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 10:02:22 2025 by rpki-client