Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/7TtaEYfrIQ58nrQgYrJFQ3oq1x4.roa
File: 7TtaEYfrIQ58nrQgYrJFQ3oq1x4.roa (raw, json)
Hash identifier: +F+1LbMQwoT0lppHMVDaAGpn97wTrsoj5z5K+UwrBgU=
Subject key identifier: ED:3B:5A:11:87:EB:21:0E:7C:9E:B4:20:62:B2:45:43:7A:2A:D7:1E
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018ED8A8D43ADCA26CA0E882D921DA39E277
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/7TtaEYfrIQ58nrQgYrJFQ3oq1x4.roa
Signing time: Sat 13 Apr 2024 18:12:06 +0000
ROA not before: Sat 13 Apr 2024 18:12:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:d8:a8:d4:3a:dc:a2:6c:a0:e8:82:d9:21:da:39:e2:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 13 18:12:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ed3b5a1187eb210e7c9eb42062b245437a2ad71e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:5a:3a:99:50:cf:e5:7b:9d:21:2b:23:ed:d1:
33:de:91:fa:2f:32:33:99:46:e7:a7:f5:10:8e:9d:
e1:d4:61:a8:41:e7:3a:59:e1:4c:26:3d:01:bc:08:
dc:ec:ca:49:5e:c8:d6:23:a6:25:95:d9:38:bc:64:
ba:10:66:87:bb:f4:07:bb:b7:bd:ee:50:af:d1:43:
cf:e9:22:15:92:3f:1e:b2:a1:c5:a3:72:6c:6e:37:
2f:71:2f:6c:15:8e:31:ef:dc:f3:24:b4:06:3f:c3:
bd:00:fe:5e:ad:5e:e9:f3:29:b2:e4:ed:f0:2e:bd:
a7:23:9d:d3:43:5c:0e:6c:90:36:e7:6d:c4:1b:4a:
38:16:89:ca:72:82:6b:49:3b:1e:fd:e4:50:e2:c0:
c3:19:32:9b:31:32:bf:90:62:ab:89:9a:a4:18:15:
f2:bf:2c:4e:a8:10:27:17:54:cc:94:06:d6:4a:c3:
15:14:f1:91:53:e4:cf:d1:f3:f0:3f:d6:34:9d:12:
db:fb:42:9f:78:4a:93:43:48:62:59:13:85:16:38:
c3:be:d5:2d:de:dd:ca:9f:2e:41:47:ad:b3:b2:db:
b7:3d:54:8e:21:e6:66:44:f5:49:37:0a:34:bd:eb:
65:da:c1:80:0c:83:f2:75:d8:25:99:8b:44:be:84:
47:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:3B:5A:11:87:EB:21:0E:7C:9E:B4:20:62:B2:45:43:7A:2A:D7:1E
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/7TtaEYfrIQ58nrQgYrJFQ3oq1x4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
27:83:71:b4:8b:9f:73:d6:15:68:0c:cc:2f:80:b8:b5:ce:0e:
f7:57:14:f5:58:45:56:b6:42:17:eb:8c:e4:fa:c8:3e:f8:ad:
cf:9e:55:f8:c6:aa:b4:0f:a3:09:50:17:66:2b:0f:c1:f8:96:
5c:fa:48:99:83:c7:d0:bd:8d:fb:da:fd:a6:24:b3:2b:ff:ff:
8f:11:ca:71:0f:0b:91:b4:82:ba:65:fe:f2:cf:17:88:fe:f0:
ad:71:90:a8:cb:8d:d3:da:cf:8d:21:c4:d5:16:ca:2c:64:4b:
42:d4:1d:ec:40:41:a7:06:47:da:39:d4:e5:f9:99:84:a3:3d:
67:20:88:bf:33:df:2f:59:f7:47:f4:6f:0b:86:9b:1c:6d:ef:
53:c5:75:33:3c:8b:a7:a2:d6:bd:a7:48:51:22:62:ac:fc:d3:
c6:5e:0c:60:b3:e0:a4:04:5e:26:7f:73:5b:d1:c7:8c:01:06:
29:cc:8b:de:ac:e3:89:f8:bc:f8:5e:95:4b:9a:18:75:ad:42:
4e:ab:08:95:45:0b:91:78:89:3c:c6:44:75:91:d7:9a:4d:7f:
0f:3e:fb:83:db:29:11:1b:eb:99:0a:78:7f:59:44:8b:61:1f:
95:cb:a0:0d:2d:69:f5:f8:22:c1:23:b0:0c:7f:da:9b:15:77:
35:da:ec:78
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY7YqNQ63KJsoOiC2SHaOeJ3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzYjNkYTNlY2I4YTdkNDMzZGUzODMzODY2N2IzNWU2OGRm
NzNmOGMwHhcNMjQwNDEzMTgxMjA2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZDNiNWExMTg3ZWIyMTBlN2M5ZWI0MjA2MmIyNDU0MzdhMmFkNzFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6lo6mVDP5XudISsj7dEz3pH6LzIz
mUbnp/UQjp3h1GGoQec6WeFMJj0BvAjc7MpJXsjWI6Ylldk4vGS6EGaHu/QHu7e9
7lCv0UPP6SIVkj8esqHFo3JsbjcvcS9sFY4x79zzJLQGP8O9AP5erV7p8ymy5O3w
Lr2nI53TQ1wObJA2523EG0o4FonKcoJrSTse/eRQ4sDDGTKbMTK/kGKriZqkGBXy
vyxOqBAnF1TMlAbWSsMVFPGRU+TP0fPwP9Y0nRLb+0KfeEqTQ0hiWROFFjjDvtUt
3t3Kny5BR62zstu3PVSOIeZmRPVJNwo0vetl2sGADIPyddglmYtEvoRHkwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFO07WhGH6yEOfJ60IGKyRUN6KtceMB8GA1UdIwQY
MBaAFNOz2j7Lin1DPeODOGZ7NeaN9z+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODct
YzUzOTc5ZDY2Y2E1LzEvN1R0YUVZZnJJUTU4bnJRZ1lySkZRM29xMXg0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODctYzUzOTc5ZDY2Y2E1
LzEvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBACeDcbSLn3PWFWgMzC+A
uLXODvdXFPVYRVa2QhfrjOT6yD74rc+eVfjGqrQPowlQF2YrD8H4llz6SJmDx9C9
jfva/aYksyv//48RynEPC5G0grpl/vLPF4j+8K1xkKjLjdPaz40hxNUWyixkS0LU
HexAQacGR9o51OX5mYSjPWcgiL8z3y9Z90f0bwuGmxxt71PFdTM8i6ei1r2nSFEi
Yqz808ZeDGCz4KQEXiZ/c1vRx4wBBinMi96s44n4vPhelUuaGHWtQk6rCJVFC5F4
iTzGRHWR15pNfw8++4PbKREb65kKeH9ZRIthH5XLoA0tafX4IsEjsAx/2psVdzXa
7Hg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:49 2024 by rpki-client on console-ams.rpki-client.org