Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/vmwfQxRHTzxHGb_7HqZa8hQ3Jwk.roa
File: vmwfQxRHTzxHGb_7HqZa8hQ3Jwk.roa (raw, json)
Hash identifier: DbNXYmPZgKnkNyXTc3gLL0dSn/fE/BAkkCCJYwLMUCs=
Subject key identifier: BE:6C:1F:43:14:47:4F:3C:47:19:BF:FB:1E:A6:5A:F2:14:37:27:09
Certificate issuer: /CN=43039a68130f19631e1527946e1e127db1e8f9d9
Certificate serial: 018B41A7F00281F753703D385729701D939B
Authority key identifier: 43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/vmwfQxRHTzxHGb_7HqZa8hQ3Jwk.roa
Signing time: Wed 18 Oct 2023 07:20:06 +0000
ROA not before: Wed 18 Oct 2023 07:20:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/96 maxlen: 128
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:41:a7:f0:02:81:f7:53:70:3d:38:57:29:70:1d:93:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43039a68130f19631e1527946e1e127db1e8f9d9
Validity
Not Before: Oct 18 07:20:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be6c1f4314474f3c4719bffb1ea65af214372709
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:67:31:a2:0a:7f:dd:db:9d:d6:54:f9:7b:e2:
19:d8:3c:d9:65:fa:ad:c7:89:95:f6:c5:a0:37:6c:
e1:23:e7:74:9b:94:47:76:56:f3:75:c3:b2:ff:e1:
64:f4:d4:b4:1e:a8:86:60:1a:e3:be:b0:09:75:e2:
aa:40:c4:14:95:10:3c:ab:11:88:3f:d8:5d:18:f2:
1e:bd:fe:c6:6b:2f:73:e0:e7:bc:db:3b:d2:d2:3f:
25:5a:d9:c3:36:5f:ee:95:57:9d:cf:e2:69:26:e7:
fc:af:fc:83:21:48:fb:78:a9:a6:6a:ad:5a:d8:e1:
32:51:5d:a5:d2:8c:4a:6f:e3:08:99:3e:1c:38:c4:
f7:b1:2e:7d:3c:27:15:0f:f3:45:14:22:d0:ba:a5:
05:ce:77:28:05:77:ab:82:2d:37:83:6f:8e:17:5a:
ff:c3:36:4e:79:fd:96:b0:92:66:0a:26:23:4c:c7:
89:fb:a5:90:a2:af:6d:e5:8e:3c:c7:b8:fd:88:dd:
03:a3:60:b1:58:68:44:b5:1f:1c:96:49:78:63:a5:
a1:35:22:d8:e9:d9:c7:14:6b:6a:ed:c4:8f:b4:5e:
54:39:37:21:29:c7:16:c6:83:72:40:3b:ef:de:ed:
b9:fe:a1:79:72:38:eb:92:07:fb:8c:81:21:e9:d1:
d3:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:6C:1F:43:14:47:4F:3C:47:19:BF:FB:1E:A6:5A:F2:14:37:27:09
X509v3 Authority Key Identifier:
keyid:43:03:9A:68:13:0F:19:63:1E:15:27:94:6E:1E:12:7D:B1:E8:F9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwOaaBMPGWMeFSeUbh4SfbHo-dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/vmwfQxRHTzxHGb_7HqZa8hQ3Jwk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f60178-991a-4261-96a0-dd5c300be54e/1/QwOaaBMPGWMeFSeUbh4SfbHo-dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
83:2f:0f:9f:eb:75:a6:43:f5:a6:aa:8f:ae:f8:32:29:44:62:
d4:c5:f5:a9:6e:ea:2a:ee:25:65:ac:d9:ad:c0:ec:15:e0:74:
c8:69:a5:27:4b:7e:80:4f:45:a8:0f:3b:ce:e6:d5:b3:76:0b:
36:d8:a4:c5:ea:6b:ae:35:81:f6:60:a1:a1:fe:54:1c:e3:f3:
78:c6:92:d8:50:12:6a:8b:4a:fb:8d:fb:58:8e:8a:5c:d9:39:
17:95:f8:9a:af:73:71:72:91:21:e8:17:c8:39:03:67:d6:f3:
33:c3:83:50:77:e1:fc:02:4d:bb:8d:60:10:de:48:6a:7b:cc:
70:53:ac:3e:f0:f5:3f:95:ef:db:7d:ae:25:00:08:75:e4:86:
5a:46:7e:a7:7f:c5:d1:e8:0a:46:20:e6:57:d0:31:d8:d3:2e:
38:ab:ef:80:01:30:1c:3d:58:79:86:28:a8:1b:75:bf:95:a8:
12:91:05:15:14:90:4b:cc:cc:e6:c7:86:03:ce:1d:f7:97:f1:
d1:38:91:27:3a:c5:ea:7b:78:ed:ac:81:99:d7:c9:93:56:79:
34:10:3c:65:11:66:b8:3d:51:08:42:fc:08:46:bc:c4:8c:ac:
76:61:b1:c6:0b:60:50:d2:f6:7e:6b:81:74:bc:5a:08:d5:cf:
e2:81:a9:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 14:42:54 2025 by rpki-client