Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Am04SAIGbyjbxklYzo3Q0uEieWI.roa
File: Am04SAIGbyjbxklYzo3Q0uEieWI.roa (raw, json)
Hash identifier: uU1aOja31FxwVp5GmgJ1cIKAB8RU4tArqEQjPDn4KQQ=
Subject key identifier: 02:6D:38:48:02:06:6F:28:DB:C6:49:58:CE:8D:D0:D2:E1:22:79:62
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CDF5572AA77CC352F5F1FCB7D7AEE7FE3
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Am04SAIGbyjbxklYzo3Q0uEieWI.roa
Signing time: Sat 06 Jan 2024 15:12:48 +0000
ROA not before: Sat 06 Jan 2024 15:12:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:df:55:72:aa:77:cc:35:2f:5f:1f:cb:7d:7a:ee:7f:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 6 15:12:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=026d384802066f28dbc64958ce8dd0d2e1227962
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b4:02:bf:66:cb:83:5b:9b:86:3b:4f:6e:74:
47:07:8d:d9:e4:c3:6a:9e:f8:3f:45:52:12:cd:5e:
0a:f0:7c:b3:72:da:e1:3c:a7:d7:1d:dc:97:21:94:
a7:aa:9d:a9:72:3c:c5:97:23:88:3e:3b:5a:56:86:
6f:70:49:9e:c7:15:d8:aa:d4:c2:9b:2e:a3:23:48:
57:65:ba:58:01:53:b0:5f:13:de:b2:9b:46:e1:a5:
03:75:f2:24:57:ce:aa:e7:47:5c:47:04:2f:88:1e:
8e:3a:6d:38:30:44:ef:42:29:50:a4:36:54:c8:8e:
21:5f:15:a4:cf:7d:28:f4:49:07:f6:0d:40:5c:31:
57:35:cb:3d:e9:b2:1f:1a:d5:ab:d6:27:0c:61:9e:
70:30:4b:57:ce:72:75:1c:dc:ba:d8:6c:35:67:f8:
9d:94:3c:c1:b1:a4:d4:cb:f9:58:c5:ed:b5:52:22:
35:3e:c9:b7:82:91:53:1e:ca:49:be:fd:e0:e9:e8:
1b:82:81:66:89:bb:23:85:09:25:1e:23:71:6f:7b:
82:6d:73:90:9e:d9:65:90:a9:c2:e1:5b:eb:6e:e9:
70:5c:1b:3c:52:ad:17:5d:e3:9a:86:2f:8a:1a:bf:
09:10:c2:98:7e:0b:e2:7e:07:80:6d:05:ef:2f:7c:
4b:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:6D:38:48:02:06:6F:28:DB:C6:49:58:CE:8D:D0:D2:E1:22:79:62
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Am04SAIGbyjbxklYzo3Q0uEieWI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
45:8c:91:cf:25:89:02:dc:5b:9b:0b:1d:3f:dc:fe:92:2b:8c:
da:01:20:14:f1:19:eb:e5:65:73:5d:46:e3:9a:92:41:b5:1c:
07:e2:e4:27:d7:8c:70:08:69:ec:ce:4d:22:77:98:8b:64:bc:
74:d3:2d:fe:5f:ec:fb:0a:9c:0e:e5:03:1f:71:2d:0d:e1:65:
30:1c:71:f3:ed:06:ad:24:73:52:b7:34:ab:ca:96:9c:d1:8b:
4b:e8:1d:3b:df:e9:1d:c7:e5:55:d8:f2:9b:60:95:5a:2e:f2:
b4:0b:63:65:b8:ce:d0:7b:6d:76:81:85:34:94:20:98:2f:64:
61:5d:ae:65:f5:43:23:09:bf:1a:92:2e:8d:a8:33:51:a4:30:
39:4b:6d:69:29:6e:c0:b9:9e:93:f1:a0:56:6d:4e:ad:c9:d6:
d6:c2:01:6b:8d:b5:5c:b3:ba:20:79:0d:7e:1d:cc:be:ed:37:
aa:f2:e1:a1:49:1d:33:4f:c6:e2:80:46:20:55:e2:ba:f3:ad:
b3:05:af:9a:4c:9d:88:79:5b:68:a4:12:ec:2e:bf:a1:b4:13:
22:f9:5f:28:53:0f:be:a4:4b:8e:56:62:ce:ec:56:61:38:b9:
c4:d7:d1:26:84:56:67:8d:37:62:9e:ac:75:3f:d3:cd:9b:88:
94:1b:3d:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:49 2024 by rpki-client on console-ams.rpki-client.org