Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/M9Ofji6KORVR8RVNyWlqyy26FrI.roa
File: M9Ofji6KORVR8RVNyWlqyy26FrI.roa (raw, json)
Hash identifier: uOUCbDfLPfURzowBMHnnded+f5XmKfHz6ZjtR2XP/Sw=
Subject key identifier: 33:D3:9F:8E:2E:8A:39:15:51:F1:15:4D:C9:69:6A:CB:2D:BA:16:B2
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018D1FB636BE29BE13ED07E18E4E8CD33CC3
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/M9Ofji6KORVR8RVNyWlqyy26FrI.roa
Signing time: Fri 19 Jan 2024 03:14:11 +0000
ROA not before: Fri 19 Jan 2024 03:14:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:1f:b6:36:be:29:be:13:ed:07:e1:8e:4e:8c:d3:3c:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 19 03:14:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=33d39f8e2e8a391551f1154dc9696acb2dba16b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:2e:12:bb:59:54:4d:af:b0:ea:9e:34:7d:5c:
d7:87:d7:be:4f:8a:9e:e9:30:a5:6d:79:46:5e:d9:
5d:50:8a:be:3e:49:a6:5a:ae:52:bc:ea:37:e1:b6:
99:e2:35:38:65:b2:df:b5:3a:4e:67:1f:dd:e4:e7:
5c:8b:13:b2:63:23:2f:b4:7f:fc:56:32:01:c7:3f:
29:da:29:5f:79:73:e1:a2:43:5d:5d:c5:59:c0:c3:
f9:7a:6e:c7:51:03:63:3b:91:bd:d9:3e:3e:46:4e:
44:44:bd:8b:af:b3:9c:61:74:5a:c7:63:18:22:ee:
af:77:0c:d7:09:6c:db:8b:b8:84:83:b1:c3:a6:8d:
99:60:c3:ea:a9:a9:42:07:c4:cb:50:62:a6:6b:ba:
6b:b0:37:e4:97:fb:b8:bc:f0:c7:bb:8e:6c:75:88:
c1:9e:b4:52:1a:66:6f:e9:30:d3:23:77:65:c7:f4:
0c:4c:db:fa:be:05:b6:90:37:c9:95:35:30:5a:1f:
2c:63:03:84:b3:a9:32:8e:7d:dc:60:e2:dc:e7:7c:
ac:53:55:7d:09:6b:fc:21:d3:c7:37:2a:53:64:89:
b6:44:9f:08:11:a8:82:cb:c7:ca:96:96:1f:df:3c:
a1:1b:86:5c:90:c5:70:c6:e8:b4:ef:d2:01:93:90:
86:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:D3:9F:8E:2E:8A:39:15:51:F1:15:4D:C9:69:6A:CB:2D:BA:16:B2
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/M9Ofji6KORVR8RVNyWlqyy26FrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
7c:b8:2e:c8:8e:e7:d5:25:5c:80:e1:7e:05:c3:a6:2d:ce:e2:
bd:8d:0b:a3:d3:d0:59:a0:35:d8:cb:82:c9:6a:8c:25:09:ea:
8b:2c:83:a0:8c:86:b7:b0:ff:1d:7d:79:ca:47:8a:8e:2f:7a:
13:6e:04:39:47:3e:dc:76:6f:a3:74:7a:e2:56:92:c6:08:58:
d2:83:c2:f5:ad:42:7e:81:f4:41:fd:eb:6c:62:05:a0:ea:b7:
76:d1:f6:ca:49:54:93:b4:35:0b:1f:1f:82:b7:ec:06:5e:c6:
2a:65:04:c9:27:13:16:ca:04:ab:1a:14:e5:55:88:fd:ac:89:
17:7f:91:14:f9:5b:82:09:43:54:34:a7:2c:25:9d:d3:32:b6:
13:a0:38:df:b4:7e:7f:f6:89:5e:4e:c6:93:8c:49:5e:be:a7:
8d:ed:bd:65:b0:e9:73:63:7c:29:01:b5:18:69:7c:cc:98:67:
25:2d:5d:dc:83:86:bf:e7:ea:d2:83:e5:0d:e4:34:97:43:a4:
8a:b6:ac:e4:9f:86:bb:3b:1b:81:fe:dd:fc:c8:9c:dc:c0:97:
9c:fa:6f:bf:85:35:4f:68:21:0b:66:f6:bb:dc:95:48:30:73:
23:5a:bc:62:f2:59:ee:23:bc:92:61:f5:73:e2:38:0d:c5:af:
18:e4:b1:7b
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY0ftja+Kb4T7Qfhjk6M0zzDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzYjNkYTNlY2I4YTdkNDMzZGUzODMzODY2N2IzNWU2OGRm
NzNmOGMwHhcNMjQwMTE5MDMxNDExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzM2QzOWY4ZTJlOGEzOTE1NTFmMTE1NGRjOTY5NmFjYjJkYmExNmIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6C4Su1lUTa+w6p40fVzXh9e+T4qe
6TClbXlGXtldUIq+PkmmWq5SvOo34baZ4jU4ZbLftTpOZx/d5OdcixOyYyMvtH/8
VjIBxz8p2ilfeXPhokNdXcVZwMP5em7HUQNjO5G92T4+Rk5ERL2Lr7OcYXRax2MY
Iu6vdwzXCWzbi7iEg7HDpo2ZYMPqqalCB8TLUGKma7prsDfkl/u4vPDHu45sdYjB
nrRSGmZv6TDTI3dlx/QMTNv6vgW2kDfJlTUwWh8sYwOEs6kyjn3cYOLc53ysU1V9
CWv8IdPHNypTZIm2RJ8IEaiCy8fKlpYf3zyhG4ZckMVwxui079IBk5CGWwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFDPTn44uijkVUfEVTclpasstuhayMB8GA1UdIwQY
MBaAFNOz2j7Lin1DPeODOGZ7NeaN9z+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODct
YzUzOTc5ZDY2Y2E1LzEvTTlPZmppNktPUlZSOFJWTnlXbHF5eTI2RnJJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODctYzUzOTc5ZDY2Y2E1
LzEvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAHy4LsiO59UlXIDhfgXD
pi3O4r2NC6PT0FmgNdjLgslqjCUJ6ossg6CMhrew/x19ecpHio4vehNuBDlHPtx2
b6N0euJWksYIWNKDwvWtQn6B9EH962xiBaDqt3bR9spJVJO0NQsfH4K37AZexipl
BMknExbKBKsaFOVViP2siRd/kRT5W4IJQ1Q0pywlndMythOgON+0fn/2iV5OxpOM
SV6+p43tvWWw6XNjfCkBtRhpfMyYZyUtXdyDhr/n6tKD5Q3kNJdDpIq2rOSfhrs7
G4H+3fzInNzAl5z6b7+FNU9oIQtm9rvclUgwcyNavGLyWe4jvJJh9XPiOA3Frxjk
sXs=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:50 2024 by rpki-client on console-ams.rpki-client.org