Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/67f049-879e-4eb4-b1c2-8c8ebf5889da/1/fEcRijqMhDysf79eG93lZO_Ln6A.roa
File: fEcRijqMhDysf79eG93lZO_Ln6A.roa (raw, json)
Hash identifier: 151qX3GV6D71Y5AEaDToLRBMOeiT/wNCXr7i0husoLQ=
Subject key identifier: 7C:47:11:8A:3A:8C:84:3C:AC:7F:BF:5E:1B:DD:E5:64:EF:CB:9F:A0
Certificate issuer: /CN=40b132c17e598f11b6a10f42ef3bce961e18e8ef
Certificate serial: 018EF0B08CE7494C4778934DD3A00DCD0ED0
Authority key identifier: 40:B1:32:C1:7E:59:8F:11:B6:A1:0F:42:EF:3B:CE:96:1E:18:E8:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLEywX5ZjxG2oQ9C7zvOlh4Y6O8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/67f049-879e-4eb4-b1c2-8c8ebf5889da/1/fEcRijqMhDysf79eG93lZO_Ln6A.roa
Signing time: Thu 18 Apr 2024 10:11:25 +0000
ROA not before: Thu 18 Apr 2024 10:11:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:f0:b0:8c:e7:49:4c:47:78:93:4d:d3:a0:0d:cd:0e:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b132c17e598f11b6a10f42ef3bce961e18e8ef
Validity
Not Before: Apr 18 10:11:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7c47118a3a8c843cac7fbf5e1bdde564efcb9fa0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f2:95:18:ba:95:d8:ae:a2:ce:2e:ae:ff:19:
8f:d5:8f:b8:e2:ec:b3:d9:8c:f3:89:5a:37:8d:57:
64:9e:f9:d2:11:93:c2:46:92:a5:e3:39:4b:d6:75:
94:72:c8:a9:a8:c3:c1:c2:82:1b:25:b6:8d:f9:35:
9e:e5:c4:41:19:e4:d4:c7:eb:d8:6f:7d:fe:be:bc:
f7:c4:53:b7:ec:7f:24:08:22:b0:05:1c:b0:c2:7e:
20:0e:3f:10:8b:de:43:d6:13:1b:76:0d:cf:65:fc:
73:38:fe:29:5c:ec:19:c7:be:28:ca:2e:54:8a:45:
6e:85:ad:8e:f9:7a:7b:f4:0d:aa:28:a3:52:f3:01:
42:b9:51:a9:8d:3e:8f:a7:00:f5:97:96:48:50:92:
72:cf:42:c7:ec:a1:0e:c1:12:42:26:45:9e:c2:8a:
c4:0f:60:ee:bb:04:c8:c1:3e:14:c5:78:03:46:23:
55:1d:d5:dc:11:1e:e4:33:f2:d1:b4:59:0f:7b:aa:
62:46:8b:a0:08:37:5a:a3:55:b6:09:8a:97:5d:9a:
22:46:03:c6:1b:8c:18:92:bf:be:7e:04:e1:2f:86:
8f:02:19:0d:64:c3:1d:98:29:16:75:42:28:bb:46:
91:50:e7:97:c1:d4:8c:e6:4d:a1:23:2f:7c:10:33:
f1:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:47:11:8A:3A:8C:84:3C:AC:7F:BF:5E:1B:DD:E5:64:EF:CB:9F:A0
X509v3 Authority Key Identifier:
keyid:40:B1:32:C1:7E:59:8F:11:B6:A1:0F:42:EF:3B:CE:96:1E:18:E8:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLEywX5ZjxG2oQ9C7zvOlh4Y6O8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/67f049-879e-4eb4-b1c2-8c8ebf5889da/1/fEcRijqMhDysf79eG93lZO_Ln6A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/67f049-879e-4eb4-b1c2-8c8ebf5889da/1/QLEywX5ZjxG2oQ9C7zvOlh4Y6O8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
1c:9f:17:93:82:6b:ca:85:ad:64:94:e8:71:c6:9a:8f:05:84:
a4:59:d6:c8:38:59:6e:eb:d4:b0:e4:c5:fa:59:f2:f3:10:01:
f2:f7:cb:25:50:f6:8a:0e:e0:e2:39:dc:d5:fe:0d:d2:96:66:
52:04:cd:df:fb:fb:7d:29:de:d3:70:e0:49:1e:94:a0:8f:85:
22:01:5c:e1:a2:e1:7c:4d:ce:69:27:62:a5:3b:c5:32:5d:5b:
b5:1c:4b:48:31:09:19:95:a4:99:9b:83:3c:be:ca:ad:c3:0e:
85:f7:a3:1b:01:17:77:d1:fb:2e:b0:73:1c:c3:49:fb:8b:4f:
1d:af:f9:21:94:fe:f7:bf:62:8f:39:0e:8b:78:71:93:fd:9f:
99:a7:91:a4:dd:b1:80:7e:8b:c7:e5:ea:f6:fe:3d:c6:ea:07:
bf:1f:71:b0:3d:79:65:12:61:42:c5:90:c4:41:f7:13:cd:00:
4c:31:92:ef:14:29:04:c4:69:b5:3d:04:5d:cb:7d:d7:64:b7:
f2:cd:64:dd:9b:80:2d:4d:25:66:41:3d:42:71:b1:d2:1c:2e:
f5:5e:5c:b9:36:36:e1:bd:ae:4e:7d:16:53:8e:9d:0e:07:74:
93:53:c3:14:74:d2:83:d7:71:b1:b7:a4:35:cd:69:dc:ed:7e:
0a:ff:2c:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 23:21:57 2025 by rpki-client