Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/IZkJe42zgmX2QglvsrHCwEXRUBA.roa
File: IZkJe42zgmX2QglvsrHCwEXRUBA.roa (raw, json)
Hash identifier: dW3pBAKuHdRdHfIU3m1Y7jt5skDO/xdiDx1a09fnrvA=
Subject key identifier: 21:99:09:7B:8D:B3:82:65:F6:42:09:6F:B2:B1:C2:C0:45:D1:50:10
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018D0E1C6E396624AB79C6E0914EF5363B67
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/IZkJe42zgmX2QglvsrHCwEXRUBA.roa
Signing time: Mon 15 Jan 2024 17:12:40 +0000
ROA not before: Mon 15 Jan 2024 17:12:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:0e:1c:6e:39:66:24:ab:79:c6:e0:91:4e:f5:36:3b:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 15 17:12:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2199097b8db38265f642096fb2b1c2c045d15010
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:5c:99:bd:d9:ae:88:d5:9a:31:64:f8:72:39:
2c:b3:ac:ec:b8:0b:47:a5:0e:0a:2f:a9:3e:6c:45:
5f:b5:2d:09:33:98:b8:1e:ea:1f:30:89:9d:1a:f9:
64:79:7c:64:bb:c9:c8:3c:7f:77:bb:e5:ed:c8:cf:
2c:a9:6c:90:95:ad:b1:44:7d:bd:8e:27:b1:c8:7a:
1e:4e:35:c6:75:58:09:d7:d9:6c:3e:84:b8:37:17:
e6:91:16:94:ea:48:24:c8:13:9b:3e:18:21:7f:07:
df:2f:2a:12:2d:31:86:ed:90:b5:91:3a:ca:87:9a:
57:fb:4f:ca:0a:12:44:2f:60:9c:81:48:4b:82:47:
09:41:72:e2:4b:cf:76:5d:3e:0a:35:44:11:8b:a9:
19:39:46:1a:36:29:82:82:f1:eb:ac:f3:a5:6c:8a:
dc:02:9e:b5:8c:5f:d9:43:dd:95:5d:11:7d:03:43:
3f:46:57:f4:99:c8:ac:e3:b4:1f:a6:fa:57:47:50:
aa:2f:24:22:ec:48:73:50:91:2d:f4:00:f8:b3:22:
7b:1f:20:9b:98:52:c9:b3:a8:ad:53:47:02:40:65:
10:06:5d:ca:de:f5:e9:a3:72:b1:ed:ad:18:70:3d:
ea:37:ce:9e:4e:bf:65:28:98:a3:e3:bf:4d:aa:9c:
7e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:99:09:7B:8D:B3:82:65:F6:42:09:6F:B2:B1:C2:C0:45:D1:50:10
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/IZkJe42zgmX2QglvsrHCwEXRUBA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
63:98:ea:e6:1a:91:91:ec:44:52:1f:12:38:15:ae:45:07:ee:
d4:fb:50:29:14:59:a3:46:49:ab:36:0b:ae:bc:6f:77:15:f2:
52:01:d5:6a:5f:6a:98:12:c2:63:f5:51:cd:f0:68:33:7f:72:
93:f7:15:c3:a0:fd:c8:ea:8f:9c:ce:19:ab:d9:a9:d5:1b:f1:
03:88:90:05:55:c8:1c:74:ad:4c:58:0d:2c:ba:b7:63:bd:01:
37:fa:ca:67:3b:64:ee:e0:9e:4b:66:b2:3e:ed:dd:df:aa:c5:
94:59:13:f9:21:4e:f3:24:cb:8e:59:2e:2b:2a:fd:d2:4d:0a:
89:a8:73:4a:51:13:ba:f1:56:3f:64:ca:1a:94:f4:d5:cd:a1:
3f:2c:7e:c2:25:45:e0:a3:80:1c:b0:6b:1b:6f:14:46:44:07:
47:e4:af:bf:a1:67:06:4a:61:60:e9:3b:a2:d6:ca:f4:7e:26:
2b:3b:68:a8:d1:e5:51:05:47:23:1d:40:1b:04:58:cb:ea:8e:
7d:02:5d:6d:a2:26:db:ed:62:90:12:c3:37:21:94:ca:db:c1:
6b:36:ba:2d:1b:85:28:71:b5:47:b3:14:0a:79:ae:25:31:1c:
50:69:bf:a9:fd:b2:15:50:81:1f:99:fe:1d:12:a5:e1:b5:cd:
f2:ca:34:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:31 2024 by rpki-client on console-fra.rpki-client.org