Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/HJPijWMctb_vR_dcBdkb-Scq3qY.roa
File: HJPijWMctb_vR_dcBdkb-Scq3qY.roa (raw, json)
Hash identifier: dr/asbZcCkhTu6fZq28bBhADCM+Vx+cJjCUzW8oDmz4=
Subject key identifier: 1C:93:E2:8D:63:1C:B5:BF:EF:47:F7:5C:05:D9:1B:F9:27:2A:DE:A6
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CA945932D2CD99D6E0801D7B883D42710
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/HJPijWMctb_vR_dcBdkb-Scq3qY.roa
Signing time: Wed 27 Dec 2023 03:15:58 +0000
ROA not before: Wed 27 Dec 2023 03:15:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:a9:45:93:2d:2c:d9:9d:6e:08:01:d7:b8:83:d4:27:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 27 03:15:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c93e28d631cb5bfef47f75c05d91bf9272adea6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:cc:76:74:88:44:a9:74:c8:97:a5:10:ee:af:
90:cc:b0:6d:e0:df:40:c5:4d:ae:01:48:0c:6e:ff:
0d:09:9f:7e:7c:ab:68:92:c1:91:1e:77:9b:10:22:
a9:29:4b:98:7e:f5:1d:32:7a:77:c1:75:2a:96:3b:
21:12:e0:77:80:f4:5a:20:ab:d0:81:ea:80:87:fc:
b8:26:bf:15:bc:aa:19:cf:5d:6d:a9:f6:b6:77:f4:
00:50:f6:bb:46:1d:eb:16:e8:87:c3:4e:44:20:a3:
2c:b8:42:d2:d3:08:fb:d7:dc:0a:1d:3f:23:47:95:
20:f9:bf:04:ba:2e:91:c0:c9:00:37:3d:9d:4b:82:
37:38:a3:5b:44:a1:a7:4e:3d:67:f6:3b:94:62:d0:
5e:72:7b:b5:4f:6b:36:1e:0c:6b:cb:fa:54:ef:76:
88:0a:07:38:70:bc:9b:9d:a3:1a:a7:c9:b4:10:4f:
5e:1c:c6:68:b3:5e:15:27:9a:a5:62:3e:25:aa:2a:
4f:74:9f:1f:ad:d1:98:d4:b8:9c:39:3b:fe:50:b2:
ec:eb:a0:25:30:9a:ed:71:78:7d:96:c8:59:f0:fd:
55:6a:6d:e4:f4:e6:40:b4:93:fa:40:a8:14:5c:45:
0a:9b:47:ab:23:5e:00:00:ef:bb:57:27:4b:67:c6:
67:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:93:E2:8D:63:1C:B5:BF:EF:47:F7:5C:05:D9:1B:F9:27:2A:DE:A6
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/HJPijWMctb_vR_dcBdkb-Scq3qY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
7e:86:1c:ae:73:70:f2:07:95:f2:9b:66:a1:1c:e2:10:16:39:
b8:3c:f2:ad:3b:b8:af:5e:4f:21:f6:de:7d:1d:a2:82:07:0d:
d2:fc:44:72:f1:7e:96:5b:62:d3:a6:5e:e8:d4:65:f3:dd:a2:
f6:4f:34:97:a9:53:bb:e6:0e:6d:83:e4:12:51:26:4d:13:bd:
37:ea:7e:09:78:1f:73:a1:2a:a9:f4:aa:f0:6a:a4:ac:98:ec:
45:a3:30:07:fa:d0:00:44:70:a3:67:42:3f:cf:5b:7a:89:5f:
c2:a2:0d:9f:99:3e:60:9f:d2:9d:d9:b1:df:a7:b2:6a:bd:d9:
d3:60:4a:f0:bf:50:8b:8d:c5:b0:3b:74:3f:7a:fd:8a:c2:25:
51:fb:b0:b9:a8:98:9d:55:bd:c0:69:6e:af:45:3b:34:ae:5c:
dc:3c:04:03:07:23:e8:8c:a7:0e:8a:87:dc:32:77:61:1b:2d:
ca:10:c1:cf:5e:43:b9:a7:08:6f:ef:b8:7d:ea:11:88:da:2c:
39:89:e1:4f:29:66:b6:2e:1c:e5:f2:bf:a3:f6:e6:d4:cf:f9:
bc:a8:aa:c2:f6:de:0b:a0:7b:2b:cb:96:aa:39:62:86:d9:bd:
27:b9:f4:6c:ad:fc:b5:8d:d3:b9:fb:c1:15:e6:92:c8:9a:d1:
ce:a0:1b:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:49:52 2025 by rpki-client