Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/EAfZ1ladIzjhA_fjfikmL4i444g.roa
File: EAfZ1ladIzjhA_fjfikmL4i444g.roa (raw, json)
Hash identifier: RTAKngPExAyjQ/tjRdS+whWRdAJYRH6d/txZ9SvJcPk=
Subject key identifier: 10:07:D9:D6:56:9D:23:38:E1:03:F7:E3:7E:29:26:2F:88:B8:E3:88
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018EB7D5029A4F7DB454B5E35467BC9D6953
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/EAfZ1ladIzjhA_fjfikmL4i444g.roa
Signing time: Sun 07 Apr 2024 09:12:54 +0000
ROA not before: Sun 07 Apr 2024 09:12:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:b7:d5:02:9a:4f:7d:b4:54:b5:e3:54:67:bc:9d:69:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 7 09:12:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1007d9d6569d2338e103f7e37e29262f88b8e388
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ef:e3:2b:26:e0:49:65:21:31:35:ca:62:56:
51:b8:39:91:2a:de:e5:1b:5f:16:99:28:1a:0e:4b:
1b:fc:2d:56:a0:cc:b5:ff:cd:6d:d3:00:9c:99:e6:
3c:fd:22:a1:5f:a9:6a:60:63:4e:dc:3f:ca:44:06:
a5:47:28:45:e9:4b:50:d1:f3:19:69:2b:a4:b4:b3:
3f:ed:b9:54:65:e5:1e:cf:41:c1:a3:28:11:3d:8b:
0e:bf:c1:24:e6:19:55:14:2e:67:78:05:7f:d7:0e:
48:5c:67:5b:4b:ac:cd:8a:65:19:cc:62:f8:42:ab:
60:66:44:95:d7:49:97:d0:ca:f8:c8:8a:85:5f:c2:
0b:15:1a:2b:8c:16:2b:16:f1:7c:d5:4f:4c:8b:f3:
bc:f5:81:06:6c:db:aa:39:2e:4d:5b:ef:f1:82:6a:
98:4d:ac:ff:5e:05:ac:a5:04:d9:24:da:46:9f:2e:
76:b6:d2:de:c5:3e:52:63:16:29:9a:19:54:a8:9a:
00:9c:46:d8:3c:8e:7a:00:5c:fb:1b:6a:a6:65:1d:
dc:c8:6f:08:c7:44:89:a1:dc:95:b7:9f:83:27:76:
15:fe:66:85:a2:9f:c2:88:ee:d5:14:0c:04:48:f4:
19:a7:59:3d:60:67:18:d9:fa:b7:db:d7:5b:7c:6c:
63:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:07:D9:D6:56:9D:23:38:E1:03:F7:E3:7E:29:26:2F:88:B8:E3:88
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/EAfZ1ladIzjhA_fjfikmL4i444g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
3d:29:0e:23:c6:26:75:49:5e:c4:9d:cc:81:3b:66:c3:a8:73:
ca:f8:ab:74:b0:7f:08:ff:6a:8e:d4:a0:2b:6e:d9:44:b8:51:
27:db:88:72:c5:b3:04:b4:e9:1b:d3:ac:2b:e1:e8:3b:d5:e0:
11:cb:de:78:49:36:ab:8a:db:56:90:f6:fc:b8:76:fd:14:73:
29:5e:fc:f1:7d:bf:44:55:b2:bb:ab:83:95:25:fc:40:86:8e:
51:25:28:fb:96:74:f7:91:fe:a5:c9:9f:35:ef:b0:97:db:3c:
91:de:8c:b0:24:74:6c:4e:f7:8a:3f:aa:69:83:eb:a7:05:4f:
d0:33:3d:27:0b:0d:f1:ff:f8:6e:16:b0:3b:ec:65:0d:14:94:
59:78:a4:75:f5:9c:9f:48:ff:f6:2c:8a:d9:9c:0f:50:8e:59:
14:6a:22:bd:41:d6:3d:12:28:5f:55:11:4b:7d:32:97:f1:2b:
64:f9:4a:33:f4:64:6e:e8:4d:14:88:13:b0:30:f7:9d:99:40:
b5:4f:23:a1:61:db:e7:f0:3e:5b:17:d6:a2:d1:64:77:8c:2a:
2c:38:85:bc:45:11:63:ca:9a:c1:1c:4a:0f:0d:69:ab:69:f1:
87:28:8b:3e:ae:58:b0:f1:51:24:8b:b0:de:e7:91:a1:44:64:
d5:d0:cd:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:19:14 2025 by rpki-client