Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/5wnBSIVAO7FGTAnEqdbJe8wh2U8.roa
File: 5wnBSIVAO7FGTAnEqdbJe8wh2U8.roa (raw, json)
Hash identifier: APXjjGb800f2dSZMiVntq3wwApL6muZZ60hTEcLWcoE=
Subject key identifier: E7:09:C1:48:85:40:3B:B1:46:4C:09:C4:A9:D6:C9:7B:CC:21:D9:4F
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018EE175F107705A01685F09B1674991934F
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/5wnBSIVAO7FGTAnEqdbJe8wh2U8.roa
Signing time: Mon 15 Apr 2024 11:13:06 +0000
ROA not before: Mon 15 Apr 2024 11:13:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e1:75:f1:07:70:5a:01:68:5f:09:b1:67:49:91:93:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 15 11:13:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e709c14885403bb1464c09c4a9d6c97bcc21d94f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:9a:44:71:48:86:f6:92:b7:2a:a3:bf:73:44:
b9:14:93:8d:20:22:f6:de:0c:12:3f:6a:7f:cf:2a:
9f:f8:14:f4:9d:f3:e6:c3:7f:85:02:9e:b7:9b:12:
93:c4:e1:e9:23:c1:b9:19:47:76:81:93:0d:74:b2:
40:48:ea:f7:35:2f:25:0f:2e:31:36:b7:26:2d:0b:
0f:f1:4b:c6:98:ef:61:98:bb:f4:8d:6f:a4:a7:9d:
4f:02:9d:c4:06:09:24:92:a4:5a:9b:7a:49:ab:21:
5b:50:93:a9:4f:ef:d9:21:15:9a:13:11:45:98:ea:
5d:5d:ee:d0:ad:78:56:cf:5f:62:75:94:61:c6:ee:
af:b3:8f:25:51:b9:76:b2:5a:12:41:b8:d9:13:a8:
1b:2b:0d:c2:75:23:91:01:51:82:6e:78:a2:f5:c9:
b6:46:77:fc:bd:e8:77:a5:29:16:2b:2a:7e:11:f0:
17:fc:05:1d:5d:85:92:04:a8:22:0a:d1:bc:4a:91:
f7:28:f1:45:30:92:a8:fa:a1:de:47:e0:6d:12:bd:
77:09:72:cf:7c:73:9d:e3:62:03:e2:d4:b8:6e:c6:
f5:f3:72:a8:d9:d0:cf:a9:d9:1d:1b:17:ad:63:07:
29:63:7f:b8:3e:a0:eb:6a:f0:78:aa:65:87:68:b2:
71:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:09:C1:48:85:40:3B:B1:46:4C:09:C4:A9:D6:C9:7B:CC:21:D9:4F
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/5wnBSIVAO7FGTAnEqdbJe8wh2U8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
9e:3d:40:40:b4:77:01:f9:d5:f3:44:07:53:e5:4f:f6:f7:6b:
c4:e5:c2:2f:f8:17:8e:9c:73:ac:dd:31:d9:1a:23:32:52:d9:
6a:ba:0a:62:bc:c5:5d:a4:4b:ea:98:88:00:3c:2a:a0:87:62:
d1:6c:20:f7:fb:0e:b9:72:28:2a:d0:47:9e:05:e4:2a:ed:d7:
04:92:f4:eb:26:f4:d5:f2:fa:e9:2a:a8:b3:51:18:47:2d:19:
5e:38:18:64:46:ba:36:45:96:c9:9d:a3:d4:43:66:8a:8d:ff:
0f:c7:71:93:fa:17:8f:6e:54:95:b1:65:6a:e8:04:bd:df:5d:
5a:69:05:64:96:0c:86:2f:15:a6:0a:c9:2b:af:cf:7f:80:8e:
cc:7a:81:ac:b5:db:10:d7:93:99:ca:af:28:92:c3:65:91:1f:
e5:33:fb:d1:30:1a:d7:9f:65:24:f5:70:df:f8:6c:0e:48:61:
42:de:b8:42:c7:72:e4:24:b0:32:fe:ee:55:13:05:3e:0c:55:
f2:fd:99:37:db:15:1b:5e:5c:03:e2:94:1b:aa:21:e5:f1:0b:
bd:99:f6:c0:1d:d1:d8:c2:10:cf:14:cf:64:01:44:7d:8e:a9:
4a:60:56:08:17:6c:11:7d:57:ef:b2:87:b3:48:7b:51:b9:e9:
b6:dd:66:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:38:35 2025 by rpki-client