Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/1kHQranYw8HyBS5kNK3v6Jn0Bhg.roa
File: 1kHQranYw8HyBS5kNK3v6Jn0Bhg.roa (raw, json)
Hash identifier: uEW/1edBMCtNHtXsRsdBMa7uD3wfcFUhOuoOIVHG7PA=
Subject key identifier: D6:41:D0:AD:A9:D8:C3:C1:F2:05:2E:64:34:AD:EF:E8:99:F4:06:18
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018ED915C74856A3BAAE5B5FDC364A288567
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/1kHQranYw8HyBS5kNK3v6Jn0Bhg.roa
Signing time: Sat 13 Apr 2024 20:11:06 +0000
ROA not before: Sat 13 Apr 2024 20:11:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:d9:15:c7:48:56:a3:ba:ae:5b:5f:dc:36:4a:28:85:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 13 20:11:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d641d0ada9d8c3c1f2052e6434adefe899f40618
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:2b:b2:f2:14:88:ed:45:e2:8f:da:a7:97:ba:
04:64:9a:74:90:51:22:40:96:80:08:28:9f:1e:35:
9b:4e:9d:30:d8:2e:8c:7b:62:52:17:f5:90:8e:cd:
6c:13:96:a0:21:e5:55:f7:07:ac:d2:d5:7d:38:ef:
ec:bd:31:58:6c:15:01:0d:36:e7:ec:db:28:eb:c3:
5e:fa:0d:be:ad:b4:4c:fc:3d:9a:ea:6f:95:90:9c:
86:b7:59:17:f6:6e:2c:bf:c3:4f:97:ff:a9:24:0f:
8d:82:40:04:dd:33:ee:96:13:58:94:6b:9a:11:b0:
0f:9d:86:45:6d:2a:78:a7:82:5e:ab:25:03:76:59:
cb:73:b4:b9:2a:88:54:32:90:26:d2:c6:77:fd:33:
89:4c:71:a8:f2:f8:ac:c4:25:8b:7f:08:c1:e9:e1:
14:30:31:1a:a9:b5:84:e5:75:0f:95:e7:fd:35:dd:
eb:4e:dd:9e:5a:dc:0b:fc:33:ee:76:53:9a:22:9e:
87:21:dc:a9:df:30:2e:65:bd:cd:12:9e:95:0e:27:
60:5e:e2:40:d6:77:23:8e:f3:be:a8:af:90:cf:10:
1c:69:6b:66:ec:94:7f:d0:37:2d:e8:ba:d3:b8:9b:
0b:0e:f9:d3:2c:f2:28:bf:55:59:04:03:62:14:4e:
e5:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:41:D0:AD:A9:D8:C3:C1:F2:05:2E:64:34:AD:EF:E8:99:F4:06:18
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/1kHQranYw8HyBS5kNK3v6Jn0Bhg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
3e:34:52:81:36:91:80:00:58:96:bc:15:18:43:39:6c:60:14:
2f:a9:5c:e1:29:a8:d8:09:5c:9a:63:7c:2b:e1:6d:7f:bf:72:
15:d4:d0:c1:8d:d5:e8:cb:e4:d5:72:9b:3d:8b:ed:13:a3:15:
38:6e:ee:b9:b7:c6:9d:51:59:f0:34:54:16:d6:73:68:b4:b3:
ce:22:52:f2:18:27:91:8f:60:d1:e1:fd:b6:da:bc:bb:cd:80:
29:9e:08:2c:15:9b:9c:4a:8d:b5:08:fc:aa:95:bf:43:06:57:
3d:be:f6:db:26:e4:a1:18:8d:8a:53:7d:75:0d:3b:1b:b8:96:
6d:6a:19:ee:61:7a:7e:f5:33:bd:c2:b0:c4:b2:1f:b3:c5:6c:
29:cf:cc:05:a5:32:b8:67:34:50:79:b2:bd:57:bc:f2:ed:78:
46:f7:6c:1e:2f:32:46:1a:b5:0b:1e:07:fa:96:bc:f5:36:67:
af:ad:5e:85:a8:89:0e:bc:cc:11:98:1a:c6:8b:99:7a:d8:03:
da:82:15:f1:6d:f2:43:18:7e:af:17:35:f4:7b:d4:a3:2d:4b:
c0:fb:76:d7:da:0b:35:72:6d:89:e4:58:57:f1:99:e8:16:67:
09:9b:4f:34:88:5d:5a:73:8d:dc:50:fe:1a:5b:ae:aa:a5:e6:
f9:90:e4:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:30 2024 by rpki-client on console-fra.rpki-client.org