Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/dO_E_jkaIYHH-1Hd6RM88DrjdZk.roa
File: dO_E_jkaIYHH-1Hd6RM88DrjdZk.roa (raw, json)
Hash identifier: B9e9PaGJqkHhe2ANPSDEDnPXi0YPrFwG2y5DEhOMnCw=
Subject key identifier: 74:EF:C4:FE:39:1A:21:81:C7:FB:51:DD:E9:13:3C:F0:3A:E3:75:99
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018DD8064E80079EEF0B0DF529E56F0E56E2
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/dO_E_jkaIYHH-1Hd6RM88DrjdZk.roa
Signing time: Fri 23 Feb 2024 22:11:48 +0000
ROA not before: Fri 23 Feb 2024 22:11:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:c109:b478/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d8:06:4e:80:07:9e:ef:0b:0d:f5:29:e5:6f:0e:56:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Feb 23 22:11:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=74efc4fe391a2181c7fb51dde9133cf03ae37599
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:19:57:c0:18:66:47:17:14:7d:6a:b1:f9:b3:
be:66:b7:eb:9c:68:71:91:b1:ce:b4:23:61:c4:62:
e1:97:72:54:1e:29:e9:d1:e4:a1:fd:60:4b:c4:4c:
d4:48:ff:a5:21:14:7b:29:7a:ac:8f:b1:b2:16:6c:
90:06:c5:b3:b7:7d:bc:31:2a:e3:cb:95:35:2f:24:
2f:c1:7a:7e:bf:6f:3a:79:73:8a:61:ba:4d:2b:24:
26:d8:07:92:40:e7:8c:b7:7b:ab:47:a2:e5:b4:54:
20:80:57:5c:c3:0f:a2:d3:b5:5e:a3:7f:49:4d:86:
cd:fe:95:f7:c8:6b:72:14:a6:95:88:55:33:91:b8:
aa:78:36:20:c4:d3:74:07:a4:ab:27:6e:94:4d:28:
83:c3:6d:1a:72:1c:d4:23:6d:9a:b6:ca:af:aa:75:
c5:28:f6:4b:82:c8:2e:00:4d:9c:8b:6d:87:f8:2b:
44:c6:69:07:6d:b4:b0:8a:49:bd:51:68:13:58:ed:
19:91:74:bc:05:89:8e:60:45:ae:6a:5a:f2:65:e9:
2b:a3:a8:9c:c8:5b:02:c3:8d:89:ad:2b:b4:7e:64:
15:63:80:cd:eb:23:c7:90:cc:55:73:30:7d:bf:20:
ea:3c:f0:c3:39:0c:ed:b3:15:06:53:bc:6e:34:db:
fc:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:EF:C4:FE:39:1A:21:81:C7:FB:51:DD:E9:13:3C:F0:3A:E3:75:99
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/dO_E_jkaIYHH-1Hd6RM88DrjdZk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
14:ba:e0:f7:96:e4:da:54:5e:3f:a6:69:9f:e1:12:ce:04:99:
31:bf:35:fd:a6:48:e5:70:64:eb:19:66:8c:55:fb:98:6d:91:
f0:60:1c:ad:98:e3:6b:08:4c:6d:c3:43:f6:b7:f2:1e:a2:89:
c6:4b:0e:b9:a3:5c:57:fb:e8:08:1e:9b:ad:01:bc:da:17:5a:
f7:0f:cc:fe:e3:42:9e:07:1b:05:41:a4:80:0d:33:35:4d:97:
f9:72:65:08:92:3e:be:22:a8:40:39:3c:a8:c0:b3:1d:c0:08:
55:b5:a0:c7:4c:2a:f9:e9:04:5b:2f:54:1e:00:fa:3a:c7:a6:
42:87:cd:65:75:3d:8e:22:5a:b8:f0:e4:6e:e1:96:dd:37:1f:
5a:89:74:81:40:11:86:7c:f4:9a:27:1c:f6:72:0e:d0:19:4f:
bd:48:61:c3:b4:95:29:af:30:56:10:cd:e7:e5:b8:5b:d0:d0:
f6:40:8a:11:ea:bc:25:a8:d8:00:24:4b:c2:02:92:bb:30:ae:
84:e2:2c:70:16:b1:56:8d:f8:49:b6:9e:06:26:52:22:e3:d3:
46:c5:60:d7:e6:22:c6:93:95:1c:1e:d6:dd:f9:7c:15:b0:1c:
13:65:80:6c:74:20:97:59:85:d0:c3:a2:28:fc:4e:87:7f:e5:
d8:57:38:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:41:39 2025 by rpki-client