Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/5HJJPncJEgTKQ6OARnLXhjtIZfI.roa
File: 5HJJPncJEgTKQ6OARnLXhjtIZfI.roa (raw, json)
Hash identifier: 106znRCXP4K8rKUa7mut/14ysyO96iY0rHRHNwxEBGc=
Subject key identifier: E4:72:49:3E:77:09:12:04:CA:43:A3:80:46:72:D7:86:3B:48:65:F2
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CAF0C26E8A3DFD32E3669D9394469898C
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/5HJJPncJEgTKQ6OARnLXhjtIZfI.roa
Signing time: Thu 28 Dec 2023 06:10:58 +0000
ROA not before: Thu 28 Dec 2023 06:10:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:af:0c:26:e8:a3:df:d3:2e:36:69:d9:39:44:69:89:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 28 06:10:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e472493e77091204ca43a3804672d7863b4865f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:6c:19:85:88:cb:bd:ad:b6:cf:76:b1:50:f9:
48:c9:29:47:33:a9:71:62:63:ab:a1:f7:a2:8a:48:
7b:de:b8:92:ab:a3:83:97:c3:37:c6:65:01:93:30:
c2:9e:2b:de:4e:46:fb:24:10:ed:01:25:46:6e:8e:
4e:8d:f6:af:f2:65:3b:1d:27:e1:0c:90:80:58:bb:
11:75:75:37:8f:d2:9c:3c:f1:f7:cb:84:41:7a:11:
ef:d2:4f:c6:23:b3:69:e8:cd:af:b9:36:27:c6:1e:
49:87:e2:58:65:4b:5c:c5:2f:45:1c:70:19:1c:8b:
f1:ec:6a:8a:ad:01:a3:18:3f:d3:eb:d3:9c:8d:df:
7a:9d:e1:f4:07:69:aa:50:83:43:db:b0:17:14:2b:
34:ed:19:04:2a:3d:4b:b6:3f:38:a2:70:74:5d:57:
d7:e7:8b:74:0b:2a:e8:ae:70:90:4a:64:7a:74:af:
c7:a4:b1:0a:f8:b3:32:38:ca:63:9c:28:33:bf:22:
13:c9:8c:9f:4d:8f:39:f4:35:ac:17:22:bc:b4:e3:
02:45:1a:4b:30:55:72:21:92:2e:47:9d:d6:4f:6c:
d4:29:98:2f:b7:9b:f0:12:1f:f5:36:a5:12:a5:ee:
d1:02:8c:22:26:3d:d3:c5:fb:01:e1:32:be:f6:ab:
db:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:72:49:3E:77:09:12:04:CA:43:A3:80:46:72:D7:86:3B:48:65:F2
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/5HJJPncJEgTKQ6OARnLXhjtIZfI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
02:9e:f5:ab:ae:6f:e9:9b:00:2f:de:fc:e9:60:a4:32:9e:77:
af:18:1b:fc:bb:ad:63:33:6b:d4:78:e4:34:c8:7a:4e:a6:2f:
74:5b:2d:fb:c1:62:f3:03:80:15:0e:ba:ef:30:37:ce:c8:b5:
6d:06:74:eb:a4:db:32:0e:df:70:e1:8c:c2:c1:d9:2f:61:1d:
78:93:a1:8d:db:40:c6:1f:1c:62:03:01:6c:10:43:d4:d1:4e:
c2:a7:93:fb:fd:da:56:92:ac:dc:4a:45:f4:72:37:33:9b:95:
ab:60:e2:ff:d8:f4:46:9e:b6:af:82:fb:32:a9:5a:a6:15:d9:
55:46:61:67:30:31:84:9e:62:dd:64:4c:5e:b7:47:13:0d:83:
47:6e:cd:5e:fe:8c:e4:cd:27:38:8f:93:16:b8:57:a0:50:89:
3b:72:08:b1:dc:de:b4:df:e6:bb:59:84:54:1c:47:db:59:a7:
b4:57:d8:64:b1:4a:8e:66:e6:a4:c9:87:68:95:fc:f6:0b:cb:
72:7d:27:1c:b4:c2:56:33:f6:ce:5e:d2:09:ac:1c:7a:7b:14:
57:36:3f:5b:21:96:be:d4:ad:d9:cb:15:58:f1:36:c1:ba:7a:
dd:fe:bc:04:4d:a3:81:ab:a0:5a:2a:60:6b:6a:be:54:9f:3e:
2c:b4:cc:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:49 2024 by rpki-client on console-ams.rpki-client.org