Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/44IRORKwIq-lR9WdKqqtJHP22vk.roa
File: 44IRORKwIq-lR9WdKqqtJHP22vk.roa (raw, json)
Hash identifier: oxfsDFxrlyvL3YIUtAQDkw+JL8PpFuXPrIAeRoprMCY=
Subject key identifier: E3:82:11:39:12:B0:22:AF:A5:47:D5:9D:2A:AA:AD:24:73:F6:DA:F9
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018D08BF23870649590670C93718DBD39642
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/44IRORKwIq-lR9WdKqqtJHP22vk.roa
Signing time: Sun 14 Jan 2024 16:12:40 +0000
ROA not before: Sun 14 Jan 2024 16:12:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:08:bf:23:87:06:49:59:06:70:c9:37:18:db:d3:96:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 14 16:12:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e382113912b022afa547d59d2aaaad2473f6daf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:df:7a:13:db:4f:73:48:68:f0:02:96:33:f1:
b9:1b:96:fe:de:ed:89:bc:cb:32:8a:e3:ef:7a:e1:
ba:2d:33:e5:58:1b:0f:03:f4:5e:5b:26:0f:0d:d4:
dd:a9:80:88:7f:e5:71:c4:6d:2f:69:f6:bf:d4:c7:
0d:8f:4e:61:53:d6:81:c2:0a:02:e8:8f:45:4a:29:
ec:c4:ef:47:4f:46:22:f7:e5:38:52:22:e2:d9:57:
b8:7a:ca:77:ea:20:ce:e6:e1:66:8c:e6:5c:f7:96:
fc:57:9d:4e:72:72:e5:5c:dd:03:28:5d:a2:02:c3:
67:06:ac:f0:d5:2e:8f:13:b9:46:3f:b9:03:8f:d7:
70:84:b8:3d:29:d5:c9:39:a0:c0:2e:71:45:2b:ad:
83:2c:3e:ad:3a:3f:2f:cf:fa:a2:29:a8:80:50:00:
46:24:65:cd:09:f7:af:9e:44:db:52:fa:ad:23:cc:
f3:82:63:f8:28:f1:5a:98:9b:46:e3:2c:f9:dd:e7:
55:6c:01:28:d3:89:b7:9d:48:9f:39:f7:1b:ce:63:
b9:10:b7:dd:47:96:e0:b9:36:ac:4f:61:5f:7a:6f:
e0:77:fc:33:b4:75:15:08:56:dc:fd:88:8b:dd:1f:
cc:2f:48:fc:74:f0:8a:d2:73:49:21:3f:d6:c8:90:
1a:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:82:11:39:12:B0:22:AF:A5:47:D5:9D:2A:AA:AD:24:73:F6:DA:F9
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/44IRORKwIq-lR9WdKqqtJHP22vk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
3e:d9:d0:79:48:b0:23:2d:19:52:31:93:ec:b4:1f:f1:97:ba:
07:96:36:62:cd:39:f8:34:40:3a:57:7d:d9:49:13:d0:52:fc:
d0:3c:a3:b3:b7:10:6f:0d:92:fe:d1:00:4c:fe:e5:06:b3:14:
f4:b3:3a:d4:1f:2b:f6:35:c0:45:e8:c1:8e:fc:27:c2:ff:a8:
62:6b:a6:ec:a3:38:53:22:d4:b0:a6:7f:5a:27:cf:46:85:44:
e9:20:bf:2f:38:20:4a:fd:65:d2:a2:32:ea:02:f2:aa:a2:78:
f4:df:db:45:23:99:c7:9d:ec:0a:03:04:a2:54:3f:0e:ba:32:
ec:61:5b:12:8f:8b:ea:4f:37:43:4b:2f:89:81:ce:0a:35:ee:
11:d0:0e:f5:34:54:7f:d7:e6:7c:a7:13:59:af:6d:95:c8:eb:
fa:54:a8:8a:8d:70:02:82:6a:7c:b3:a2:63:ad:13:45:cd:df:
0a:e5:86:e8:e9:ad:ec:6d:a7:4e:85:23:06:07:65:47:7c:cb:
04:bd:86:21:0a:61:64:b3:b4:ef:4c:c4:be:86:b5:bf:85:72:
62:58:a6:17:48:a4:96:79:ee:3f:05:ea:8f:a4:b3:ea:4d:02:
33:8d:8f:85:ef:4b:72:32:53:4f:7a:c2:64:b7:41:bf:a9:93:
4a:a4:07:07
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY0IvyOHBklZBnDJNxjb05ZCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzYjNkYTNlY2I4YTdkNDMzZGUzODMzODY2N2IzNWU2OGRm
NzNmOGMwHhcNMjQwMTE0MTYxMjQwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMzgyMTEzOTEyYjAyMmFmYTU0N2Q1OWQyYWFhYWQyNDczZjZkYWY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsd96E9tPc0ho8AKWM/G5G5b+3u2J
vMsyiuPveuG6LTPlWBsPA/ReWyYPDdTdqYCIf+VxxG0vafa/1McNj05hU9aBwgoC
6I9FSinsxO9HT0Yi9+U4UiLi2Ve4esp36iDO5uFmjOZc95b8V51OcnLlXN0DKF2i
AsNnBqzw1S6PE7lGP7kDj9dwhLg9KdXJOaDALnFFK62DLD6tOj8vz/qiKaiAUABG
JGXNCfevnkTbUvqtI8zzgmP4KPFamJtG4yz53edVbAEo04m3nUifOfcbzmO5ELfd
R5bguTasT2Ffem/gd/wztHUVCFbc/YiL3R/ML0j8dPCK0nNJIT/WyJAa8wIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFOOCETkSsCKvpUfVnSqqrSRz9tr5MB8GA1UdIwQY
MBaAFNOz2j7Lin1DPeODOGZ7NeaN9z+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODct
YzUzOTc5ZDY2Y2E1LzEvNDRJUk9SS3dJcS1sUjlXZEtxcXRKSFAyMnZrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODctYzUzOTc5ZDY2Y2E1
LzEvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAD7Z0HlIsCMtGVIxk+y0
H/GXugeWNmLNOfg0QDpXfdlJE9BS/NA8o7O3EG8Nkv7RAEz+5QazFPSzOtQfK/Y1
wEXowY78J8L/qGJrpuyjOFMi1LCmf1onz0aFROkgvy84IEr9ZdKiMuoC8qqiePTf
20Ujmced7AoDBKJUPw66MuxhWxKPi+pPN0NLL4mBzgo17hHQDvU0VH/X5nynE1mv
bZXI6/pUqIqNcAKCanyzomOtE0XN3wrlhujprextp06FIwYHZUd8ywS9hiEKYWSz
tO9MxL6Gtb+FcmJYphdIpJZ57j8F6o+ks+pNAjONj4XvS3IyU096wmS3Qb+pk0qk
Bwc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:30 2024 by rpki-client on console-fra.rpki-client.org