Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/6dYvv1bqtuQxAgn8SmTofwdiL0I.roa
File: 6dYvv1bqtuQxAgn8SmTofwdiL0I.roa (raw, json)
Hash identifier: WftjPLJJHb5JWVBAytoGeKqwGJsOGqPFPQtZ4CWpxQQ=
Subject key identifier: E9:D6:2F:BF:56:EA:B6:E4:31:02:09:FC:4A:64:E8:7F:07:62:2F:42
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018EDC18A6F7FF5B9B3C1F3C7B198B3E0180
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/6dYvv1bqtuQxAgn8SmTofwdiL0I.roa
Signing time: Sun 14 Apr 2024 10:13:06 +0000
ROA not before: Sun 14 Apr 2024 10:13:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:dc:18:a6:f7:ff:5b:9b:3c:1f:3c:7b:19:8b:3e:01:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 14 10:13:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e9d62fbf56eab6e4310209fc4a64e87f07622f42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:99:e4:17:23:42:d5:e7:32:80:d3:93:50:07:
68:c8:f3:2b:eb:a2:de:0c:b6:32:fa:07:a0:f8:4b:
c9:1b:43:0c:4e:27:da:6e:32:d4:0a:1f:79:01:8d:
9b:30:4b:cb:96:ee:40:dc:49:7b:d3:de:68:1e:35:
6e:bd:5a:21:66:f1:c8:d1:d9:68:ae:dd:4f:32:74:
53:f2:63:8e:25:5c:bc:a3:08:24:97:db:dd:98:c1:
f6:db:93:56:dd:ae:64:44:d2:e2:6e:b8:9b:c0:1f:
75:6a:5f:1b:11:1d:48:12:8d:da:83:ed:f8:e1:11:
63:78:e4:d3:d6:15:f3:a5:87:d9:b3:0a:ea:7b:8f:
5e:32:2b:48:93:b9:81:57:ac:16:21:d2:f1:ef:1d:
a7:31:89:71:a6:76:a1:56:8e:f5:6c:99:0b:bd:e1:
70:57:52:f0:20:66:a8:cc:f5:20:f6:24:7b:5f:0e:
c6:b9:46:e1:41:2c:8e:1e:e4:82:a9:5d:11:87:a7:
92:78:65:a4:3c:5b:30:ad:cf:62:75:ca:63:37:18:
af:79:d0:bf:f6:ba:92:7e:b5:6a:d6:0c:32:1e:14:
62:e2:19:32:0a:fc:27:60:df:5c:5a:42:55:64:02:
97:e0:21:17:4d:16:53:6f:3d:f1:3d:fc:06:99:c5:
3c:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:D6:2F:BF:56:EA:B6:E4:31:02:09:FC:4A:64:E8:7F:07:62:2F:42
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/6dYvv1bqtuQxAgn8SmTofwdiL0I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
28:5d:60:ee:be:df:92:fe:de:dc:aa:0f:da:b7:cd:d9:1a:f7:
3d:3a:d2:bd:6a:76:94:e5:28:fa:d8:ff:9e:06:d4:83:9b:e7:
dd:a0:21:6a:e0:72:b9:d4:44:de:fa:0f:ed:9f:2e:1c:df:32:
95:6d:7b:67:f2:67:66:bd:da:e6:b2:37:c4:b5:ab:91:40:44:
46:c5:81:6b:90:07:e6:10:d8:92:50:6a:e6:93:68:6d:da:40:
cf:fb:bd:03:36:e6:5e:d6:3e:9f:8f:b1:28:bf:43:e0:ff:78:
18:af:ac:b1:54:83:18:b5:19:37:d6:1a:49:3d:6f:d7:81:04:
99:c2:ee:be:56:d0:e7:8e:a2:08:66:d7:fc:3f:11:a1:bf:23:
53:8e:4a:fc:04:9f:05:f1:31:31:fd:01:18:f3:35:e3:b7:a3:
a6:fe:00:a8:02:19:9a:6c:69:5c:78:62:6e:2d:5e:30:b7:ad:
54:73:23:0e:3e:dc:5d:73:1c:c6:a9:49:10:2f:c1:31:d4:6d:
42:9c:9c:97:82:3b:0b:f4:91:a9:e5:31:65:4f:86:0e:5d:14:
b4:a8:72:6a:9a:be:8c:de:c2:f9:a0:ac:42:5c:95:29:46:33:
25:3e:68:e9:a8:2b:dc:2a:c5:f8:e0:b1:d1:d4:dc:78:01:33:
0e:20:9c:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:30:43 2025 by rpki-client