Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/V7ewuSx4GXQS6euJ0ypMLqXdEEA.roa
File: V7ewuSx4GXQS6euJ0ypMLqXdEEA.roa (raw, json)
Hash identifier: 0jZ0HhGHnnozAXCWX6ZNUS0b/5KKdtqCDmBMB4q35Dk=
Subject key identifier: 57:B7:B0:B9:2C:78:19:74:12:E9:EB:89:D3:2A:4C:2E:A5:DD:10:40
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018E7812DA79A94B996E50F2FAE333DE35F5
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/V7ewuSx4GXQS6euJ0ypMLqXdEEA.roa
Signing time: Tue 26 Mar 2024 00:04:45 +0000
ROA not before: Tue 26 Mar 2024 00:04:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:c109:b478/128 maxlen: 128
2001:67c:64:ffff:0:18d:e84f:370a/128 maxlen: 128
2001:67c:64:ffff:0:18e:76c8:d5da/128 maxlen: 128
2001:67c:64:ffff:0:18e:7812:51f6/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:78:12:da:79:a9:4b:99:6e:50:f2:fa:e3:33:de:35:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Mar 26 00:04:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=57b7b0b92c78197412e9eb89d32a4c2ea5dd1040
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f2:f9:55:47:d3:a9:28:1c:fc:96:ca:df:c1:
b8:c6:da:e7:47:6d:a2:03:2c:4b:f9:84:13:ab:ab:
4c:bc:46:ad:2d:41:d1:ca:7e:87:60:df:8d:0b:d2:
a5:23:0b:97:ca:8c:e1:6a:bb:7d:75:14:c5:3e:ff:
7c:99:85:fc:6b:bc:9c:85:18:9d:12:12:80:ad:46:
aa:15:35:c6:05:7e:89:82:ed:4f:6b:0a:91:d7:51:
ab:d2:46:35:8f:f1:ec:e2:25:f5:24:45:ac:8e:59:
18:e9:b2:c6:6f:9b:8d:d1:5e:f5:8f:84:c2:e1:f8:
99:a7:8b:05:05:b6:57:ed:22:19:35:6b:b8:cf:c0:
2a:f6:da:ca:f7:77:8b:9a:e7:e0:55:70:28:72:1a:
75:58:d8:54:d4:7d:ab:32:78:da:7a:c6:ac:f9:8e:
a2:14:64:a2:15:b9:85:ce:0a:0d:9c:7c:b4:36:a3:
dc:eb:78:3b:8c:0e:bb:b6:3c:f4:bb:78:87:b7:37:
f2:eb:3b:49:5f:c6:ae:de:69:aa:ba:ee:f6:13:03:
16:fa:1d:57:0f:7a:bc:d0:70:50:b8:50:38:61:12:
24:81:3d:d9:d7:7a:26:26:bd:10:99:18:c7:65:da:
03:47:96:2b:2e:6c:b7:61:14:b1:58:e5:de:e5:78:
fb:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:B7:B0:B9:2C:78:19:74:12:E9:EB:89:D3:2A:4C:2E:A5:DD:10:40
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/V7ewuSx4GXQS6euJ0ypMLqXdEEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
16:ae:0c:6e:f3:df:2a:59:39:d5:96:a4:f8:e7:d9:60:75:b1:
da:90:f3:0d:07:55:a2:ec:09:09:ec:af:23:a8:3a:ba:42:66:
43:78:ea:ab:38:e8:b8:6e:bb:1a:1a:49:76:61:7b:a7:27:56:
e0:e3:66:b2:99:64:f5:6c:35:d8:d7:97:35:ce:60:fd:a2:f9:
96:3e:95:80:50:9d:1b:19:b6:46:c1:f4:da:15:fc:c4:c1:6e:
4c:86:76:c5:91:3d:75:d2:61:38:c9:cf:88:a4:ee:a2:7f:be:
f7:74:e3:f5:ab:48:56:22:3b:f9:2e:91:ad:f3:68:41:0a:e6:
cd:cd:d9:a7:2d:9f:7d:5c:a7:d0:05:90:e5:5e:7e:17:82:da:
53:e3:b9:7c:df:69:11:ea:32:81:7b:1e:a6:44:7f:d2:26:35:
90:a9:cc:c2:01:e0:b4:17:02:cd:d2:a1:b8:45:e9:69:f8:59:
27:33:6e:f2:88:55:ce:a9:73:a4:d0:02:bc:b5:fd:a0:62:4d:
fe:be:c7:a7:c9:08:28:fd:65:c9:ad:ef:ba:5d:ff:83:a7:29:
65:bd:76:24:8a:b0:23:f8:f0:78:91:49:38:a8:fa:8a:f4:bf:
36:92:23:b8:32:05:93:76:aa:55:6a:f3:7c:9f:46:f2:05:d4:
50:07:33:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:54:17 2025 by rpki-client