Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/pvw_PwEl0XG6yvEgRk6viLXdjN0.roa
File: pvw_PwEl0XG6yvEgRk6viLXdjN0.roa (raw, json)
Hash identifier: reLyqzAjoHOoYB9yDxeg3co9R5/N0/4A0ZqDl0rskYE=
Subject key identifier: A6:FC:3F:3F:01:25:D1:71:BA:CA:F1:20:46:4E:AF:88:B5:DD:8C:DD
Certificate issuer: /CN=43039a68130f19631e1527946e1e127db1e8f9d9
Certificate serial: 018B4D6FD3185AB0BDAF19E3271BCE42FFE1
Authority key identifier: 43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/pvw_PwEl0XG6yvEgRk6viLXdjN0.roa
Signing time: Fri 20 Oct 2023 14:14:16 +0000
ROA not before: Fri 20 Oct 2023 14:14:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/96 maxlen: 128
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:4d:6f:d3:18:5a:b0:bd:af:19:e3:27:1b:ce:42:ff:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43039a68130f19631e1527946e1e127db1e8f9d9
Validity
Not Before: Oct 20 14:14:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a6fc3f3f0125d171bacaf120464eaf88b5dd8cdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:fa:a5:80:62:56:36:2c:39:3b:cf:75:0a:54:
66:99:03:19:00:dc:7e:9d:77:3e:e9:17:92:85:cb:
3c:21:35:f7:fb:8b:fb:6d:1e:1d:57:f4:b6:e4:66:
3b:5e:57:7d:ed:35:5e:bd:1f:ec:36:fd:35:09:30:
cd:45:c0:06:72:81:bc:1f:b1:c5:a4:52:3f:56:b6:
32:79:e8:99:77:c3:6d:3f:27:1a:30:eb:87:ed:d8:
db:4c:8b:78:f3:36:64:fc:a5:05:be:40:7b:83:6f:
1a:61:a0:14:4d:ab:39:77:67:d1:ed:ab:96:90:f5:
62:c4:dd:66:62:05:67:67:b0:95:ac:22:ce:46:e2:
8f:31:16:4f:c3:12:90:a1:16:3a:82:31:d9:76:7c:
e5:9b:a0:fb:4d:ca:28:b4:63:69:b6:dd:c9:a0:9c:
ff:4b:2f:29:b5:b5:30:d7:04:44:3f:c9:3c:f8:e0:
74:ef:f2:63:cc:76:ff:c8:53:a4:ec:95:77:d3:58:
90:6d:4f:36:ed:15:67:50:a6:15:b2:46:a8:4e:24:
a7:ba:78:54:e3:2b:14:40:25:07:7e:ea:af:50:59:
61:61:50:8e:72:c5:d5:ff:46:09:2e:ba:fa:89:75:
ed:57:38:2c:be:a1:7c:a0:e0:7a:26:01:f0:ad:08:
0a:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:FC:3F:3F:01:25:D1:71:BA:CA:F1:20:46:4E:AF:88:B5:DD:8C:DD
X509v3 Authority Key Identifier:
keyid:43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/pvw_PwEl0XG6yvEgRk6viLXdjN0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/QwOaaBMPGWMeFSeUbh4SfbHo-dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
d0:86:57:26:84:1a:e0:d8:a6:eb:11:a6:79:8a:a4:97:dd:9b:
ae:ab:df:60:97:6f:c8:74:cf:f6:56:dd:b3:fe:b7:97:3f:8f:
9e:d2:ec:65:c1:3d:d3:f7:a5:f6:6b:82:6b:b3:6f:d5:48:e7:
5b:da:c8:f4:a3:52:3f:61:c8:b8:90:ee:a1:f6:14:3b:62:ac:
ab:7e:36:05:8c:42:b5:2f:48:4e:a1:37:88:aa:d1:1e:c3:f6:
73:a4:3c:2e:c8:d4:c7:c1:5c:ef:cc:d1:a0:2b:1f:c0:57:b1:
55:6e:e4:b5:6e:fc:77:01:db:b4:f9:ca:f2:bc:a5:9a:86:24:
04:be:7b:e5:b7:8a:19:75:24:59:d1:7c:04:af:c0:a6:01:90:
de:64:46:78:a7:fb:ba:93:97:11:5d:32:27:02:5b:1d:94:e1:
14:df:71:cf:e0:cb:c7:f7:bf:97:3a:e1:10:35:16:9a:7d:b5:
53:b1:66:63:27:ad:c8:fc:d0:55:f7:d2:e9:40:f6:d2:63:46:
14:b8:21:c8:01:7c:43:09:7e:88:1e:be:51:94:70:f8:00:cc:
4d:81:ee:ef:23:2d:6e:c5:94:e9:77:d4:bf:04:18:e3:c5:d0:
b7:64:78:06:c6:eb:34:4e:2f:a1:6c:0d:af:a3:28:6e:9b:d6:
86:20:fe:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 01:37:17 2025 by rpki-client