Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/e5pSOn-An9RSJOtlb-b-82Ne-OE.roa
File: e5pSOn-An9RSJOtlb-b-82Ne-OE.roa (raw, json)
Hash identifier: Ri15oCrrGGcOBigijyo8l3jDA6xSnkTZnCfCWzJbvPg=
Subject key identifier: 7B:9A:52:3A:7F:80:9F:D4:52:24:EB:65:6F:E6:FE:F3:63:5E:F8:E1
Certificate issuer: /CN=43039a68130f19631e1527946e1e127db1e8f9d9
Certificate serial: 018AB87C6F2EA0E2ECEDFAC64C99FE7D4E24
Authority key identifier: 43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/e5pSOn-An9RSJOtlb-b-82Ne-OE.roa
Signing time: Thu 21 Sep 2023 16:04:37 +0000
ROA not before: Thu 21 Sep 2023 16:04:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18a:b87c:4cd3/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b8:7c:6f:2e:a0:e2:ec:ed:fa:c6:4c:99:fe:7d:4e:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43039a68130f19631e1527946e1e127db1e8f9d9
Validity
Not Before: Sep 21 16:04:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7b9a523a7f809fd45224eb656fe6fef3635ef8e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:10:cb:5f:67:3f:76:40:9b:37:a7:11:e6:64:
c4:5c:9a:9e:9e:0f:da:cc:2d:8f:6e:9d:7b:cb:bb:
6b:93:80:26:f8:60:ed:96:53:69:38:95:95:29:4d:
42:f3:aa:a4:4a:85:b0:ad:f1:d7:40:9c:c5:90:e0:
c0:fd:1b:40:86:8e:2f:2b:cb:f0:21:7c:11:5d:57:
13:dd:3d:98:84:ff:14:8d:33:14:50:69:c0:29:f3:
16:df:26:b3:53:62:e9:ff:4f:d5:74:43:0c:b3:48:
11:85:c7:71:ff:cd:7a:e4:c5:f7:89:54:86:47:5f:
49:d1:74:b0:a4:98:11:1f:cd:37:32:8e:10:86:da:
81:7a:30:0c:c2:44:df:e3:92:0c:0b:f1:48:5a:bf:
bc:67:41:31:4f:33:33:e6:98:54:92:89:4c:b7:ee:
e3:c8:c9:b0:c4:ae:a8:67:4e:3c:89:2b:09:d5:83:
8f:a7:29:0d:70:0f:2c:96:cb:98:16:50:5d:49:62:
43:45:04:33:a1:b5:ee:f9:33:60:4b:f1:04:22:f2:
f3:02:d8:a8:bf:23:cb:7f:05:38:13:89:6d:51:de:
35:a0:bf:d8:0d:14:4b:c7:ed:e8:d8:c5:cc:fb:10:
ff:b4:e7:f4:0d:8e:40:6a:b1:00:ff:57:7f:56:7d:
5f:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:9A:52:3A:7F:80:9F:D4:52:24:EB:65:6F:E6:FE:F3:63:5E:F8:E1
X509v3 Authority Key Identifier:
keyid:43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/e5pSOn-An9RSJOtlb-b-82Ne-OE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/QwOaaBMPGWMeFSeUbh4SfbHo-dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
36:cc:37:bf:8f:10:78:a8:ac:16:d2:8e:aa:4b:c2:10:3e:04:
8d:2f:2b:ad:65:bf:dc:85:0d:c4:47:72:2c:52:14:04:d1:e0:
07:cc:2b:c0:9c:14:94:8b:ec:90:17:f0:dc:0c:10:9f:81:55:
ea:dc:1a:7c:29:47:d0:81:62:94:1f:5c:75:87:59:f5:46:63:
67:34:b0:20:7a:a6:6f:33:5c:ce:22:e9:6b:2f:f3:c4:b5:d8:
a9:9d:fe:3c:b3:19:b7:97:3a:11:af:8e:41:c8:4c:75:80:3c:
b9:68:54:10:5c:07:9f:5e:1d:09:88:03:09:4f:3f:0a:b0:fb:
b0:4d:75:61:4e:9a:e3:23:33:e5:37:9d:f3:75:b7:de:c3:71:
7d:a1:06:38:d8:9f:be:9c:77:7c:89:95:cf:f0:a6:5d:15:c3:
0c:34:0d:ab:8a:11:d0:39:fa:4b:f5:2e:49:17:69:42:4c:ea:
03:a7:59:38:2c:b1:1a:bb:61:f0:f6:eb:d2:b8:0b:b9:ff:a8:
b7:0e:f1:d4:d1:e8:af:d2:10:da:0b:ce:22:66:19:02:0d:33:
15:47:d1:76:21:6c:a0:7b:ad:46:ac:fa:1d:f1:99:ca:70:1c:
35:03:a6:7e:63:47:fc:03:2e:81:61:e6:0c:ef:d5:64:76:10:
b7:cb:c6:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 22:27:08 2025 by rpki-client