Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/F4a54dT9JaJAXmUB9t7mjClRQHA.roa
File: F4a54dT9JaJAXmUB9t7mjClRQHA.roa (raw, json)
Hash identifier: p3slhrguRhyehdhBHaJZ6Q4T/dPDQS/N+t++AU01ULI=
Subject key identifier: 17:86:B9:E1:D4:FD:25:A2:40:5E:65:01:F6:DE:E6:8C:29:51:40:70
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CA7C3389D056EC7E2718D895B3D108A48
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/F4a54dT9JaJAXmUB9t7mjClRQHA.roa
Signing time: Tue 26 Dec 2023 20:13:58 +0000
ROA not before: Tue 26 Dec 2023 20:13:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:a7:c3:38:9d:05:6e:c7:e2:71:8d:89:5b:3d:10:8a:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 26 20:13:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1786b9e1d4fd25a2405e6501f6dee68c29514070
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:2b:a5:35:e4:c3:51:ab:31:a8:d2:3d:8d:75:
52:4e:4a:95:64:2f:72:e0:be:fd:02:8d:7a:b4:18:
b2:bc:e7:bb:04:74:b3:83:e9:ef:fb:cc:52:b1:d4:
d2:7d:9d:d4:3e:89:41:85:3a:44:c2:80:4f:10:ec:
60:05:28:c4:20:af:c9:6d:de:c7:07:62:26:85:81:
a2:3a:f2:37:0b:6c:8a:c9:53:1f:22:05:77:17:25:
96:c3:fe:01:d7:20:5e:87:d4:34:e1:a3:11:e7:86:
e8:56:e9:a9:44:fb:9b:0a:c1:6f:59:01:ba:b6:a8:
26:27:5e:a8:b8:b2:1a:69:25:32:35:2a:db:d7:61:
78:8c:3f:56:84:a0:8f:49:f1:eb:e2:d9:20:e8:0f:
3a:c5:d6:d2:43:ac:2d:ee:7e:fb:e0:73:f4:e8:db:
a7:9c:ca:b7:c1:d3:2f:77:f4:7c:24:0d:c3:3f:ac:
b9:15:a0:17:18:1f:e9:32:56:a2:13:26:9c:3d:e0:
01:5d:03:e7:38:76:ab:d1:a2:43:bb:53:8b:a5:ea:
f7:a0:d0:98:af:03:94:b6:79:65:d7:d8:dc:08:b3:
1c:35:1a:c3:90:38:df:9c:6a:09:fc:7c:69:6b:00:
9c:44:44:12:71:b2:74:76:09:f4:92:37:e2:f7:a6:
85:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:86:B9:E1:D4:FD:25:A2:40:5E:65:01:F6:DE:E6:8C:29:51:40:70
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/F4a54dT9JaJAXmUB9t7mjClRQHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
52:ab:6e:5a:05:3b:68:c4:2f:48:29:2f:2c:9f:94:1f:a5:fb:
2e:a6:a9:98:6a:54:4f:e9:87:72:1d:17:ed:d3:e1:e8:f3:5f:
fd:ea:62:91:96:47:a4:99:c5:df:c7:b3:7a:b3:a0:cd:4c:d1:
c3:d7:d0:60:b6:77:68:42:ab:46:16:3f:52:02:99:12:11:d1:
2e:2a:45:6a:1c:97:e5:1c:fb:a2:34:cc:81:3b:89:50:09:1f:
7d:60:18:7e:72:c6:10:d3:4c:a3:d9:19:bc:66:23:fd:49:9b:
ce:62:87:0f:e3:a4:48:08:e5:6e:15:3b:0c:a0:81:03:64:39:
21:b6:aa:8c:8a:55:b5:04:ba:16:06:ba:9a:62:ca:6b:d1:b2:
de:ff:e0:e5:a3:89:d6:a5:58:3a:e0:6b:37:bb:d5:02:dc:1a:
b1:e4:ae:a2:78:87:28:62:26:72:16:8e:34:5a:d7:5d:86:36:
11:d8:25:71:e8:af:f2:40:1e:cd:78:a7:18:e9:78:ed:c8:2c:
19:fe:49:f7:65:0c:f0:48:1c:d7:85:8f:e2:a0:80:01:e0:10:
70:17:f1:27:37:b2:2f:68:8a:db:e4:ff:e7:cd:8c:f9:b6:1d:
f1:e9:4c:b9:f6:73:e7:0d:84:76:8a:3a:57:2d:31:e9:d5:e0:
cb:7a:3e:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:49 2024 by rpki-client on console-ams.rpki-client.org