Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/9lPmk_Eiwf1j3Jr1dFc6ZYS3WWo.roa
File: 9lPmk_Eiwf1j3Jr1dFc6ZYS3WWo.roa (raw, json)
Hash identifier: wY0evXRGgrd8udJJWclXMMiHjZvYWno3M85mDUCA0Ts=
Subject key identifier: F6:53:E6:93:F1:22:C1:FD:63:DC:9A:F5:74:57:3A:65:84:B7:59:6A
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CBBECF6A9129355444AC24CD1E2641B07
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/9lPmk_Eiwf1j3Jr1dFc6ZYS3WWo.roa
Signing time: Sat 30 Dec 2023 18:11:58 +0000
ROA not before: Sat 30 Dec 2023 18:11:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:bb:ec:f6:a9:12:93:55:44:4a:c2:4c:d1:e2:64:1b:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 30 18:11:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f653e693f122c1fd63dc9af574573a6584b7596a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:64:d3:d1:04:f0:60:99:30:b8:a3:cf:34:4c:
a2:6b:bb:0a:03:d1:ef:fd:48:a5:77:3c:d8:ad:53:
53:10:ab:33:c0:09:39:47:47:d1:14:ac:59:e6:9b:
b5:65:ba:e2:2d:54:bc:20:f5:51:b5:53:7a:df:d9:
eb:68:57:d7:ab:19:b7:fe:25:9f:10:22:b3:ed:3e:
49:87:b6:fa:e3:72:70:44:35:69:3b:a4:98:ba:3a:
53:03:98:a1:0e:3e:05:9c:e7:5b:0d:2b:db:5a:19:
28:b8:69:d3:6a:a1:15:92:e3:25:e2:e2:19:42:3b:
95:89:73:44:ad:04:3d:5e:22:1f:51:91:ba:ba:70:
f6:e6:f7:a6:47:7f:20:3c:02:1a:8a:42:57:03:71:
32:1e:38:56:8f:0e:d4:e9:f9:31:6c:65:83:00:b3:
55:8e:1b:43:f3:00:89:8a:32:5d:d1:b4:f7:6b:2b:
65:14:73:ef:aa:75:8c:21:c7:10:50:0a:c5:ad:7e:
84:fd:92:4d:35:18:22:7c:e0:24:1b:30:31:87:18:
bd:a4:0d:85:f1:8b:4d:57:92:cf:53:eb:fb:fb:3a:
6e:ef:ac:f9:69:41:66:29:34:a9:ed:83:95:a3:b8:
b3:17:3e:41:89:91:ff:51:fd:9d:0b:5a:92:cf:66:
42:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:53:E6:93:F1:22:C1:FD:63:DC:9A:F5:74:57:3A:65:84:B7:59:6A
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/9lPmk_Eiwf1j3Jr1dFc6ZYS3WWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
0f:db:a0:ec:f1:35:42:83:9b:5c:6b:37:b9:07:e4:13:e7:5d:
29:bf:f8:0c:4d:f0:1f:a4:ba:53:81:29:c1:18:a0:ce:98:9f:
34:a8:ad:06:47:fe:d4:cf:e6:79:ce:19:33:68:79:24:0c:2a:
13:1b:0a:e7:be:27:b3:b0:8b:37:ed:35:9a:f2:2a:e1:a3:b6:
2a:1b:b2:c2:e5:bd:75:57:25:3c:3c:e3:01:b2:8a:42:ab:aa:
22:12:9e:0f:3a:cc:8c:a0:10:75:62:32:e5:f1:4a:9d:9d:b1:
ae:e3:62:2a:4e:08:a5:34:2f:8d:9c:db:6c:48:62:04:e2:4f:
73:a2:6b:00:33:67:a4:91:e3:e1:9f:76:00:5e:8b:40:55:df:
66:d3:5c:78:69:44:d7:fd:b4:56:e8:c4:ad:d2:9c:f1:0e:35:
87:cd:66:09:4f:64:f1:b1:42:6a:d6:11:0c:a5:5a:c5:23:f4:
39:8a:ca:e0:89:fd:4e:1d:5a:82:bd:97:bd:0b:6f:8f:06:7c:
28:7a:9c:71:19:e7:02:28:d6:d8:e1:77:e4:18:83:e0:62:15:
3a:14:2d:cf:bb:82:7d:be:48:99:9e:42:f1:93:5a:62:01:66:
b0:1d:0a:db:51:60:f6:fd:48:f8:cc:06:1d:a1:dd:35:ca:e8:
6e:c7:c5:f6
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYy77PapEpNVRErCTNHiZBsHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzYjNkYTNlY2I4YTdkNDMzZGUzODMzODY2N2IzNWU2OGRm
NzNmOGMwHhcNMjMxMjMwMTgxMTU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNjUzZTY5M2YxMjJjMWZkNjNkYzlhZjU3NDU3M2E2NTg0Yjc1OTZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkWTT0QTwYJkwuKPPNEyia7sKA9Hv
/UildzzYrVNTEKszwAk5R0fRFKxZ5pu1ZbriLVS8IPVRtVN639nraFfXqxm3/iWf
ECKz7T5Jh7b643JwRDVpO6SYujpTA5ihDj4FnOdbDSvbWhkouGnTaqEVkuMl4uIZ
QjuViXNErQQ9XiIfUZG6unD25vemR38gPAIaikJXA3EyHjhWjw7U6fkxbGWDALNV
jhtD8wCJijJd0bT3aytlFHPvqnWMIccQUArFrX6E/ZJNNRgifOAkGzAxhxi9pA2F
8YtNV5LPU+v7+zpu76z5aUFmKTSp7YOVo7izFz5BiZH/Uf2dC1qSz2ZCYwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFPZT5pPxIsH9Y9ya9XRXOmWEt1lqMB8GA1UdIwQY
MBaAFNOz2j7Lin1DPeODOGZ7NeaN9z+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODct
YzUzOTc5ZDY2Y2E1LzEvOWxQbWtfRWl3ZjFqM0pyMWRGYzZaWVMzV1dvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODctYzUzOTc5ZDY2Y2E1
LzEvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAA/boOzxNUKDm1xrN7kH
5BPnXSm/+AxN8B+kulOBKcEYoM6YnzSorQZH/tTP5nnOGTNoeSQMKhMbCue+J7Ow
izftNZryKuGjtiobssLlvXVXJTw84wGyikKrqiISng86zIygEHViMuXxSp2dsa7j
YipOCKU0L42c22xIYgTiT3OiawAzZ6SR4+GfdgBei0BV32bTXHhpRNf9tFboxK3S
nPEONYfNZglPZPGxQmrWEQylWsUj9DmKyuCJ/U4dWoK9l70Lb48GfCh6nHEZ5wIo
1tjhd+QYg+BiFToULc+7gn2+SJmeQvGTWmIBZrAdCttRYPb9SPjMBh2h3TXK6G7H
xfY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:30 2024 by rpki-client on console-fra.rpki-client.org