Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/1riRY3RbM2E_Wj2ialgyXIQNDRk.roa
File: 1riRY3RbM2E_Wj2ialgyXIQNDRk.roa (raw, json)
Hash identifier: Vy7XcmSdmby67tlm71x8Vk+2xXB89qaSwxyuaFxofuM=
Subject key identifier: D6:B8:91:63:74:5B:33:61:3F:5A:3D:A2:6A:58:32:5C:84:0D:0D:19
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018DC36B8C3A334D44E62A800E00EC18BD89
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/1riRY3RbM2E_Wj2ialgyXIQNDRk.roa
Signing time: Mon 19 Feb 2024 22:10:21 +0000
ROA not before: Mon 19 Feb 2024 22:10:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:4013:c01e/128 maxlen: 128
2001:67c:64:ffff:0:18d:c109:b478/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c3:6b:8c:3a:33:4d:44:e6:2a:80:0e:00:ec:18:bd:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Feb 19 22:10:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d6b89163745b33613f5a3da26a58325c840d0d19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:53:57:ee:f1:5e:b2:8d:b2:6f:15:1b:c2:d3:
ea:86:ad:4f:72:bb:f8:0c:c9:6b:9e:8c:d6:82:96:
aa:64:7f:1e:4f:46:86:27:2b:75:d6:4b:fe:ed:27:
5f:12:6f:0c:49:6b:7f:23:11:17:3e:9e:ad:14:21:
d6:fb:60:1d:4f:a4:41:33:99:a1:4c:d1:31:9c:72:
70:44:70:77:fe:00:05:f0:72:25:ad:7f:b6:bc:ee:
a5:b4:2a:43:bc:d8:38:3e:19:39:1f:78:f9:87:ec:
bf:7d:c8:34:7c:7b:9e:fa:4a:36:5d:3a:55:e6:58:
6b:85:14:bc:c3:95:30:3f:cf:e6:8d:83:39:a9:79:
c2:53:f4:d6:a1:a5:3d:a5:80:f8:ef:3e:8c:2b:63:
a1:58:81:0e:73:43:e5:c8:28:6e:5f:4c:26:44:3a:
5d:1c:bd:a2:39:59:93:8b:89:aa:17:ae:33:89:9b:
59:ff:6a:96:46:19:f8:6a:7f:8d:fd:6a:4e:f7:6b:
4a:04:f7:ae:af:2e:d8:3c:86:a4:99:32:7c:39:3a:
38:22:ed:31:8d:60:6a:2e:56:18:d7:f9:fb:bc:5a:
19:df:97:3d:ef:d7:6c:59:fa:07:ab:3c:9b:e4:cd:
91:3d:5c:6f:fc:9c:db:01:1e:8b:18:9e:da:f5:e5:
4d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:B8:91:63:74:5B:33:61:3F:5A:3D:A2:6A:58:32:5C:84:0D:0D:19
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/1riRY3RbM2E_Wj2ialgyXIQNDRk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
3c:6f:96:69:d7:08:22:e1:8e:fc:fa:cc:9b:9e:df:82:7f:3e:
f4:be:f2:fc:9d:15:27:b5:1a:09:08:43:c2:66:e8:77:a7:66:
75:f5:01:21:2f:d0:93:09:81:4a:3f:0d:c6:48:75:4f:fa:f5:
18:8b:ce:cf:a0:ca:4b:8a:eb:39:0b:ef:7a:6f:e6:40:38:8e:
1f:63:94:bf:32:8c:e5:12:81:91:48:e1:3e:b5:f3:d6:f3:a4:
b9:fe:f4:ae:28:28:72:e4:db:68:2a:aa:9d:33:47:fa:75:82:
fb:ef:3d:b6:11:8d:16:25:15:50:90:59:ef:02:c6:72:69:0c:
2f:b0:9a:ca:27:e9:11:6b:db:eb:ee:02:5a:83:d1:e2:08:4c:
42:04:9c:35:19:2e:53:d5:02:5d:b3:c6:b2:34:ae:fe:ee:40:
fb:c4:71:89:93:e4:bb:5b:3e:a8:31:6a:7d:8d:e3:58:bb:fe:
13:1c:68:84:6b:9e:aa:d8:da:a0:27:b0:7e:b6:76:6f:9c:09:
85:36:71:5a:c1:ea:7f:82:48:d6:84:75:c5:eb:8c:a6:0c:81:
28:d9:b4:38:18:3a:c2:d4:64:8b:df:21:b8:81:c8:af:e5:9a:
65:34:18:98:48:82:9b:29:d3:a9:f4:ec:ff:c8:78:5d:45:41:
ae:26:9d:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:16:52 2025 by rpki-client