Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/r0v64mvZocvGLga6eO5Ua4h8u-o.roa
File: r0v64mvZocvGLga6eO5Ua4h8u-o.roa (raw, json)
Hash identifier: JtZHtosgLp6XHE2YTJJ3SfdNBbygODf9bBIQz5xfvMY=
Subject key identifier: AF:4B:FA:E2:6B:D9:A1:CB:C6:2E:06:BA:78:EE:54:6B:88:7C:BB:EA
Certificate issuer: /CN=43039a68130f19631e1527946e1e127db1e8f9d9
Certificate serial: 018B00650BD02438911943612DEFB6ADD86C
Authority key identifier: 43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/r0v64mvZocvGLga6eO5Ua4h8u-o.roa
Signing time: Thu 05 Oct 2023 15:11:43 +0000
ROA not before: Thu 05 Oct 2023 15:11:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:00:65:0b:d0:24:38:91:19:43:61:2d:ef:b6:ad:d8:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43039a68130f19631e1527946e1e127db1e8f9d9
Validity
Not Before: Oct 5 15:11:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=af4bfae26bd9a1cbc62e06ba78ee546b887cbbea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f9:16:c9:f2:6d:13:ed:33:e9:54:04:0e:50:
21:e8:fa:31:a7:4f:2d:c6:0e:44:dd:c7:06:8a:e5:
ad:10:8b:51:d9:52:f3:4f:3a:c9:eb:8c:82:4a:51:
0d:c0:a4:d9:5d:dc:7f:7f:55:1d:83:b1:59:34:81:
d1:85:df:8b:82:06:56:49:3f:b6:29:ac:4a:59:44:
f4:72:9d:6c:b8:3b:c2:9b:cf:2a:b0:0f:2d:21:fe:
28:1c:63:84:7a:d0:26:6a:f6:8f:94:1d:51:a1:81:
53:57:95:fb:8f:de:61:02:df:5d:f9:21:55:a5:f0:
d7:d7:59:bf:53:f7:47:35:51:90:6c:74:c2:4e:e1:
2f:c6:1f:ef:08:bc:af:d7:8d:a0:6d:6c:b3:c4:97:
e2:85:0b:f7:c6:d7:9a:9d:59:11:26:5e:ae:ac:32:
16:ca:62:cc:82:94:aa:83:87:97:ba:2a:fa:ae:e1:
40:9d:60:29:24:16:83:38:7a:f7:81:ea:b4:60:03:
43:5b:ca:3b:9d:04:0c:eb:d7:bb:65:13:ae:f9:3a:
0d:57:51:83:b5:96:18:5b:ac:cb:01:bb:a8:52:83:
ba:fb:2a:42:a6:81:0f:81:5f:bd:2e:02:cc:2c:6e:
f8:8a:7a:31:a3:3a:95:75:98:f0:65:62:8c:0b:a9:
74:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:4B:FA:E2:6B:D9:A1:CB:C6:2E:06:BA:78:EE:54:6B:88:7C:BB:EA
X509v3 Authority Key Identifier:
keyid:43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/r0v64mvZocvGLga6eO5Ua4h8u-o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/QwOaaBMPGWMeFSeUbh4SfbHo-dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
4c:d2:03:5c:10:9f:37:ba:f9:40:6a:28:cf:fa:91:fc:df:91:
b1:f4:4f:bf:a5:ba:a0:67:4c:65:e3:b3:ed:9d:b9:3d:fc:bd:
5b:58:bf:84:31:e8:3c:66:67:82:83:5b:e1:0f:bc:67:8c:cd:
d2:1e:6b:8e:27:85:d5:0b:06:bc:d0:c6:91:02:1a:1c:16:21:
73:b2:02:78:e5:de:0c:04:5c:99:8f:c1:55:82:b4:a5:f4:ca:
06:82:f9:d3:6e:24:be:7e:8a:fc:5d:69:47:92:53:04:c0:be:
e2:e9:ab:2f:aa:03:2e:b1:36:b6:77:15:7a:0c:47:13:ef:88:
fc:30:0e:d0:99:ba:3e:15:f6:a8:12:db:2b:24:cc:b6:f1:b0:
3d:73:f0:37:16:3a:23:11:c2:37:0e:ee:83:f6:a3:60:47:35:
01:8f:30:ba:24:34:00:25:e8:de:85:e5:dd:f3:22:e0:34:55:
7b:f0:4e:9e:f2:55:c5:ac:b0:dd:98:91:02:fc:e2:6c:81:34:
5c:81:b5:8f:62:13:f3:c1:5b:e9:7c:8c:5d:8c:60:16:01:88:
9b:44:bb:38:8b:ea:7e:db:d0:b8:39:b5:f9:9f:c2:bc:bf:ae:
e0:e6:02:af:fb:79:ad:0d:f6:3e:fe:30:7f:a9:35:4a:34:c0:
4e:ba:71:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 05:08:31 2025 by rpki-client