Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/1-5FYnzfQvhJeaOkj1R3Bc2jFnmk.roa
File: 1-5FYnzfQvhJeaOkj1R3Bc2jFnmk.roa (raw, json)
Hash identifier: GdDAPIP0+x2IoDkld81QKmC3S7pDycgYDm+6Ti4zn5Q=
Subject key identifier: FB:91:58:9F:37:D0:BE:12:5E:68:E9:23:D5:1D:C1:73:68:C5:9E:69
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018D028709E39A2B6F35967019BC4D8895AF
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/1-5FYnzfQvhJeaOkj1R3Bc2jFnmk.roa
Signing time: Sat 13 Jan 2024 11:13:40 +0000
ROA not before: Sat 13 Jan 2024 11:13:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:02:87:09:e3:9a:2b:6f:35:96:70:19:bc:4d:88:95:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 13 11:13:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fb91589f37d0be125e68e923d51dc17368c59e69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:18:ca:61:79:dc:20:a5:50:7a:33:c9:36:97:
da:9c:39:59:2b:32:86:7a:49:ba:1b:d0:19:96:f4:
bf:95:d3:c7:83:21:0c:2f:91:65:5c:72:50:1c:7b:
2a:4a:8a:dd:17:34:e0:b1:90:12:0a:41:a7:26:6d:
1f:eb:f8:26:b7:38:8d:3a:84:65:5b:eb:a3:7b:31:
29:a6:44:29:5d:fb:99:2c:5e:be:74:6c:47:a6:19:
39:f7:3d:03:37:37:89:31:78:05:b8:06:7e:fb:ff:
a6:aa:b8:50:d7:61:fc:ef:e6:50:28:b4:a2:dd:c1:
6c:41:00:07:64:4f:84:bf:e4:1d:42:d9:f1:f0:43:
e8:67:ee:1f:5c:c9:47:fb:2f:4b:89:ed:cc:57:52:
2e:d8:66:a9:73:7d:1e:78:43:bd:12:26:08:a5:7b:
5d:b8:a0:62:5c:c6:a7:f3:bc:1a:2d:86:90:31:0c:
18:60:9c:35:21:4d:83:0e:d7:74:fc:fa:c9:56:07:
35:ad:24:01:84:e0:0d:57:cb:2d:67:ec:2c:41:37:
57:d5:5d:e6:04:6d:51:5f:6b:99:ab:40:77:d0:32:
87:5c:c7:47:21:33:f5:2c:db:ae:f7:8c:6b:d1:03:
ae:6d:8a:b1:ac:77:3b:ed:d4:d5:ad:46:2e:83:5d:
da:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:91:58:9F:37:D0:BE:12:5E:68:E9:23:D5:1D:C1:73:68:C5:9E:69
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/1-5FYnzfQvhJeaOkj1R3Bc2jFnmk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
87:48:b3:69:fb:28:72:7e:6b:ed:60:e9:34:28:9a:7a:65:8c:
cd:0d:f2:ba:b1:f0:33:1d:9e:09:c8:98:60:c8:58:6b:26:d1:
97:ea:20:da:82:aa:2e:2f:a7:6f:11:04:ed:73:6f:0c:2e:74:
db:12:ab:35:69:92:d4:bf:4a:ba:54:24:14:54:2d:b4:66:ac:
8c:10:d2:54:45:85:96:d9:41:db:cb:8a:e2:ac:b7:74:e3:65:
18:3d:ac:d7:52:d3:75:c0:8f:ae:79:be:d0:b0:b4:2b:53:36:
1b:f9:62:24:c7:47:39:34:39:56:53:4d:19:bf:40:d2:47:57:
c5:63:03:04:c6:e8:8d:13:78:11:13:76:88:c6:3b:20:fd:02:
15:8a:ed:d2:5b:56:93:51:d3:8e:d9:59:58:ac:03:66:cb:c3:
e3:df:a7:15:9c:87:ba:8d:67:dd:36:8a:2f:d1:d1:cb:2f:03:
e4:02:1f:7e:4a:68:34:de:27:84:f1:77:26:bb:24:5e:27:d1:
1f:d9:73:d4:4c:0f:f6:6e:87:8c:03:2a:e6:50:fe:17:70:66:
2b:e9:c2:da:be:73:8c:12:11:c2:a1:59:06:b0:a4:ab:39:8e:
e6:b7:64:fe:f3:6d:47:7c:d7:21:8a:f4:cf:30:10:40:5a:b5:
bd:9e:98:25
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgISAY0ChwnjmitvNZZwGbxNiJWvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzYjNkYTNlY2I4YTdkNDMzZGUzODMzODY2N2IzNWU2OGRm
NzNmOGMwHhcNMjQwMTEzMTExMzQwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYjkxNTg5ZjM3ZDBiZTEyNWU2OGU5MjNkNTFkYzE3MzY4YzU5ZTY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAixjKYXncIKVQejPJNpfanDlZKzKG
ekm6G9AZlvS/ldPHgyEML5FlXHJQHHsqSordFzTgsZASCkGnJm0f6/gmtziNOoRl
W+ujezEppkQpXfuZLF6+dGxHphk59z0DNzeJMXgFuAZ++/+mqrhQ12H87+ZQKLSi
3cFsQQAHZE+Ev+QdQtnx8EPoZ+4fXMlH+y9Lie3MV1Iu2Gapc30eeEO9EiYIpXtd
uKBiXMan87waLYaQMQwYYJw1IU2DDtd0/PrJVgc1rSQBhOANV8stZ+wsQTdX1V3m
BG1RX2uZq0B30DKHXMdHITP1LNuu94xr0QOubYqxrHc77dTVrUYug13aPQIDAQAB
o4ICGzCCAhcwHQYDVR0OBBYEFPuRWJ830L4SXmjpI9UdwXNoxZ5pMB8GA1UdIwQY
MBaAFNOz2j7Lin1DPeODOGZ7NeaN9z+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODct
YzUzOTc5ZDY2Y2E1LzEvMS01RlluemZRdmhKZWFPa2oxUjNCYzJqRm5tay5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvOGIvZTA1MjBkLTliYTYtNDFhMy04Zjg3LWM1Mzk3OWQ2NmNh
NS8xLzA3UGFQc3VLZlVNOTQ0TTRabnMxNW8zM1A0dy5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEA8EAGDAP
BAIAAjAJAwcAIAEGfABkMA0GCSqGSIb3DQEBCwUAA4IBAQCHSLNp+yhyfmvtYOk0
KJp6ZYzNDfK6sfAzHZ4JyJhgyFhrJtGX6iDagqouL6dvEQTtc28MLnTbEqs1aZLU
v0q6VCQUVC20ZqyMENJURYWW2UHby4rirLd042UYPazXUtN1wI+ueb7QsLQrUzYb
+WIkx0c5NDlWU00Zv0DSR1fFYwMExuiNE3gRE3aIxjsg/QIViu3SW1aTUdOO2VlY
rANmy8Pj36cVnIe6jWfdNoov0dHLLwPkAh9+Smg03ieE8XcmuyReJ9Ef2XPUTA/2
boeMAyrmUP4XcGYr6cLavnOMEhHCoVkGsKSrOY7mt2T+821HfNchivTPMBBAWrW9
npgl
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:49 2024 by rpki-client on console-ams.rpki-client.org