Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/IwN29HAUvbPynj0prSV7pdXkEDA.roa
File: IwN29HAUvbPynj0prSV7pdXkEDA.roa (raw, json)
Hash identifier: tR2WCb1tYHo6TZ/CxfOUAjLZGKmZb/G2CD7SkQ9PAQg=
Subject key identifier: 23:03:76:F4:70:14:BD:B3:F2:9E:3D:29:AD:25:7B:A5:D5:E4:10:30
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018ED6BB5C44FD1CA4B459C22E0D7E15904F
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/IwN29HAUvbPynj0prSV7pdXkEDA.roa
Signing time: Sat 13 Apr 2024 09:13:06 +0000
ROA not before: Sat 13 Apr 2024 09:13:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:d6:bb:5c:44:fd:1c:a4:b4:59:c2:2e:0d:7e:15:90:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 13 09:13:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=230376f47014bdb3f29e3d29ad257ba5d5e41030
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:07:62:b8:c8:40:2e:82:e6:e1:e2:f6:c6:1d:
2d:e0:58:ba:6f:60:ec:81:7a:d6:33:19:7f:cd:fd:
ee:3a:15:ed:e6:4f:d6:4c:fe:5f:41:17:30:58:b4:
8e:ce:31:b7:19:61:76:85:d1:b4:1b:89:a5:4b:7a:
31:ad:81:68:8b:54:1f:49:df:9e:55:53:29:78:8c:
93:2e:9c:e6:eb:93:b2:14:78:78:28:4c:6e:aa:e3:
ab:43:f3:e1:c0:6e:32:73:a6:9b:c2:5b:e2:2f:f9:
bf:ff:96:a9:36:c3:e1:8d:b7:9a:73:13:34:99:a6:
d2:84:81:93:8a:21:46:e6:95:26:82:ac:8a:2b:6e:
12:f9:61:1b:b3:65:bb:3a:9c:d9:8c:04:8a:a1:57:
67:1a:66:ba:08:4c:49:bf:6d:4c:a0:24:e1:e3:1a:
df:d3:57:82:06:88:47:2d:06:10:b4:b5:bf:9b:31:
bf:8f:b4:c8:19:64:13:f5:3c:9a:80:c4:b4:8a:d5:
4e:14:ab:65:3a:df:ff:dd:f2:b7:e9:6b:42:43:d1:
9c:bb:3f:50:ce:8f:35:17:9c:d3:09:05:d9:56:24:
b9:07:1e:41:a6:7c:f0:5a:ae:2d:46:4a:8c:eb:f2:
b1:bd:3d:27:1b:65:28:99:03:f5:9c:87:df:f7:32:
cb:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:03:76:F4:70:14:BD:B3:F2:9E:3D:29:AD:25:7B:A5:D5:E4:10:30
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/IwN29HAUvbPynj0prSV7pdXkEDA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
6c:1d:c4:ea:e0:d5:4d:69:23:a1:81:cd:8c:e1:ff:22:f1:9a:
76:6f:c7:57:7d:98:36:c0:64:08:fe:cc:1b:39:92:38:e3:fd:
ca:22:ab:6b:9f:97:f0:98:c0:01:ad:50:66:d9:7e:d4:ae:97:
fe:61:e2:6b:6a:1e:9e:24:6d:b9:0d:db:9b:e9:78:c9:12:ca:
5d:14:17:2a:1f:69:c2:91:84:cd:1e:db:7f:80:f0:3a:80:71:
54:5e:ff:1b:a6:43:df:83:24:8e:5c:b1:99:5f:00:46:d6:59:
e2:60:97:e4:22:00:88:16:33:0f:36:6d:17:b3:b3:4d:14:60:
8d:c8:37:70:9d:08:48:c5:f7:7c:c0:f6:fb:e1:32:68:27:26:
a2:16:1b:74:80:58:4d:09:06:6f:19:36:e2:84:d8:be:53:d0:
06:cf:08:41:5a:8e:80:3f:12:a3:23:ee:09:23:f8:03:d6:4a:
35:e0:13:54:01:1a:19:eb:28:64:3d:bf:12:ec:dc:8f:e3:0c:
34:ec:84:43:5b:97:4e:70:bb:74:1a:95:4d:9d:e4:f2:88:d5:
b4:53:09:ca:48:bc:54:95:94:0c:14:a3:e9:39:d5:d3:c1:84:
47:69:24:f0:cc:ab:6e:69:07:af:5a:6b:4c:c7:5b:2b:1b:e1:
10:54:47:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:50 2024 by rpki-client on console-ams.rpki-client.org