Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/5fFFL2_SaYUhqrzs3M9kP0b1N2k.roa
File: 5fFFL2_SaYUhqrzs3M9kP0b1N2k.roa (raw, json)
Hash identifier: JczEYYVBInPQiKi2suD+U9vpKmeDi5LB2tygk4Jgh/4=
Subject key identifier: E5:F1:45:2F:6F:D2:69:85:21:AA:BC:EC:DC:CF:64:3F:46:F5:37:69
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CC0A575D612F8567F03FF49B3647C41BC
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/5fFFL2_SaYUhqrzs3M9kP0b1N2k.roa
Signing time: Sun 31 Dec 2023 16:11:58 +0000
ROA not before: Sun 31 Dec 2023 16:11:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c0:a5:75:d6:12:f8:56:7f:03:ff:49:b3:64:7c:41:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 31 16:11:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e5f1452f6fd2698521aabcecdccf643f46f53769
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:46:f1:af:34:80:65:7f:80:73:38:a9:d3:83:
58:a7:aa:8e:a2:27:fc:49:7e:8e:e2:ba:62:08:46:
a4:ba:6c:da:4f:59:90:6d:8b:f8:ba:66:de:0c:0a:
e1:1c:ea:de:92:4c:8e:13:02:6d:89:d4:a5:b7:4d:
80:44:c4:0d:79:e9:74:6b:64:13:65:3a:c9:78:4c:
21:c6:f8:3c:7e:51:bc:a7:01:b5:c2:52:92:9c:73:
ea:e7:d8:d4:a9:1e:7f:fd:e8:0c:67:43:5a:d9:74:
ed:4d:ca:f6:d4:61:8d:ac:56:8a:60:cd:df:a8:f7:
ca:da:ab:30:a5:1a:cb:38:dd:0c:5a:54:ce:cf:74:
e2:be:6f:1f:54:24:23:2a:97:05:9f:6d:c7:39:98:
d8:b1:32:97:07:b6:b9:3a:ac:ea:a5:e3:0d:a5:85:
d7:50:3f:a0:05:f1:99:cf:9c:d7:58:43:ac:73:3f:
39:c7:33:f1:8c:3c:ac:b2:fd:e2:e1:b1:82:cd:c3:
44:ac:4b:62:0e:bb:22:38:76:28:d7:3c:10:16:77:
91:d4:46:d1:21:b4:02:f4:2b:49:60:63:2e:2e:d3:
b1:d1:da:32:2e:2c:97:a1:10:8d:9e:cf:39:e2:90:
5e:c7:28:ec:c9:59:7a:e8:3c:ba:ed:a8:c0:dd:7c:
97:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:F1:45:2F:6F:D2:69:85:21:AA:BC:EC:DC:CF:64:3F:46:F5:37:69
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/5fFFL2_SaYUhqrzs3M9kP0b1N2k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
8b:16:55:ae:cd:66:8f:c8:43:90:bf:22:f7:56:63:bb:9f:da:
64:9d:01:06:d1:46:80:27:88:2b:47:27:49:55:eb:ae:fe:ce:
53:97:c2:fa:ab:25:e8:e5:2f:8c:55:1a:0f:c5:0a:ca:60:5e:
6b:d9:22:da:73:c8:a8:d5:52:85:9a:b7:00:12:ee:38:5f:a1:
7c:a1:66:11:c7:d3:11:4a:8f:75:c8:aa:6a:35:d6:5d:0b:9c:
e2:e8:12:c5:ab:18:c7:01:d4:c3:37:4c:93:86:2c:c2:94:19:
73:a3:03:86:10:85:49:bc:fe:28:ea:ac:2e:bb:9f:33:63:15:
7d:6e:10:d8:83:af:6a:e3:7a:3e:66:1e:2c:af:6b:ca:ec:8b:
ae:33:eb:16:8b:f8:f4:af:ab:6b:11:d4:27:8d:f6:b9:2a:2c:
18:5a:2f:65:e3:ec:2c:5c:b2:cc:57:7f:f4:0c:6f:cb:4b:d7:
5e:25:de:a4:9d:af:b6:36:1e:ae:f1:dc:9c:1e:3d:85:c9:89:
07:2d:5e:26:46:64:57:08:a2:28:71:c8:aa:89:0f:42:fd:b8:
d3:96:36:95:4e:2e:b8:8a:3a:97:2f:b1:38:ca:38:8c:46:41:
d0:0a:9f:ad:a6:e2:6a:87:10:98:0c:74:2e:94:cb:8d:5b:a4:
bc:bf:95:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:49 2024 by rpki-client on console-ams.rpki-client.org