Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/2t91LHqwBTLjboFy39iF8PQ0G6I.roa
File: 2t91LHqwBTLjboFy39iF8PQ0G6I.roa (raw, json)
Hash identifier: trgZS+a9xg400kiRl82Pbzaz25cR0Hn6iQEO4zFUavg=
Subject key identifier: DA:DF:75:2C:7A:B0:05:32:E3:6E:81:72:DF:D8:85:F0:F4:34:1B:A2
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CCDBE2006EB64C159606E51D6C424F943
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/2t91LHqwBTLjboFy39iF8PQ0G6I.roa
Signing time: Wed 03 Jan 2024 05:13:58 +0000
ROA not before: Wed 03 Jan 2024 05:13:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:cd:be:20:06:eb:64:c1:59:60:6e:51:d6:c4:24:f9:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 3 05:13:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dadf752c7ab00532e36e8172dfd885f0f4341ba2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:3d:28:0f:17:e9:b8:3d:27:be:ec:52:ca:82:
65:27:d6:de:1f:78:0e:40:af:77:41:5e:1e:17:78:
db:4c:46:4e:ec:a6:d8:ca:40:33:8d:03:df:be:45:
1d:33:5d:cc:8a:81:ac:ca:05:06:fb:4c:f6:bc:f7:
cf:a3:ca:6a:29:1b:1f:f8:1d:59:1e:88:97:42:fa:
38:19:e1:55:ae:01:4c:c6:0a:23:4d:af:e3:41:2e:
3d:1e:6e:5c:14:2d:5f:ac:ee:65:28:b6:b3:1e:7f:
fa:bb:8c:22:93:a7:4f:a8:1e:09:54:1d:40:cc:b3:
8a:8d:ec:45:26:9f:f1:94:3f:b7:48:d8:1b:32:e7:
c6:95:4e:e7:b8:66:f2:0a:91:95:43:64:06:9f:a0:
f6:ba:60:38:70:3c:c1:f1:21:03:66:a4:48:b5:15:
c3:23:bc:a5:46:82:c7:b1:65:13:72:73:69:e0:f7:
c7:43:22:74:1d:b0:36:d6:99:ef:ec:d6:f5:f6:bc:
00:00:43:71:1d:d6:03:67:e9:15:bc:13:30:83:0b:
46:e6:88:aa:5c:ce:e5:65:04:e5:74:1b:e2:92:55:
9c:c3:7d:af:f0:8b:ec:58:fb:6d:e5:6b:4d:c1:98:
81:e7:59:58:4b:8e:84:1c:11:e2:e6:d4:dc:a1:a7:
f5:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:DF:75:2C:7A:B0:05:32:E3:6E:81:72:DF:D8:85:F0:F4:34:1B:A2
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/2t91LHqwBTLjboFy39iF8PQ0G6I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
75:92:8e:51:d8:12:56:da:6e:6f:6e:4e:f5:89:76:b1:39:af:
c0:dd:2d:53:c6:b8:0c:21:6e:32:61:b2:49:57:b5:67:da:8c:
a6:e4:5b:6d:d0:81:16:20:a1:ba:d5:34:2a:ff:bd:af:bb:af:
2f:69:87:08:3a:0a:a1:b0:17:1f:c9:23:c9:3c:64:10:ae:40:
67:6d:7a:de:b4:14:d4:de:14:c6:19:1d:ad:63:4f:6a:37:07:
81:09:8e:f1:20:e1:76:e1:cc:7e:c5:bf:35:44:52:1e:b0:36:
87:46:0a:25:3e:56:00:bf:8b:bc:21:ab:da:26:9e:d7:24:06:
64:08:e9:17:39:ae:6a:a2:20:33:41:88:e2:5a:41:c7:3e:63:
b7:0e:72:48:02:04:a2:d2:83:a2:f8:3c:64:2b:b2:94:e0:d8:
de:53:ab:6e:92:53:b6:77:ad:6e:0e:d0:02:4e:50:40:bb:32:
28:8b:cd:15:0e:47:82:56:a0:1c:09:f4:17:84:25:58:38:82:
48:60:80:52:fd:48:b2:2e:25:46:69:60:07:a1:d3:65:6a:c3:
59:b7:2c:6e:c8:a3:6f:c9:68:2c:ef:c5:ad:3c:e0:e6:f3:31:
24:86:c9:66:24:25:3d:94:73:eb:31:8f:ca:42:c0:62:c6:fd:
c0:df:01:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:49 2024 by rpki-client on console-ams.rpki-client.org