Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/BTz0M1UWc-Hy2O7YmOoeChpcJlI.roa
File: BTz0M1UWc-Hy2O7YmOoeChpcJlI.roa (raw, json)
Hash identifier: Xun2+UAHwTLsIPa//xVqwtqPgaOOZNCATLcrnqYdScU=
Subject key identifier: 05:3C:F4:33:55:16:73:E1:F2:D8:EE:D8:98:EA:1E:0A:1A:5C:26:52
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018C90CC9EE50431D8E01DA45A510E974AAE
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/BTz0M1UWc-Hy2O7YmOoeChpcJlI.roa
Signing time: Fri 22 Dec 2023 09:12:58 +0000
ROA not before: Fri 22 Dec 2023 09:12:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:90:cc:9e:e5:04:31:d8:e0:1d:a4:5a:51:0e:97:4a:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 22 09:12:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=053cf433551673e1f2d8eed898ea1e0a1a5c2652
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:c5:4b:30:83:e7:80:a0:6a:53:c2:ef:1c:6c:
14:3c:e7:70:c4:18:42:60:81:61:ae:9b:01:85:96:
1d:4d:12:d1:f4:41:94:4a:23:01:3f:18:02:22:63:
89:a8:eb:c1:c2:d4:53:fc:d3:7a:68:0e:d9:29:d7:
0e:38:46:9f:bc:86:34:6a:aa:3c:b0:64:e4:c6:05:
9b:22:97:c2:62:f1:1f:07:ec:63:61:e6:a6:80:e4:
c7:24:34:a4:55:d4:30:b5:15:98:cd:cc:9e:f5:a0:
8d:95:06:84:70:0d:1e:9e:5f:43:21:d4:43:d7:e0:
89:48:d5:82:67:71:ae:e7:ab:c0:c5:01:11:f4:a8:
e1:9b:15:fd:06:29:f4:85:6f:3b:2a:0c:12:b2:0c:
bc:8f:af:a4:79:ba:60:63:56:5d:1e:cf:9e:c6:8e:
4a:0e:40:35:98:53:3d:83:10:4e:3e:2a:ad:0b:d6:
30:53:0f:75:10:53:e2:5f:55:7c:39:cd:a0:21:06:
7c:bd:1e:48:17:fa:af:4e:20:f1:a3:ba:12:d4:db:
c1:bf:97:b1:a9:78:ac:d6:f2:a9:e5:34:00:7a:72:
d7:1f:09:1a:6d:58:01:52:fb:3d:58:f6:05:f3:7d:
5a:55:94:f0:26:a5:33:b6:db:82:d6:8c:20:5c:b2:
21:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:3C:F4:33:55:16:73:E1:F2:D8:EE:D8:98:EA:1E:0A:1A:5C:26:52
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/BTz0M1UWc-Hy2O7YmOoeChpcJlI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
5e:40:88:0e:27:ac:06:c7:3f:51:38:1c:11:9d:56:e9:c5:ca:
2c:03:c8:69:7b:75:cf:4c:7f:8a:b1:e5:63:e1:7d:00:34:d1:
19:fb:63:8a:da:3a:04:5b:59:10:98:9b:f2:b1:f3:87:73:8b:
33:db:29:7c:fb:b2:a6:48:cf:9b:4d:77:6b:c7:59:f0:36:28:
e4:4a:fb:a5:fa:52:f9:22:27:02:8f:96:a6:0d:43:f2:7f:9a:
22:83:52:e8:3a:ff:11:3a:1d:1c:5f:78:ce:d0:d1:35:c8:94:
b9:f7:22:d3:11:bd:26:e6:32:f2:2c:a1:38:04:75:43:cc:58:
4e:5e:1a:b9:0c:13:86:92:e9:ef:c4:78:13:20:a8:31:e9:d8:
dd:b8:4b:27:76:fc:ae:72:14:f3:a8:b9:c8:27:9e:f8:19:4f:
95:ea:87:a5:8f:82:ef:a0:79:11:dc:2e:e8:65:2b:7f:9d:95:
54:64:e0:3c:b5:59:21:68:34:f7:12:0f:04:29:af:f1:a3:0f:
00:85:a1:67:7d:00:07:09:e3:cf:cc:2f:61:4c:b7:46:01:45:
6f:57:66:30:72:07:a9:bd:27:2c:28:e4:cd:44:e9:f1:df:d3:
4c:1f:89:25:67:bd:b6:d0:ef:33:aa:af:0a:2a:4c:f2:19:2b:
75:82:8b:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:30 2024 by rpki-client on console-fra.rpki-client.org