Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/2MMVngZ-9pBPWigWXcLlqhnFW0Y.roa
File: 2MMVngZ-9pBPWigWXcLlqhnFW0Y.roa (raw, json)
Hash identifier: TJ/tyzNXRlz/Vzoq+21DaYnEpdj2O7EbFqXp9HJQZJc=
Subject key identifier: D8:C3:15:9E:06:7E:F6:90:4F:5A:28:16:5D:C2:E5:AA:19:C5:5B:46
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018C91AA2DE8A8CFB0CBE60A07489E569D11
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/2MMVngZ-9pBPWigWXcLlqhnFW0Y.roa
Signing time: Fri 22 Dec 2023 13:14:58 +0000
ROA not before: Fri 22 Dec 2023 13:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:91:aa:2d:e8:a8:cf:b0:cb:e6:0a:07:48:9e:56:9d:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 22 13:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d8c3159e067ef6904f5a28165dc2e5aa19c55b46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:26:2c:cc:db:2b:59:20:42:85:df:fa:b9:5b:
7e:9d:86:4b:08:ee:7c:44:16:2c:8e:96:6e:ad:05:
6a:a7:08:6d:d4:95:d4:68:4c:b9:ee:fe:12:0f:07:
e5:98:b8:92:f3:98:74:13:6d:92:75:6c:0b:83:5c:
49:cd:bb:3c:fa:74:83:a2:ca:70:83:17:56:15:48:
0d:2a:ad:32:ef:33:c9:8d:38:20:ee:df:4f:11:b6:
be:65:d5:00:1f:ed:73:79:0d:d3:0c:b7:f5:a6:62:
ee:b8:88:17:e7:a2:94:0b:71:53:ff:82:d9:38:5e:
2a:25:f8:f4:a2:9d:11:b7:4e:c7:d4:a5:51:01:56:
c9:42:2f:8a:19:44:24:1f:31:52:55:8d:67:ea:45:
b5:31:dc:d6:f3:c7:9f:fa:34:02:aa:bd:7c:46:da:
ec:8f:9f:6b:25:df:02:41:4e:a2:61:23:b9:c1:54:
4e:82:be:8d:04:b3:0d:5d:ac:c7:b5:39:8c:85:30:
dc:55:3f:0c:19:54:6c:dd:2f:d7:38:aa:2d:79:b3:
fd:da:dd:1c:9a:f1:8a:ec:2f:22:85:bf:d3:27:92:
74:c1:f2:1d:77:a4:08:01:bd:ff:4c:4a:63:60:49:
b3:5f:59:04:00:2d:05:d8:12:a7:e0:af:7a:9d:c0:
9c:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:C3:15:9E:06:7E:F6:90:4F:5A:28:16:5D:C2:E5:AA:19:C5:5B:46
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/2MMVngZ-9pBPWigWXcLlqhnFW0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
7a:8a:b9:72:a1:03:58:12:6a:10:63:49:9e:be:01:c9:12:b2:
d6:f0:d6:bd:8b:9e:d8:6c:4f:d9:60:a4:f5:6d:c6:d7:6f:e8:
92:3b:b2:2c:48:f9:33:f7:c1:1d:32:14:32:07:94:df:38:f2:
02:1f:05:8d:c7:40:b4:0e:e8:f0:2a:ad:17:fc:65:d0:55:a0:
98:b6:31:c9:b8:e4:ad:01:49:ba:7e:e6:48:fe:a8:92:52:95:
ad:e9:17:70:3e:57:e9:84:44:b4:56:6f:e8:51:c3:c4:3e:be:
bd:8c:e6:25:bb:90:76:54:b2:ad:03:3e:37:94:7e:0f:4a:73:
e8:c0:ff:c2:c2:41:1c:18:87:bd:7f:e3:19:cd:b7:54:f6:09:
68:bb:06:1e:4e:41:5d:8a:21:a4:99:fe:68:3e:34:86:de:82:
cd:03:ac:bf:f3:69:0a:f5:dd:2e:17:c0:35:b6:81:26:cb:37:
b9:96:0e:dc:da:49:bf:5f:d9:2e:9e:13:fd:0c:a4:0f:00:78:
45:ae:23:ef:58:dd:a7:21:b6:8d:be:8d:a3:b4:1f:93:48:c1:
7d:4d:4d:50:a1:b7:78:74:56:60:33:84:98:97:df:61:3e:8f:
31:de:ec:dc:94:d3:98:8a:20:27:eb:68:c3:89:09:85:03:a1:
5e:2f:21:18
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYyRqi3oqM+wy+YKB0ieVp0RMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzYjNkYTNlY2I4YTdkNDMzZGUzODMzODY2N2IzNWU2OGRm
NzNmOGMwHhcNMjMxMjIyMTMxNDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkOGMzMTU5ZTA2N2VmNjkwNGY1YTI4MTY1ZGMyZTVhYTE5YzU1YjQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvyYszNsrWSBChd/6uVt+nYZLCO58
RBYsjpZurQVqpwht1JXUaEy57v4SDwflmLiS85h0E22SdWwLg1xJzbs8+nSDospw
gxdWFUgNKq0y7zPJjTgg7t9PEba+ZdUAH+1zeQ3TDLf1pmLuuIgX56KUC3FT/4LZ
OF4qJfj0op0Rt07H1KVRAVbJQi+KGUQkHzFSVY1n6kW1MdzW88ef+jQCqr18Rtrs
j59rJd8CQU6iYSO5wVROgr6NBLMNXazHtTmMhTDcVT8MGVRs3S/XOKotebP92t0c
mvGK7C8ihb/TJ5J0wfIdd6QIAb3/TEpjYEmzX1kEAC0F2BKn4K96ncCciQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFNjDFZ4GfvaQT1ooFl3C5aoZxVtGMB8GA1UdIwQY
MBaAFNOz2j7Lin1DPeODOGZ7NeaN9z+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODct
YzUzOTc5ZDY2Y2E1LzEvMk1NVm5nWi05cEJQV2lnV1hjTGxxaG5GVzBZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODctYzUzOTc5ZDY2Y2E1
LzEvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAHqKuXKhA1gSahBjSZ6+
AckSstbw1r2LnthsT9lgpPVtxtdv6JI7sixI+TP3wR0yFDIHlN848gIfBY3HQLQO
6PAqrRf8ZdBVoJi2Mcm45K0BSbp+5kj+qJJSla3pF3A+V+mERLRWb+hRw8Q+vr2M
5iW7kHZUsq0DPjeUfg9Kc+jA/8LCQRwYh71/4xnNt1T2CWi7Bh5OQV2KIaSZ/mg+
NIbegs0DrL/zaQr13S4XwDW2gSbLN7mWDtzaSb9f2S6eE/0MpA8AeEWuI+9Y3ach
to2+jaO0H5NIwX1NTVCht3h0VmAzhJiX32E+jzHe7NyU05iKICfraMOJCYUDoV4v
IRg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:49 2024 by rpki-client on console-ams.rpki-client.org