Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/jxpViUswQAl3BwZpZtau7yQN1VY.roa
File: jxpViUswQAl3BwZpZtau7yQN1VY.roa (raw, json)
Hash identifier: vSumSV1aqT/3PnavA0GgHS4kWri56kRP+nT/J//LtfE=
Subject key identifier: 8F:1A:55:89:4B:30:40:09:77:07:06:69:66:D6:AE:EF:24:0D:D5:56
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CC7BC0A58D0429115360CF519BB6FB74A
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/jxpViUswQAl3BwZpZtau7yQN1VY.roa
Signing time: Tue 02 Jan 2024 01:13:58 +0000
ROA not before: Tue 02 Jan 2024 01:13:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:bc:0a:58:d0:42:91:15:36:0c:f5:19:bb:6f:b7:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 2 01:13:58 2024 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8f1a55894b3040097707066966d6aeef240dd556
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:49:ba:42:f3:72:b7:a1:c6:6c:2f:5e:1c:2f:
8b:ee:9c:82:9d:0a:5f:c9:3b:6c:94:24:52:70:c6:
20:b7:f7:f3:94:c8:8a:f9:6c:2c:8d:77:c4:fd:5e:
03:09:b2:a1:29:fa:1e:3e:09:73:2b:82:d1:07:82:
c2:2e:2d:81:4a:2f:fd:e7:63:0f:96:69:8f:e0:90:
bc:c7:8d:f6:cc:08:a6:55:70:45:59:cb:00:f4:fa:
bc:4a:ca:8e:ec:d8:2d:19:1b:40:9d:72:35:82:00:
c1:93:a0:93:1b:9a:00:39:7c:21:ca:66:2b:9e:ca:
f1:6c:17:87:4f:86:72:f9:85:4f:9e:1e:56:f6:67:
8b:c3:dc:3c:61:11:87:77:75:9c:d2:a4:51:0b:d8:
39:66:9d:29:00:55:ea:94:b0:ed:ee:ac:66:2a:18:
1f:e0:47:29:be:e0:8f:52:9d:9c:c8:80:f6:9a:4b:
8e:73:49:d6:bb:56:c5:ed:78:5d:ee:6d:68:3f:55:
89:a6:84:48:75:a3:44:76:64:a6:6c:9c:13:63:4c:
e2:ef:f0:37:d0:1e:5f:77:67:45:f3:2c:c6:c2:96:
50:97:3b:87:82:3c:a8:92:a8:43:55:8a:54:60:ef:
62:2f:f8:25:81:f1:71:8d:49:5c:a3:4e:10:6c:bf:
11:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:1A:55:89:4B:30:40:09:77:07:06:69:66:D6:AE:EF:24:0D:D5:56
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/jxpViUswQAl3BwZpZtau7yQN1VY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
21:fc:5b:6c:93:d8:5f:e6:b8:ff:3b:4c:5d:9f:0a:ef:46:1a:
8e:9b:ce:0e:ab:89:99:6c:14:ea:13:70:58:aa:49:a1:8a:c6:
11:29:a1:35:7a:5c:b6:7f:c2:56:f7:14:5b:f4:8d:95:f1:42:
00:01:1a:18:57:62:85:23:ff:5a:a2:81:ef:37:e1:d4:84:12:
93:0b:b3:4c:ff:dd:56:6a:96:d5:2b:a8:b5:12:80:6a:45:e6:
01:ca:81:52:47:36:47:f4:1b:81:90:1f:8b:90:f3:15:d1:f5:
04:c9:d5:64:7f:5c:d9:b3:23:20:91:2d:e1:74:e0:f4:82:9d:
08:2d:8b:24:f5:b1:3a:83:f7:60:aa:2b:a7:23:4f:c0:ef:1b:
55:06:d0:e4:98:63:22:69:25:93:e2:9e:d3:bb:99:df:f0:c8:
3d:b5:0a:89:9c:53:78:b7:ca:f9:a8:fa:f2:98:6b:e3:ed:ed:
f3:3d:29:49:cf:77:aa:24:e7:a7:87:98:66:5c:c8:aa:64:f2:
44:8c:b8:68:6a:0c:95:9c:4b:d0:38:4a:80:bd:fe:1b:53:db:
bc:e5:74:10:dc:2d:66:62:73:61:32:39:4d:46:9a:c2:93:47:
79:c4:9f:67:47:10:b1:0b:a7:f9:36:3f:15:a9:74:1a:22:d5:
77:7c:4f:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:39:10 2025 by rpki-client