Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Gd2vMye4-x-_Fw0iuutRG57VIZs.roa
File: Gd2vMye4-x-_Fw0iuutRG57VIZs.roa (raw, json)
Hash identifier: IMQGyXwi5FLFjR0XrdrwHS3TKTBJexOyBOZi0cinrEs=
Subject key identifier: 19:DD:AF:33:27:B8:FB:1F:BF:17:0D:22:BA:EB:51:1B:9E:D5:21:9B
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CD8B0658E7D84D5EB8FC5CD8430E47A50
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Gd2vMye4-x-_Fw0iuutRG57VIZs.roa
Signing time: Fri 05 Jan 2024 08:14:48 +0000
ROA not before: Fri 05 Jan 2024 08:14:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d8:b0:65:8e:7d:84:d5:eb:8f:c5:cd:84:30:e4:7a:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 5 08:14:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=19ddaf3327b8fb1fbf170d22baeb511b9ed5219b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:21:50:dc:17:6f:68:3c:27:3c:83:3e:2d:06:
e0:a8:76:8f:10:f5:4a:0f:6d:17:e6:7a:37:54:76:
6b:96:68:b0:d6:69:04:5d:dc:13:03:ac:33:d4:73:
6b:e5:5c:0f:9f:8c:33:66:bf:c2:27:a5:ab:16:07:
4e:6e:85:7d:37:bb:85:7f:27:c0:cf:a1:95:aa:28:
5f:fb:69:c2:5d:2c:13:7d:32:32:29:f8:b4:cf:49:
97:21:c5:27:dd:d3:9a:ae:72:a5:e7:8b:78:d0:73:
06:f5:64:d2:5d:4b:05:54:db:da:2b:ca:39:bc:2f:
28:f4:32:e8:8b:53:89:51:13:76:8b:9d:69:ed:c6:
38:3d:08:e1:fd:86:67:f3:a9:05:b4:a6:22:44:2b:
aa:52:d3:6c:3a:7a:d6:0b:bf:aa:27:6a:e4:38:ca:
fa:f2:c6:ba:f5:0b:b7:03:c6:b7:79:ce:0c:2e:1a:
17:65:cb:b1:e4:24:aa:ec:94:a1:8f:65:f0:29:4d:
67:b7:ac:20:01:9b:22:95:4e:45:24:a3:12:83:32:
fd:a8:9e:45:f6:f3:f6:02:66:32:ac:d4:34:30:fb:
16:f4:14:e5:c8:e3:77:59:81:a9:fe:76:53:8a:dc:
e1:b1:14:f1:7e:c0:3f:83:c5:34:d0:e0:3f:81:5a:
f9:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:DD:AF:33:27:B8:FB:1F:BF:17:0D:22:BA:EB:51:1B:9E:D5:21:9B
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Gd2vMye4-x-_Fw0iuutRG57VIZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
67:86:c7:d1:26:3e:7c:48:4d:2b:14:27:29:66:25:00:06:df:
74:0e:6d:f2:6b:3b:6c:da:a6:a6:36:0b:46:8f:99:99:34:89:
d8:db:1d:50:e0:47:d7:81:11:24:9f:44:7e:0c:4f:d1:24:69:
ce:01:37:6f:35:4d:c2:86:3c:54:cf:b5:d8:90:6a:d5:d5:8e:
b0:16:f1:9c:c9:4b:8a:ac:34:a2:e2:85:0a:63:73:f9:db:0d:
64:19:48:ba:f5:f5:a5:53:7d:bb:2e:de:e5:ee:39:0a:18:d5:
53:7d:8b:39:01:c1:5a:fc:33:d4:03:4c:4f:13:a5:88:0b:dc:
e8:6c:09:f4:16:4e:0f:32:59:6c:a7:bc:28:2d:b6:2e:4a:6f:
23:2f:06:48:6a:8d:53:ff:ce:35:79:78:04:97:50:2c:c3:6b:
45:f6:2f:6f:33:ed:75:14:2d:02:8a:c2:d7:3d:2b:d9:7f:3b:
39:3a:b5:c4:0a:43:f8:0d:2c:d1:af:22:68:a8:7e:67:be:d5:
bf:c9:6d:cf:df:fb:31:00:b1:28:92:fb:7a:18:48:df:4c:cc:
3f:f9:bc:90:02:eb:a3:37:a7:47:34:28:44:79:7d:f1:bf:73:
aa:a4:0a:05:60:c4:fe:8f:5a:ab:af:fd:b6:0f:d6:b1:29:d7:
96:ca:8e:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:50 2024 by rpki-client on console-ams.rpki-client.org