Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Hu33DSvsxuZcZDL85MZgvSP7jpM.roa
File: Hu33DSvsxuZcZDL85MZgvSP7jpM.roa (raw, json)
Hash identifier: SMb+PcYCNRLoDUgnPVoYMKTklQtL6YpzB/G9ZLCVCP0=
Subject key identifier: 1E:ED:F7:0D:2B:EC:C6:E6:5C:64:32:FC:E4:C6:60:BD:23:FB:8E:93
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018C8D93BAA86C252FC68B1BE2E399B10A01
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Hu33DSvsxuZcZDL85MZgvSP7jpM.roa
Signing time: Thu 21 Dec 2023 18:11:58 +0000
ROA not before: Thu 21 Dec 2023 18:11:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:8d:93:ba:a8:6c:25:2f:c6:8b:1b:e2:e3:99:b1:0a:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 21 18:11:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1eedf70d2becc6e65c6432fce4c660bd23fb8e93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:70:9f:7f:71:b8:4f:ab:4c:08:7b:31:d3:c3:
b0:22:3d:5a:a1:43:b4:9e:44:89:89:6e:e9:b3:c7:
6b:89:2e:23:01:78:d4:56:16:a2:99:66:88:08:8c:
e1:a8:1a:43:ef:d3:22:44:12:ad:9f:d6:e0:3e:0f:
86:11:43:3e:58:ad:9f:56:7b:48:ac:1f:69:18:b1:
7a:2a:f5:a1:68:5e:d8:4a:00:69:e6:22:7e:44:07:
74:38:8d:48:77:d0:58:d5:41:7c:3b:5d:39:ef:57:
ee:c5:c6:87:b3:8f:ed:ac:71:d2:b5:02:83:38:27:
39:08:9d:c1:c4:1f:4c:a0:4e:f7:b1:cf:9f:1a:aa:
d3:de:c9:62:d4:ba:ca:fb:25:68:cd:20:fd:f5:bd:
13:6b:11:03:da:4d:ad:8c:ef:55:b3:d2:c5:8a:83:
2d:bb:2a:a7:b8:fe:3b:12:32:9c:17:ef:8e:13:0e:
07:99:f0:ea:a3:23:6f:02:4d:f4:b9:44:7f:9b:c8:
0b:d3:d9:17:b2:f5:c8:83:c3:85:09:cc:80:2a:a1:
d5:5a:c4:81:5a:ab:0c:55:f6:e2:44:34:79:78:cc:
e0:ac:c8:8f:48:00:a4:8e:ac:74:df:80:0c:23:d7:
22:fb:96:dc:9f:f1:30:7a:88:06:27:f4:ad:11:2c:
94:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:ED:F7:0D:2B:EC:C6:E6:5C:64:32:FC:E4:C6:60:BD:23:FB:8E:93
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Hu33DSvsxuZcZDL85MZgvSP7jpM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
51:da:9c:84:89:b4:5b:bb:b9:36:a1:09:2f:e1:18:46:b7:e8:
95:ad:da:5d:3f:35:d8:34:3b:64:23:27:77:33:9f:32:e6:08:
11:c3:dd:5d:96:6f:95:ce:a4:fc:e1:be:f5:71:e4:50:1e:8c:
d7:58:32:c8:2d:1d:50:31:2a:b5:02:07:60:67:e9:07:40:03:
56:46:28:05:2e:10:6d:a7:8c:ff:d9:a2:8f:39:16:4f:bc:eb:
e5:84:4b:d3:c9:37:08:89:96:19:e9:e0:73:e7:8a:8c:ac:1a:
a7:d2:dd:a9:b4:9f:3f:1b:d7:80:15:6e:4b:fe:9a:ae:4b:5b:
50:ea:60:ce:22:c3:5c:d3:d4:c7:a2:74:e2:41:1e:24:dd:94:
92:34:1b:ea:38:5f:3c:fd:79:1e:23:77:9c:e8:c1:0c:42:a2:
5f:64:db:08:94:b2:79:03:d4:59:5f:62:be:1d:c8:71:12:aa:
2d:66:dd:62:f7:6e:7b:a1:e3:02:42:64:9a:e4:0b:0e:25:c1:
12:9d:92:d8:b7:35:dc:9a:a8:01:45:2d:02:17:bc:a6:6e:37:
30:3e:01:17:ca:df:1c:87:dd:9c:2e:25:f1:41:f0:28:b4:09:
d0:45:15:32:21:6e:95:7d:fe:04:d8:03:1e:6e:83:4e:22:44:
ba:6a:69:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:50 2024 by rpki-client on console-ams.rpki-client.org