Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/LufaDQEJrCo9at_34-mHDkJ_Ltg.roa
File: LufaDQEJrCo9at_34-mHDkJ_Ltg.roa (raw, json)
Hash identifier: tXVIzCXFeeFHNGU4Hq3eIfEoOkdHngkwOp8NkHmd6dM=
Subject key identifier: 2E:E7:DA:0D:01:09:AC:2A:3D:6A:DF:F7:E3:E9:87:0E:42:7F:2E:D8
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018EB6F948901E0B6090A00176EDF7E8442B
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/LufaDQEJrCo9at_34-mHDkJ_Ltg.roa
Signing time: Sun 07 Apr 2024 05:12:54 +0000
ROA not before: Sun 07 Apr 2024 05:12:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:b6:f9:48:90:1e:0b:60:90:a0:01:76:ed:f7:e8:44:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 7 05:12:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2ee7da0d0109ac2a3d6adff7e3e9870e427f2ed8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:22:5a:6e:14:64:f7:ca:24:07:ac:93:fc:e6:
69:16:80:68:7c:26:84:45:55:ce:9c:16:ec:fe:58:
f2:96:03:37:f8:80:b2:2c:f4:19:4f:1f:8f:0c:13:
71:18:28:56:d0:21:cc:62:76:45:02:cd:1c:88:fd:
ac:6a:aa:4f:bb:dc:f4:e1:97:e2:8c:25:c6:a4:f0:
3b:66:2a:c3:6a:51:fc:b9:8f:39:3a:67:de:50:e8:
89:23:f5:41:12:f5:a6:8a:87:cc:dc:a3:d9:62:28:
12:df:df:e5:9c:f7:87:63:9f:ec:73:2a:36:b5:bb:
1f:f3:d7:8b:49:c2:ac:b3:32:55:1d:2b:7a:d8:f9:
97:a0:0d:56:a6:df:0f:d5:b4:a5:0f:50:f8:a0:f6:
df:00:20:79:ef:26:9a:37:ee:d0:1b:32:1e:a8:7c:
20:2a:d1:2b:d2:d1:fc:25:82:5f:05:52:d1:8e:18:
4d:b5:e5:61:3c:d6:d0:a7:d0:3e:23:ac:62:99:19:
aa:93:59:8f:60:d5:07:23:7e:3b:86:51:ce:fa:c6:
13:42:6f:4b:be:fd:88:bf:b6:23:37:54:83:07:86:
c1:f2:3d:41:a5:b2:20:4a:03:d3:67:f8:a6:2c:6d:
c6:86:51:22:c2:96:9c:6c:eb:02:90:56:95:6b:69:
50:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:E7:DA:0D:01:09:AC:2A:3D:6A:DF:F7:E3:E9:87:0E:42:7F:2E:D8
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/LufaDQEJrCo9at_34-mHDkJ_Ltg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
51:46:c7:4f:1f:46:27:02:58:60:6b:96:ef:58:db:d1:ae:6e:
80:08:5c:3b:4f:fc:4f:e2:61:a5:9b:b5:0a:b1:6a:3c:20:69:
95:b7:bc:3b:44:d2:2e:7f:ec:f2:ae:c9:cc:5b:b7:67:19:a4:
95:41:3c:09:07:3c:d0:c4:06:2c:c3:05:2a:31:60:0e:9c:5a:
44:fe:a6:e2:8e:93:4d:a0:6c:64:a0:40:b1:f0:7d:64:6c:69:
6c:60:2c:8e:30:10:e9:43:5f:91:8d:cf:e3:2c:a2:33:c9:14:
9d:38:d5:0c:0d:67:4e:f7:33:9b:b3:1e:91:56:34:d7:50:f2:
02:6d:8e:a2:e7:06:70:49:03:46:1b:52:0c:bf:25:87:16:87:
2e:2d:a0:f4:ec:f9:bb:d7:3d:f7:ec:c7:99:ed:e1:a8:66:5f:
70:b0:a2:c2:94:4e:ca:48:50:91:7c:4e:7d:ba:27:59:b1:0d:
73:87:d5:b8:36:77:15:29:95:2a:6c:2f:4e:8e:71:41:67:a5:
05:db:93:7a:04:9d:f8:59:18:2f:c4:14:31:da:3f:ff:26:2f:
a7:32:3c:d1:8e:5b:dd:bf:1d:2f:7d:3f:0a:09:90:21:61:c3:
04:77:d1:f3:f1:13:25:c6:86:95:0b:92:5b:f8:04:e6:84:e5:
9e:9e:7d:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:50 2024 by rpki-client on console-ams.rpki-client.org