Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/HwU5yMOTwxb0yDoY0bpQ6C8G9PU.roa
File: HwU5yMOTwxb0yDoY0bpQ6C8G9PU.roa (raw, json)
Hash identifier: jVxwNUXISgHEAY+Edk5Le01Lsq1fzDinSp6MArgFVWo=
Subject key identifier: 1F:05:39:C8:C3:93:C3:16:F4:C8:3A:18:D1:BA:50:E8:2F:06:F4:F5
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CAC7CA26AEBC707981FDB373891202336
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/HwU5yMOTwxb0yDoY0bpQ6C8G9PU.roa
Signing time: Wed 27 Dec 2023 18:14:58 +0000
ROA not before: Wed 27 Dec 2023 18:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ac:7c:a2:6a:eb:c7:07:98:1f:db:37:38:91:20:23:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 27 18:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f0539c8c393c316f4c83a18d1ba50e82f06f4f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:be:94:8f:91:a2:90:80:e0:52:4e:05:6a:7c:
2f:b1:84:72:3d:d5:7a:69:06:dd:e4:26:eb:02:46:
c5:08:53:71:7d:5d:92:3a:c2:fd:d4:c1:5b:ea:fb:
1e:4a:93:df:2d:3e:fb:ee:60:e2:9c:49:54:3f:f9:
4a:a2:29:28:66:e1:66:7a:ba:34:8e:89:ad:9f:11:
e6:89:04:1c:28:68:26:ca:29:8a:42:71:65:f5:33:
65:56:b0:45:83:01:45:dd:c5:3a:45:ed:ae:1f:f7:
e8:21:43:c5:62:39:f5:a3:f7:ed:6b:c1:48:0c:72:
07:ec:e7:fd:89:05:40:d8:62:fc:3f:5f:2e:ec:a7:
af:c8:50:da:8d:4b:b9:77:5a:40:04:da:dd:1c:9a:
26:46:12:54:ed:e6:29:1d:4c:99:e7:44:b6:8e:db:
18:92:5d:4d:a3:3e:ea:8a:b1:70:51:a4:26:c5:d0:
7e:a9:2d:50:f3:f0:df:aa:76:fa:51:97:04:4b:cb:
83:81:45:fd:b3:7a:9a:b3:f9:88:88:79:51:65:37:
c7:ee:79:3b:64:df:ad:01:5e:3b:fb:ba:7a:03:45:
b6:af:99:82:c2:3a:8c:ac:ea:2f:3a:ed:a8:3b:6d:
88:33:f3:ce:f9:17:fc:fb:f9:72:6f:31:29:ab:31:
37:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:05:39:C8:C3:93:C3:16:F4:C8:3A:18:D1:BA:50:E8:2F:06:F4:F5
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/HwU5yMOTwxb0yDoY0bpQ6C8G9PU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
96:ab:ca:07:7d:88:48:df:08:34:cd:95:da:6a:c1:6f:f3:75:
2c:18:d7:ea:38:0c:78:b1:0d:72:23:d7:2c:47:d9:3c:4e:47:
ee:f7:7b:19:d8:48:31:19:d6:8f:4b:ab:04:f2:40:b8:42:f8:
5c:9a:62:30:f4:a2:91:7b:0e:eb:db:5d:91:2c:94:95:88:1a:
f8:1f:04:b0:b8:e1:45:34:64:00:9d:88:9e:59:d5:0e:ae:1c:
81:e9:91:57:22:29:3d:9c:b6:dd:26:f4:55:55:88:b8:66:9a:
48:eb:7a:bf:1a:e1:69:7b:fb:41:f1:8a:3c:17:21:3d:53:5f:
5e:ed:c7:40:1d:2d:bc:13:38:7a:cf:10:d4:e5:40:5a:50:c8:
7a:db:de:25:28:26:fa:a5:a3:b7:07:d1:75:6c:e8:39:c5:74:
d4:77:b6:4f:a0:78:b8:16:9c:f8:7e:4c:5e:e5:85:11:e8:ca:
53:0f:08:02:a6:30:52:0c:79:a9:62:61:0e:ca:ae:1e:15:02:
53:52:dd:14:cc:de:07:df:c7:0b:c6:6f:c5:bf:05:02:b4:17:
3d:7e:b9:ee:05:05:06:d2:12:dd:5b:2f:13:99:91:2c:93:c8:
50:b0:7e:33:e2:62:a2:05:97:de:99:fa:37:db:02:e4:4a:b3:
f1:b7:4e:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:31 2024 by rpki-client on console-fra.rpki-client.org