Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/qyehjJeaxt1S2Vf7Tkx9ywY9UJc.roa
File: qyehjJeaxt1S2Vf7Tkx9ywY9UJc.roa (raw, json)
Hash identifier: G0OqANMqqfWFHWaWFv9mW9vrYfTP6/lLAL6XNxF3sgQ=
Subject key identifier: AB:27:A1:8C:97:9A:C6:DD:52:D9:57:FB:4E:4C:7D:CB:06:3D:50:97
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018D0662E4C5A0F12DD7EB8A52C3751B7752
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/qyehjJeaxt1S2Vf7Tkx9ywY9UJc.roa
Signing time: Sun 14 Jan 2024 05:12:40 +0000
ROA not before: Sun 14 Jan 2024 05:12:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:06:62:e4:c5:a0:f1:2d:d7:eb:8a:52:c3:75:1b:77:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 14 05:12:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ab27a18c979ac6dd52d957fb4e4c7dcb063d5097
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:10:24:dc:5d:da:10:9b:42:2c:1c:00:9f:fa:
59:33:b9:80:e4:60:d2:43:6d:f0:61:52:81:d0:20:
8f:16:e8:17:fb:d7:25:0e:48:b7:32:ea:78:8c:97:
11:05:36:65:d6:21:33:e9:83:59:24:a8:ed:dc:69:
24:1d:36:f6:77:b5:99:0b:02:bd:ed:14:65:fb:71:
46:b5:9d:48:96:f5:96:fa:e4:63:aa:e7:93:89:69:
2f:a2:22:3a:fc:27:df:27:bd:dd:6d:ea:9a:17:ae:
1f:9b:1e:e5:0d:51:33:8d:79:b5:89:75:bf:cb:9d:
55:0f:7b:f7:51:16:06:1b:89:ef:ce:5d:ee:5e:e6:
0f:54:1e:68:b6:f2:1c:ef:e8:65:84:1d:5a:73:f4:
02:df:af:43:21:cb:cf:f4:66:a1:4b:7a:4a:a9:6c:
75:86:06:d3:46:5d:bc:90:5a:ae:ab:82:e3:2a:94:
ec:a3:a3:e9:c1:f3:55:90:09:f4:08:ca:d9:a8:da:
c0:2c:df:7c:68:2b:7b:c8:22:b9:8e:3a:7a:74:39:
d2:a7:79:08:dd:7b:e6:db:dd:0e:cb:96:72:03:4f:
15:a5:5a:a9:ad:61:b5:be:47:c4:e4:78:54:05:df:
58:eb:9b:d1:17:37:55:5c:90:67:93:1c:a7:f6:20:
f3:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:27:A1:8C:97:9A:C6:DD:52:D9:57:FB:4E:4C:7D:CB:06:3D:50:97
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/qyehjJeaxt1S2Vf7Tkx9ywY9UJc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
61:1c:a3:90:c5:7b:a8:05:61:91:42:2c:1c:72:09:6a:ea:63:
58:af:97:40:51:28:c0:56:b4:de:d6:42:e4:41:08:ba:ad:d8:
ea:7e:79:3a:f7:99:4a:10:b4:7d:28:1b:d9:be:a9:93:eb:b6:
7f:8b:80:85:4a:07:53:0d:01:cb:3a:7f:79:d2:1f:71:44:13:
53:f2:4f:4e:59:5e:42:da:4e:f7:37:b4:c3:19:69:cb:de:26:
28:a5:dd:97:44:75:5c:9a:d6:1a:a7:2f:97:a7:8e:a8:ac:78:
e2:24:26:a5:37:fd:32:52:33:a7:08:6a:ff:3e:98:2f:d2:0e:
b9:72:1d:2a:97:ea:46:74:c2:29:e9:a7:30:03:07:93:53:5a:
eb:16:bc:52:42:81:8d:bb:d2:1a:b5:42:08:99:9f:8e:93:d4:
93:ff:d5:11:26:eb:02:e3:3b:48:4c:11:f4:fd:16:02:b8:5e:
c1:dd:13:8b:d9:07:4a:0e:32:d6:2e:48:f6:e4:9c:32:61:74:
95:ba:a8:88:2c:44:d2:8d:d8:19:3e:78:fc:e2:93:79:f7:e6:
53:1d:77:2f:9e:0f:39:5f:7e:75:d4:8b:85:ee:93:cc:45:cb:
6d:60:5b:00:94:da:a3:0d:59:bf:43:03:6e:38:83:d7:08:62:
84:99:8a:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:03:17 2025 by rpki-client