Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/36SjW_CERFeyZS5BwMKflf8S4FU.roa
File: 36SjW_CERFeyZS5BwMKflf8S4FU.roa (raw, json)
Hash identifier: WjXyp6NiZCuhGBfaFRaDtyVedUxuIafutq6xri8vI7w=
Subject key identifier: DF:A4:A3:5B:F0:84:44:57:B2:65:2E:41:C0:C2:9F:95:FF:12:E0:55
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018EB5E4CBC63C557F86E74AFE826F074590
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/36SjW_CERFeyZS5BwMKflf8S4FU.roa
Signing time: Sun 07 Apr 2024 00:10:54 +0000
ROA not before: Sun 07 Apr 2024 00:10:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:b5:e4:cb:c6:3c:55:7f:86:e7:4a:fe:82:6f:07:45:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 7 00:10:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dfa4a35bf0844457b2652e41c0c29f95ff12e055
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:64:18:79:13:bd:c2:41:11:06:32:17:1a:cd:
d2:0d:2f:e8:5c:37:fb:c9:15:da:05:c9:98:20:8f:
0c:67:9c:15:ae:27:0e:4b:37:80:4c:71:84:e5:47:
d5:58:ac:d0:10:7b:12:7d:9c:34:41:46:ce:6e:51:
d9:a1:83:29:33:dd:e8:35:d3:18:bc:8d:2d:49:3d:
87:40:ab:c0:ee:af:19:4c:3a:69:4b:e8:75:ca:e0:
d5:2e:63:28:98:a7:9c:ff:58:d6:70:eb:63:f0:9c:
ec:9e:d3:15:a3:0a:de:ef:0b:42:c1:79:bf:00:bc:
38:d9:b9:8a:12:37:0b:92:db:a9:6d:ed:10:30:ab:
6a:7e:4f:c0:90:94:99:38:48:56:96:6d:89:4f:f2:
dc:ba:e3:14:d2:d9:f1:55:63:d2:0a:be:44:53:f2:
b3:40:48:f0:f7:92:63:a4:85:09:7f:7b:4a:36:47:
be:e8:e9:24:41:5f:15:7a:6e:0b:94:0b:06:6f:71:
ee:2a:9f:56:e8:92:7a:21:43:cd:77:86:cd:93:5f:
cb:59:4f:f8:cc:5c:3f:87:2c:02:62:a2:4a:ad:f4:
fb:d9:58:c6:49:a3:06:a3:9a:a6:98:b8:fb:71:18:
ed:1a:41:5c:e3:98:0f:09:0c:4f:07:85:de:0e:d8:
d6:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:A4:A3:5B:F0:84:44:57:B2:65:2E:41:C0:C2:9F:95:FF:12:E0:55
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/36SjW_CERFeyZS5BwMKflf8S4FU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
47:73:32:59:3e:69:8f:df:bd:86:11:1f:02:17:35:10:ec:6f:
63:bc:aa:c7:14:ac:b2:35:fb:ab:b1:3b:e8:86:3c:ee:30:cc:
66:7a:4c:6a:06:8c:1e:a8:4b:d5:d8:68:40:e6:ae:3c:4c:34:
48:2e:7f:62:37:d2:84:5e:b7:06:5f:b5:d0:ba:ee:2e:06:01:
62:29:a6:1d:ab:63:5e:6a:14:6a:49:cc:72:5f:0c:13:ca:d7:
b0:b6:40:92:59:cb:18:53:12:aa:9d:fe:09:ee:d8:ab:90:47:
b0:68:f8:db:dc:30:1d:d3:7e:62:26:5f:47:49:d2:5d:71:06:
30:ee:e0:85:d7:df:56:40:92:f5:5f:8a:71:97:fc:d8:8b:0c:
38:32:c4:95:e5:1d:a5:34:67:e2:b5:0d:fe:b0:71:41:61:89:
bb:e6:09:47:36:90:49:0d:17:a1:f8:64:5f:f3:96:64:89:59:
ce:60:73:1c:f7:22:df:f2:49:74:1a:24:9c:52:6a:6e:7d:83:
ee:4d:62:94:1f:a2:bc:a2:95:89:57:fe:fa:14:13:e1:c6:ed:
9c:5d:c4:7a:a0:c1:e0:0b:86:b6:9e:ee:6b:90:b3:4c:47:e5:
73:69:a8:27:45:b2:ef:02:5a:f6:ae:48:fd:d1:d0:08:38:7c:
08:11:b7:3e
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY615MvGPFV/hudK/oJvB0WQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzYjNkYTNlY2I4YTdkNDMzZGUzODMzODY2N2IzNWU2OGRm
NzNmOGMwHhcNMjQwNDA3MDAxMDU0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZmE0YTM1YmYwODQ0NDU3YjI2NTJlNDFjMGMyOWY5NWZmMTJlMDU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi2QYeRO9wkERBjIXGs3SDS/oXDf7
yRXaBcmYII8MZ5wVricOSzeATHGE5UfVWKzQEHsSfZw0QUbOblHZoYMpM93oNdMY
vI0tST2HQKvA7q8ZTDppS+h1yuDVLmMomKec/1jWcOtj8JzsntMVowre7wtCwXm/
ALw42bmKEjcLktupbe0QMKtqfk/AkJSZOEhWlm2JT/LcuuMU0tnxVWPSCr5EU/Kz
QEjw95JjpIUJf3tKNke+6OkkQV8Vem4LlAsGb3HuKp9W6JJ6IUPNd4bNk1/LWU/4
zFw/hywCYqJKrfT72VjGSaMGo5qmmLj7cRjtGkFc45gPCQxPB4XeDtjWLQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFN+ko1vwhERXsmUuQcDCn5X/EuBVMB8GA1UdIwQY
MBaAFNOz2j7Lin1DPeODOGZ7NeaN9z+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODct
YzUzOTc5ZDY2Y2E1LzEvMzZTaldfQ0VSRmV5WlM1QndNS2ZsZjhTNEZVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODctYzUzOTc5ZDY2Y2E1
LzEvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAEdzMlk+aY/fvYYRHwIX
NRDsb2O8qscUrLI1+6uxO+iGPO4wzGZ6TGoGjB6oS9XYaEDmrjxMNEguf2I30oRe
twZftdC67i4GAWIpph2rY15qFGpJzHJfDBPK17C2QJJZyxhTEqqd/gnu2KuQR7Bo
+NvcMB3TfmImX0dJ0l1xBjDu4IXX31ZAkvVfinGX/NiLDDgyxJXlHaU0Z+K1Df6w
cUFhibvmCUc2kEkNF6H4ZF/zlmSJWc5gcxz3It/ySXQaJJxSam59g+5NYpQforyi
lYlX/voUE+HG7ZxdxHqgweALhrae7muQs0xH5XNpqCdFsu8CWvauSP3R0Ag4fAgR
tz4=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:50 2025 by rpki-client