Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/DQKi4hmvgcnn6w3SzSO82V5MfGQ.roa
File: DQKi4hmvgcnn6w3SzSO82V5MfGQ.roa (raw, json)
Hash identifier: dejCun7Y3GZtGgbC6nfYl6SyL05kPj0kUFgsxzNPFuI=
Subject key identifier: 0D:02:A2:E2:19:AF:81:C9:E7:EB:0D:D2:CD:23:BC:D9:5E:4C:7C:64
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CAD5771D4DB0E74B220591DE6FDEFE6A7
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/DQKi4hmvgcnn6w3SzSO82V5MfGQ.roa
Signing time: Wed 27 Dec 2023 22:13:58 +0000
ROA not before: Wed 27 Dec 2023 22:13:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ad:57:71:d4:db:0e:74:b2:20:59:1d:e6:fd:ef:e6:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 27 22:13:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d02a2e219af81c9e7eb0dd2cd23bcd95e4c7c64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:0e:2e:ad:8a:fb:13:db:76:98:94:ac:d8:62:
6e:0f:2e:48:ea:0a:d6:b9:ae:31:1e:65:93:02:56:
21:ba:26:d0:2f:24:ec:d0:cc:60:8a:1d:cf:2e:99:
d8:60:30:87:16:e4:4d:ca:0d:b5:58:11:17:fb:bd:
54:89:82:e8:89:c7:16:33:88:67:ac:66:93:15:77:
e3:dd:fc:ea:f6:35:a5:68:62:47:b3:d9:d8:69:b7:
b0:1c:6a:35:a8:bd:1e:1c:5f:6f:39:3f:e1:87:1c:
ab:d4:c6:22:78:a9:8b:06:41:b0:2e:ae:47:88:60:
28:e2:cb:e0:48:89:83:12:3a:9f:2b:e5:66:95:e9:
20:62:3b:e8:24:f1:d2:e7:da:9a:2f:e8:e8:68:cd:
20:9e:69:6e:6d:6e:8c:c3:b4:6b:b9:e7:23:87:20:
92:15:20:dd:86:d9:3c:b1:39:62:f4:77:4c:7f:f8:
b4:a2:2e:1d:e6:29:6b:5c:f1:e3:02:f1:3b:98:69:
73:07:47:6e:ba:29:a2:6a:69:5b:3b:df:f9:d5:35:
02:75:23:ca:d6:75:5d:fa:7c:dc:ca:87:79:dd:04:
00:c2:ef:ce:ce:91:a4:dc:92:2c:fd:a6:d7:35:54:
fe:be:54:dd:49:b4:3a:2b:c2:c6:0c:ed:c2:40:b2:
e1:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:02:A2:E2:19:AF:81:C9:E7:EB:0D:D2:CD:23:BC:D9:5E:4C:7C:64
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/DQKi4hmvgcnn6w3SzSO82V5MfGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
14:1e:6e:a9:28:ab:7b:1e:75:9e:cc:35:56:be:f6:73:cb:61:
58:ae:58:be:60:ee:2d:e6:02:45:df:e3:ee:43:22:85:94:cf:
31:aa:6d:df:3b:06:43:06:d7:cb:e9:fe:7a:91:8e:90:52:a0:
b3:f5:e0:57:ed:02:82:a4:b9:d2:62:ef:d7:ff:27:83:58:49:
8a:21:73:b5:38:80:2d:3f:aa:18:80:e7:6c:a0:1f:27:b8:72:
34:d6:49:bf:c3:77:c6:d2:fd:36:67:4e:05:0c:3c:1e:2f:a3:
59:4c:85:26:cc:d7:65:2f:1f:e9:5b:ca:53:c1:92:fc:bb:1f:
26:d2:52:35:d4:9d:b0:93:68:fe:d2:76:e9:7f:cb:25:a8:22:
77:01:68:d4:5d:16:9a:f2:fd:db:a2:76:af:0e:e6:78:c2:fa:
79:44:23:34:52:ec:56:f6:68:7c:17:bd:d0:fb:66:8d:65:69:
dd:28:8b:ad:de:35:df:51:e5:68:0d:1e:07:cb:3a:e4:be:01:
cd:94:3a:84:98:35:c2:fc:c2:9d:35:47:4d:51:d4:ec:b1:7f:
5f:e3:fc:97:16:46:ac:3b:27:18:70:cc:71:2b:83:d7:c2:b8:
34:c4:21:bd:c5:84:e9:9d:af:32:05:3f:bf:dd:bc:ac:9d:f5:
9f:e5:c6:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:31 2024 by rpki-client on console-fra.rpki-client.org