Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/K05x254wYllXRfNDo1TQmzE_XW8.roa
File: K05x254wYllXRfNDo1TQmzE_XW8.roa (raw, json)
Hash identifier: HI4/LnyeaMLvWwCv7/mbEdNfWhFbmarDiwcS7QqFWVU=
Subject key identifier: 2B:4E:71:DB:9E:30:62:59:57:45:F3:43:A3:54:D0:9B:31:3F:5D:6F
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018C88DDFAB951CCD5DA6718E907862818B2
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/K05x254wYllXRfNDo1TQmzE_XW8.roa
Signing time: Wed 20 Dec 2023 20:14:58 +0000
ROA not before: Wed 20 Dec 2023 20:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:88:dd:fa:b9:51:cc:d5:da:67:18:e9:07:86:28:18:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 20 20:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b4e71db9e3062595745f343a354d09b313f5d6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:e3:24:6b:c9:33:ac:d3:6f:b4:43:50:6b:0e:
6b:80:28:8a:5a:be:f0:37:93:9f:76:af:42:8b:ee:
74:5a:36:21:c0:d2:ac:38:56:b4:17:ab:5e:b9:02:
f0:cf:0e:9d:ae:da:68:33:8f:d3:e3:1c:bc:a0:e4:
b2:14:92:dc:d1:93:53:2f:01:ec:27:0b:87:e0:c8:
37:e4:38:e6:3a:90:cd:1a:4d:b7:df:1d:41:44:fe:
41:1e:2f:a0:4a:c5:ba:5b:0a:d4:6a:22:3b:5a:92:
c5:63:6d:ae:7c:4b:58:29:bc:a7:31:d8:ba:a8:3e:
62:eb:5e:bd:2d:4f:2d:e5:1f:0d:c9:fb:50:e9:5c:
6e:a7:39:d7:86:e1:90:5e:03:46:6b:cf:cd:80:96:
54:45:83:e0:46:19:4f:52:0c:87:7d:1f:73:61:30:
0d:8b:ad:d7:12:0c:f6:8c:a6:20:6b:5d:11:59:6c:
9d:94:8f:71:ea:58:1e:1a:38:e4:6f:25:49:24:a8:
1c:68:c0:19:a2:f4:b3:5d:ee:39:14:df:f1:65:8b:
cd:e4:71:6c:58:37:92:af:3b:8e:f4:6e:97:e1:ea:
0b:f3:c5:cb:33:9e:e8:de:e0:29:eb:6e:e3:f3:fb:
de:95:9b:28:25:80:07:98:da:b9:1d:8f:31:32:67:
d1:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:4E:71:DB:9E:30:62:59:57:45:F3:43:A3:54:D0:9B:31:3F:5D:6F
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/K05x254wYllXRfNDo1TQmzE_XW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
1f:a4:a1:08:c0:80:f1:13:a5:d9:3c:43:f4:07:d0:33:eb:56:
8a:fe:80:8f:59:b2:78:5b:78:76:4f:c3:d8:b7:fa:b0:21:e7:
3a:a9:46:6d:8d:5d:74:4b:b9:d1:26:a6:d2:84:a8:a1:90:8d:
7e:70:2b:a4:e5:47:1e:47:27:87:61:f0:44:a2:16:96:b7:b4:
33:a0:3a:57:ee:5d:5f:b6:7d:ff:e4:26:28:39:6b:7e:31:b0:
e3:69:d6:54:ec:a7:63:a7:21:d5:3a:6f:e3:c7:45:ec:d0:23:
a9:59:db:2b:d7:8f:19:e0:f3:b3:ea:3a:10:5d:c0:95:15:8c:
ba:56:52:b5:1e:4b:03:c0:22:23:32:66:f8:7b:77:50:d0:73:
ca:46:6c:6e:b3:74:18:52:f5:32:bc:3e:d1:2c:69:dc:8f:e7:
f0:c7:99:cb:1d:eb:7e:e5:ff:85:eb:33:5d:3d:ec:56:97:40:
af:22:ae:ed:30:4f:f9:ae:cb:44:d7:8a:82:42:0a:62:49:0a:
94:8b:2e:ef:29:08:b3:c7:c1:d0:f5:c8:0d:ad:0c:48:c9:7d:
dc:df:9a:5b:04:2b:56:c7:6e:f6:10:bb:06:c9:af:55:3f:b6:
86:8d:ed:9e:45:7c:ca:d4:da:ce:6a:08:0a:39:11:f4:96:d5:
b2:be:c6:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:50 2024 by rpki-client on console-ams.rpki-client.org