Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/DWNwpGrtA01HRaJKI10W916vnTo.roa
File: DWNwpGrtA01HRaJKI10W916vnTo.roa (raw, json)
Hash identifier: yP2CVKbB+riyIPAj5vMTi+ri//M0A3dPvzJScFfprjQ=
Subject key identifier: 0D:63:70:A4:6A:ED:03:4D:47:45:A2:4A:23:5D:16:F7:5E:AF:9D:3A
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018E87547D9E9D2B63C8A38A0E486261ECB1
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/DWNwpGrtA01HRaJKI10W916vnTo.roa
Signing time: Thu 28 Mar 2024 23:10:45 +0000
ROA not before: Thu 28 Mar 2024 23:10:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:c109:b478/128 maxlen: 128
2001:67c:64:ffff:0:18d:e84f:370a/128 maxlen: 128
2001:67c:64:ffff:0:18e:76c8:d5da/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:87:54:7d:9e:9d:2b:63:c8:a3:8a:0e:48:62:61:ec:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Mar 28 23:10:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0d6370a46aed034d4745a24a235d16f75eaf9d3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:f2:ba:33:0e:ab:6e:57:40:8c:89:7d:97:64:
cd:73:3f:0a:78:08:09:6e:77:72:cc:77:49:4e:5b:
5a:6f:21:4c:0c:8a:90:cb:2e:df:82:46:b4:4d:41:
bc:3e:ae:36:ba:29:d3:cc:a4:1a:8b:86:9d:6f:4d:
16:04:f3:c4:f8:e6:2b:af:fc:52:23:37:d8:72:ef:
6c:1c:49:1f:05:9f:f8:d0:f1:6a:0c:c7:6d:44:56:
d3:fe:4e:b9:c4:5f:d9:b6:74:86:b8:ce:c6:a3:ce:
34:25:d3:6b:8f:4e:ec:ca:4b:44:9a:84:3d:f9:d7:
cb:c7:b9:ce:e0:f2:36:96:61:d9:63:5f:81:f5:2e:
c4:73:f9:12:e4:3a:76:d8:e0:e4:fb:3a:8d:ca:90:
11:2f:26:c6:e9:9f:48:02:23:71:8f:b9:fa:1f:e9:
95:68:89:e9:8f:22:af:63:a6:8c:48:bc:01:fa:4b:
cc:bc:e5:59:99:25:5c:0a:c0:ba:cc:70:c1:8a:93:
8f:4f:de:9f:7a:01:0e:a1:a1:0b:74:b6:7f:b7:aa:
e4:b7:01:37:85:24:d4:6d:45:6f:9b:78:1d:d7:51:
29:7f:81:db:3c:11:a8:0f:fb:6a:aa:1f:85:e9:ba:
b6:b1:0e:97:b7:f4:0e:66:0d:b2:06:c4:ad:b1:b7:
6d:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:63:70:A4:6A:ED:03:4D:47:45:A2:4A:23:5D:16:F7:5E:AF:9D:3A
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/DWNwpGrtA01HRaJKI10W916vnTo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
4a:0c:bc:f3:30:04:a0:78:b5:32:e4:29:83:52:12:4c:c9:e3:
b9:15:5f:28:b4:1c:a3:a0:40:fb:c8:49:86:99:c2:b3:bc:19:
be:1e:89:77:b4:d1:6c:b9:30:6a:36:d2:9b:14:2a:0e:57:7e:
42:62:1d:d4:62:9b:57:4d:83:a9:11:b3:fd:10:3f:30:4d:bb:
32:11:26:d4:f4:67:b2:d8:01:3b:dc:aa:f9:71:64:71:de:be:
b7:b6:8f:67:7d:7f:e2:4a:7b:76:d0:a3:2f:da:48:fd:f5:ff:
7d:22:1e:c5:44:ff:4f:6c:6d:70:96:2a:8e:c0:7e:0a:76:5f:
f9:fb:6d:69:c3:c6:ac:58:ac:a4:6f:a4:15:f2:1d:4c:92:ac:
b8:94:e3:7c:db:9b:5e:b8:08:8b:c0:16:d9:8f:50:24:90:9b:
0f:30:9c:42:0f:6d:71:6f:df:27:f3:19:3e:2a:1c:ba:fe:f0:
8d:e2:49:b4:ef:6a:f0:18:26:22:70:1d:e9:57:44:96:32:29:
af:ad:02:dd:a8:85:63:92:1d:52:19:56:27:b2:cd:ae:dd:5d:
12:70:a5:d3:a9:74:8f:2f:8b:59:19:98:ce:4a:e0:bd:5a:70:
36:25:3b:81:c4:ed:b2:ad:48:b6:a7:7a:b5:0a:0c:20:ea:68:
be:92:27:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:49 2024 by rpki-client on console-ams.rpki-client.org