Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/1FGa1d7KB8tRGfef1hptx_Pqhlw.roa
File: 1FGa1d7KB8tRGfef1hptx_Pqhlw.roa (raw, json)
Hash identifier: Gu9y8L2cLdpcMIlCc9ejAPcso9og6bypK/8k/aaV5cs=
Subject key identifier: D4:51:9A:D5:DE:CA:07:CB:51:19:F7:9F:D6:1A:6D:C7:F3:EA:86:5C
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018C8FBAE08B8432E38FE33DF87046CF3860
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/1FGa1d7KB8tRGfef1hptx_Pqhlw.roa
Signing time: Fri 22 Dec 2023 04:13:58 +0000
ROA not before: Fri 22 Dec 2023 04:13:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:8f:ba:e0:8b:84:32:e3:8f:e3:3d:f8:70:46:cf:38:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 22 04:13:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d4519ad5deca07cb5119f79fd61a6dc7f3ea865c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:fc:9f:24:10:51:4c:0d:0b:a0:06:ba:1b:ba:
23:07:e7:6a:12:8a:cb:91:1f:e2:25:40:a0:1e:8d:
ff:1e:01:06:d2:c4:9d:b2:4a:a9:20:b5:d0:b3:e8:
5a:24:3a:3c:2b:62:74:1c:13:42:43:19:92:fa:8e:
07:8b:d6:b3:1d:36:98:59:d9:02:3b:a6:4f:0b:14:
99:67:09:e7:9f:30:ad:f7:96:84:ee:a1:5c:84:54:
d9:ef:f5:1b:df:06:fb:88:5a:3c:0f:b8:4c:78:0b:
9d:9d:d6:bf:e3:52:0d:a1:29:a6:81:7d:17:d7:91:
36:d8:28:f7:96:30:b9:3e:06:f1:7d:1a:7c:54:93:
52:b1:84:2f:b0:35:97:d0:a7:31:3a:a0:82:65:08:
f0:0f:f5:ab:dc:a7:2c:ac:1d:09:4b:44:cc:0d:1b:
d4:25:fb:dc:48:30:c9:54:2c:89:46:e6:57:61:f5:
8e:fb:0a:83:03:28:d2:3a:2e:9e:0e:33:31:c8:fc:
5a:f1:6b:0b:b9:e9:77:f2:2b:9a:b0:a8:41:db:b3:
43:83:d1:3b:fb:5c:d1:30:2d:27:1a:7b:1c:0f:e5:
ae:3b:77:d0:2e:de:b9:b9:1a:17:78:26:6f:55:fd:
a7:a7:ad:59:8f:df:99:c3:09:9f:13:14:7d:77:ae:
03:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:51:9A:D5:DE:CA:07:CB:51:19:F7:9F:D6:1A:6D:C7:F3:EA:86:5C
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/1FGa1d7KB8tRGfef1hptx_Pqhlw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
5d:a4:ad:54:2b:44:e6:81:30:ca:25:b0:05:2b:e6:ab:41:7a:
0f:41:e4:3f:90:e6:f4:f5:14:24:00:6a:74:fd:83:7f:5b:71:
dc:c6:a4:7f:9b:e5:bc:ce:31:cc:8c:74:51:c6:24:c8:61:42:
6f:0d:1f:11:e8:29:58:51:3e:62:46:39:4f:d8:85:eb:d9:26:
5c:83:e2:cd:ee:73:c1:a3:e9:45:84:22:66:2c:52:60:1e:aa:
d4:73:62:4d:30:5c:c4:0a:10:96:e9:62:33:c4:65:5a:30:8b:
3b:d9:7e:98:f6:c9:ec:95:6f:e6:35:b5:28:a7:4c:42:ee:7f:
88:e4:32:4b:9a:a7:b5:ab:34:79:9e:84:c3:5a:3d:3e:dd:6d:
41:e6:f5:4b:cd:59:06:e3:f3:83:5f:d2:a0:b1:29:ae:dc:87:
89:99:06:33:f1:f8:ed:07:48:79:1a:59:a6:0f:24:36:49:0a:
70:ee:97:96:87:38:3e:1c:78:42:10:60:40:7e:90:ba:b6:18:
ff:21:c4:74:65:33:05:93:a0:10:4e:b3:e5:97:aa:96:85:0b:
44:72:60:2d:37:87:67:be:97:22:b5:d7:70:85:12:60:5e:fa:
5b:6f:47:4d:cb:38:3c:62:3e:c9:12:06:44:c5:1f:06:0d:00:
90:25:0c:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:30 2024 by rpki-client on console-fra.rpki-client.org