Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/EVPosc1z3kW4q2mi2U_I1PX95xE.roa
File: EVPosc1z3kW4q2mi2U_I1PX95xE.roa (raw, json)
Hash identifier: W1ha3IpOKLXgf1+RhzsYnOm/W8yKLT8JxDofWhx1cc0=
Subject key identifier: 11:53:E8:B1:CD:73:DE:45:B8:AB:69:A2:D9:4F:C8:D4:F5:FD:E7:11
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018D5C9E12A2D50D2F9148222E8C9A195ED2
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/EVPosc1z3kW4q2mi2U_I1PX95xE.roa
Signing time: Tue 30 Jan 2024 23:04:39 +0000
ROA not before: Tue 30 Jan 2024 23:04:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:4013:c01e/128 maxlen: 128
2001:67c:64:ffff:0:18d:5c9d:6aa7/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5c:9e:12:a2:d5:0d:2f:91:48:22:2e:8c:9a:19:5e:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 30 23:04:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1153e8b1cd73de45b8ab69a2d94fc8d4f5fde711
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:bb:d6:2f:b1:41:e1:76:aa:1d:33:80:4a:b6:
16:76:df:63:a1:3a:c1:29:e0:b7:a3:b7:bc:64:2b:
b7:4c:cd:cf:fa:60:5a:29:65:b7:10:30:8f:e3:68:
9f:1b:f6:13:fd:47:63:6f:cb:cb:b4:cf:00:87:35:
0a:d0:5d:19:76:26:7d:32:04:91:27:f7:4c:31:19:
7e:9d:02:03:fc:60:02:62:d6:f9:33:8f:9c:04:4f:
ec:0a:6b:d5:a3:5f:b7:4f:59:1f:2b:00:6a:be:39:
bb:69:8c:d8:73:86:56:73:3d:b6:b9:3a:f5:30:7f:
bf:ed:ff:68:de:fa:f8:9d:d8:50:1f:ed:a4:e9:4c:
21:27:36:e3:a7:cc:2b:f7:22:2c:1b:9e:e6:97:fd:
56:c1:1e:9a:74:e2:49:2e:88:04:30:5e:63:f5:a0:
3e:a3:43:a6:74:97:68:98:4e:e6:ab:18:8a:7f:59:
bc:27:0c:ee:83:9c:e3:2f:39:0c:e3:92:f7:39:6d:
9c:13:fa:00:4f:81:b5:d3:5a:dd:e2:6d:31:cd:e5:
99:b4:6a:b2:24:74:72:32:3b:84:11:aa:57:c4:2c:
14:f0:0a:62:ca:2e:cf:ff:1b:cd:59:a1:9e:5d:c0:
de:da:ae:ab:bf:61:f6:8c:3b:da:c6:b6:02:8a:cc:
2f:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:53:E8:B1:CD:73:DE:45:B8:AB:69:A2:D9:4F:C8:D4:F5:FD:E7:11
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/EVPosc1z3kW4q2mi2U_I1PX95xE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
3b:20:de:f2:02:35:db:f7:82:d9:dd:b7:ca:0a:95:67:eb:38:
36:8f:ab:b8:99:84:9c:47:f0:25:94:88:bf:64:bf:5a:78:16:
d7:a6:0c:13:c8:f6:63:62:6d:ef:90:df:18:9c:2a:51:4f:5d:
b6:33:18:c6:61:31:b7:18:ff:63:7a:f6:0f:a1:7a:2f:2c:d5:
09:47:ab:61:7a:39:ad:44:95:1a:03:0a:a1:ca:8c:37:da:29:
06:54:10:cd:38:4a:4c:5d:ab:a4:28:29:6e:e3:00:f1:e0:c2:
05:b3:cc:ae:fd:ae:ff:8a:c0:af:21:42:13:7e:58:61:7c:4b:
8e:9f:bc:db:49:e9:95:c3:28:42:d6:61:ff:ea:e6:06:29:22:
64:1d:c6:ea:6d:c9:72:d2:76:f0:fd:cb:76:20:1c:24:8c:ce:
14:c7:a8:71:a8:a5:98:30:13:71:f3:b8:3d:a5:87:54:25:27:
b4:1e:87:2b:8c:aa:82:2e:b6:ad:1a:a6:4f:6c:d0:b3:89:5a:
fd:df:7f:3f:3a:52:ed:fb:d8:27:93:20:c0:ba:b9:74:c5:d5:
b3:0c:42:ec:50:0b:a5:d7:94:a0:3b:49:50:41:b3:f4:00:d9:
bb:da:39:da:b5:e1:3a:52:35:58:fc:8e:c3:b2:f7:ff:d1:28:
bf:b5:39:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:51:07 2025 by rpki-client