Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/J7F7gd-iepMq-SaQ9qo_tm1PHLk.roa
File: J7F7gd-iepMq-SaQ9qo_tm1PHLk.roa (raw, json)
Hash identifier: sI8bcpGbOPxcnWuIJJi0lNleTA6XrT+GA5HjLq2nEyw=
Subject key identifier: 27:B1:7B:81:DF:A2:7A:93:2A:F9:26:90:F6:AA:3F:B6:6D:4F:1C:B9
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018EAE6405FFC4F06D57EC2091691CAEAE0C
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/J7F7gd-iepMq-SaQ9qo_tm1PHLk.roa
Signing time: Fri 05 Apr 2024 13:12:54 +0000
ROA not before: Fri 05 Apr 2024 13:12:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:ae:64:05:ff:c4:f0:6d:57:ec:20:91:69:1c:ae:ae:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 5 13:12:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=27b17b81dfa27a932af92690f6aa3fb66d4f1cb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:49:6f:28:94:45:f8:e2:39:75:8b:28:8b:32:
16:21:ab:fd:8c:18:94:94:98:7b:0f:38:12:23:fb:
a5:10:e9:49:a9:6c:3f:19:40:f2:1b:ba:d4:89:4d:
17:dd:18:72:42:29:15:af:d9:4e:7b:e9:47:a0:8a:
41:24:38:24:ba:93:92:1f:8a:36:ff:ec:1e:db:03:
16:56:cd:74:f5:21:69:57:ca:a8:d3:0a:24:f2:12:
03:8c:0f:b9:d6:7c:3a:9f:ad:6e:08:89:56:c7:87:
00:8a:b7:f2:33:fd:34:d4:4a:d6:e9:8d:2d:66:fa:
5c:31:7a:ec:85:e3:56:ac:c7:9d:57:9e:b0:e1:50:
91:8f:01:77:5c:dd:85:f1:f2:53:4e:17:d1:9b:e6:
df:59:eb:fd:20:ee:e3:9a:50:eb:60:1f:30:41:f4:
27:ee:ea:76:7e:cd:36:07:f7:b8:c4:fd:f0:96:ec:
06:8f:27:25:ca:98:cf:63:f1:2a:e7:36:6e:d6:2e:
9c:f3:e1:ff:5a:38:50:b6:b8:49:a2:cd:0d:56:df:
c6:28:5f:2e:3a:42:7e:58:91:51:95:d6:60:be:83:
11:a3:7d:8e:2f:92:73:81:f8:64:1c:04:11:e3:5d:
bb:70:ee:c2:b9:76:e5:6f:c4:64:5b:c7:30:7e:98:
5e:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:B1:7B:81:DF:A2:7A:93:2A:F9:26:90:F6:AA:3F:B6:6D:4F:1C:B9
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/J7F7gd-iepMq-SaQ9qo_tm1PHLk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
84:3c:cd:ca:12:44:b9:28:57:bb:3b:af:d9:52:9f:a1:3f:8e:
68:ad:72:6a:61:23:3c:c9:cf:f5:f5:e1:41:92:77:a7:4d:a3:
df:dc:77:62:d1:3e:f3:e7:ca:5d:d6:45:22:4b:b5:4c:2e:49:
48:98:9c:dd:f2:eb:d4:92:e8:eb:7c:20:a0:db:fc:1a:27:a5:
32:b2:37:ca:d5:f4:bf:b6:93:0c:f6:57:02:c6:e1:ad:d4:01:
9e:b8:69:77:23:38:ae:02:f9:f6:da:7f:9a:d9:09:3d:cb:c5:
c1:9f:b3:dd:8a:02:2c:dc:5e:4a:79:4f:66:ac:5a:29:78:b8:
f6:26:a2:85:23:77:97:88:ba:13:4d:40:bb:5d:46:19:76:96:
e6:9e:e1:e6:b7:a3:dd:b2:68:88:03:41:75:de:f3:11:ed:6f:
52:67:45:7e:0a:14:a0:53:0d:ff:07:46:d6:7d:6c:6e:41:65:
8e:34:fd:db:41:9f:9e:bc:b2:27:a0:12:f4:44:5b:d1:2d:07:
b7:d9:4a:80:f6:b7:ac:95:7c:fd:af:26:38:66:61:f8:92:2b:
c1:11:54:8a:4f:03:ce:66:b6:0f:96:01:71:b5:ae:47:7d:8a:
50:67:6c:21:2c:27:fe:15:d0:22:dd:5f:2e:bf:81:98:ac:75:
e2:9a:08:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:31 2024 by rpki-client on console-fra.rpki-client.org