Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/730aED4UAURkYRj8YfDrUiUxvcY.roa
File: 730aED4UAURkYRj8YfDrUiUxvcY.roa (raw, json)
Hash identifier: eE6viK0W00gH6YwJp5wsELTje5Mn5PZJSDVxv5KOO0g=
Subject key identifier: EF:7D:1A:10:3E:14:01:44:64:61:18:FC:61:F0:EB:52:25:31:BD:C6
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CA376C272BE556EF2D505FDF177E80533
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/730aED4UAURkYRj8YfDrUiUxvcY.roa
Signing time: Tue 26 Dec 2023 00:11:58 +0000
ROA not before: Tue 26 Dec 2023 00:11:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:a3:76:c2:72:be:55:6e:f2:d5:05:fd:f1:77:e8:05:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 26 00:11:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef7d1a103e140144646118fc61f0eb522531bdc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:73:d4:74:ea:b0:45:a8:b4:08:61:2b:62:b2:
e1:c4:e5:69:da:e0:75:1f:ab:1f:95:73:28:be:36:
e3:92:b6:35:16:5f:bc:40:b0:25:6d:76:56:2e:04:
17:62:94:5b:e9:f8:05:d5:c7:81:23:27:ca:89:7c:
e0:4d:6d:01:52:cd:85:bd:00:b0:ba:d6:69:13:d7:
f4:3e:a3:62:61:30:6c:60:9f:0b:bf:ca:4f:92:4f:
21:17:90:31:f9:db:01:5a:4e:1e:7d:61:1d:5a:73:
23:5c:ca:39:38:e5:63:5a:77:b5:aa:15:e5:5b:26:
94:ed:73:19:32:c3:22:53:6b:c8:a2:07:03:04:4c:
67:5c:0a:05:d5:5a:de:83:8e:57:97:66:47:f5:36:
1b:10:1f:25:ab:24:f4:57:48:85:b9:14:3f:4b:ab:
bd:55:6f:89:5b:68:a2:44:3f:36:07:04:bc:b9:73:
5e:e4:8f:e4:e7:f9:81:04:aa:49:b7:7a:04:cd:0e:
6d:62:8a:43:d7:ee:8f:fa:ce:04:22:4d:45:d7:76:
f6:16:90:5c:bd:b6:63:1a:c0:e0:23:cd:6a:86:8e:
29:2a:46:20:7e:c8:77:44:ce:f7:60:f4:24:13:17:
9b:cc:0b:16:8e:13:0a:8d:49:7e:a1:26:48:2f:03:
31:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:7D:1A:10:3E:14:01:44:64:61:18:FC:61:F0:EB:52:25:31:BD:C6
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/730aED4UAURkYRj8YfDrUiUxvcY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
8a:78:8c:e5:0a:ad:5c:a4:94:5d:d0:c5:dc:1d:8e:35:c8:d7:
f9:c4:c1:e9:d5:ec:c7:3b:70:2f:51:9f:80:ee:a9:cc:84:70:
eb:02:a0:8d:e3:2d:0a:a2:31:d5:5c:16:2f:ef:0e:59:2c:91:
88:57:c3:17:5a:20:e9:f1:0b:86:f2:5c:99:4f:87:5d:61:f0:
43:57:90:3c:ce:7b:f4:cd:72:27:ee:a7:2b:ee:1e:ae:6e:fb:
df:41:8d:d1:68:45:b0:2c:b5:1a:4a:5d:8f:e3:99:0d:e7:47:
73:71:39:ce:5f:24:20:80:34:35:1a:1f:f7:29:b4:c6:f4:d2:
d5:fa:57:57:4a:9f:34:be:3c:93:0d:6a:7e:42:95:fd:1b:75:
dc:9a:e9:ee:2e:ad:9d:f4:fe:b2:d4:7b:db:3b:26:af:c9:be:
ab:25:98:39:88:a7:d8:32:7e:93:e2:59:d4:79:8c:8d:59:fb:
bc:b3:18:dc:4e:67:5f:44:79:7c:68:51:34:99:30:77:9b:f3:
59:bd:89:2f:30:fc:e9:b8:1d:a2:55:8c:54:bf:04:61:d7:86:
8a:0a:8a:5a:85:3f:8b:62:30:9b:66:7b:66:49:d2:3d:8b:be:
57:0f:39:0d:2f:7b:5b:40:2d:35:d8:d4:f7:12:9d:b6:1a:35:
6d:2c:b8:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:33:16 2025 by rpki-client