Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/E6gRpdsQWoiiWP1xNizurKxNTrc.roa
File: E6gRpdsQWoiiWP1xNizurKxNTrc.roa (raw, json)
Hash identifier: AgG9FehXeV+OnrdI6J+hVVMCCruOpL5Nn0dMUZDvdLI=
Subject key identifier: 13:A8:11:A5:DB:10:5A:88:A2:58:FD:71:36:2C:EE:AC:AC:4D:4E:B7
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018D141E6A4177FB678BBDC3C57CFBEDC80B
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/E6gRpdsQWoiiWP1xNizurKxNTrc.roa
Signing time: Tue 16 Jan 2024 21:12:33 +0000
ROA not before: Tue 16 Jan 2024 21:12:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:14:1e:6a:41:77:fb:67:8b:bd:c3:c5:7c:fb:ed:c8:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 16 21:12:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=13a811a5db105a88a258fd71362ceeacac4d4eb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:88:ca:0e:fe:96:d2:a6:db:8f:7c:5d:f6:3c:
62:63:2f:bd:22:e7:6a:61:a4:9c:3f:0a:95:5e:e8:
d3:a9:69:f2:44:59:67:24:5a:66:ef:ff:b4:9f:92:
bf:cb:39:b6:a7:e2:84:1c:cd:f3:56:a6:f6:b0:5a:
52:70:43:b9:be:98:87:ec:d1:1a:c7:54:09:c0:0e:
fa:5a:df:11:f1:8a:2c:d1:75:26:b1:19:51:d1:d4:
19:3c:65:fc:bf:0c:2e:e1:30:ef:88:2b:f3:da:ee:
92:58:ee:39:a6:40:a3:21:6d:e6:01:74:7a:9f:87:
cd:59:35:4b:6f:63:ca:c9:93:8d:38:cf:fc:7b:37:
4f:84:d6:4a:1c:de:12:91:1b:ec:31:0b:57:42:d3:
72:3f:a4:04:8c:63:a1:76:b1:49:e9:3d:a0:dc:e2:
dd:d0:a1:b6:49:3b:66:87:36:93:66:50:b7:89:64:
57:f2:18:59:67:a6:e7:bc:5f:f6:4d:52:80:65:f2:
59:03:66:4b:eb:c2:cb:82:0e:88:19:be:0f:7c:33:
c3:09:59:8a:58:9c:51:9d:34:9a:d1:22:6b:e3:c1:
94:42:a7:ec:55:44:4a:c5:3d:6e:90:30:18:2b:8e:
d1:f6:c9:96:6a:54:7b:42:8b:ca:fc:25:77:16:19:
b9:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:A8:11:A5:DB:10:5A:88:A2:58:FD:71:36:2C:EE:AC:AC:4D:4E:B7
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/E6gRpdsQWoiiWP1xNizurKxNTrc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
31:18:06:4d:66:af:d1:a2:4e:01:4a:9b:fa:65:f0:a2:38:f2:
82:a3:86:eb:c5:a3:b1:82:60:72:72:78:d8:b4:2e:24:87:e0:
c4:12:38:7d:9d:60:c3:d8:9f:6a:95:94:91:e1:21:51:1d:49:
e0:e3:52:84:ae:c2:d6:cc:fc:c2:5a:27:43:b3:5e:a6:26:94:
ab:81:83:8c:ed:b5:e7:d4:fc:e5:a7:9d:79:e9:f7:f8:ba:bf:
f2:58:58:c9:b2:0b:26:09:ac:ce:b1:50:d7:f8:57:1a:2b:98:
de:34:44:8e:a1:b6:36:6c:07:e3:97:6b:f8:db:51:f8:0d:dc:
ca:18:06:d0:69:34:40:74:a0:96:0a:09:1f:21:dd:4e:02:da:
0f:e3:37:b4:d4:f3:f2:8c:47:81:6f:18:ed:c4:ff:51:b9:19:
14:42:9d:90:da:3f:f4:8e:60:8f:ee:0a:09:88:1c:78:87:d1:
32:9c:2b:c1:cd:ae:8f:82:01:8c:66:86:7a:12:6a:89:e2:c4:
c0:d9:29:ac:35:b8:a9:e8:f9:2f:d2:d4:bb:d5:dd:92:b4:95:
02:1f:81:78:7d:99:18:3b:a6:16:76:64:0f:2a:12:5d:86:42:
7b:72:13:02:16:ce:eb:6a:bc:21:43:9d:13:39:8f:fc:51:b3:
ad:c8:a8:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:49 2024 by rpki-client on console-ams.rpki-client.org