Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Mg5-Dazmof_hfzWI38zjivyANDw.roa
File: Mg5-Dazmof_hfzWI38zjivyANDw.roa (raw, json)
Hash identifier: mPoA6UOAkLKl8stI5ttJIZ2cqMAvXeBu1GIbAAulEik=
Subject key identifier: 32:0E:7E:0D:AC:E6:A1:FF:E1:7F:35:88:DF:CC:E3:8A:FC:80:34:3C
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018DA379D7CA65FC73CF04084D28E89B7AA6
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Mg5-Dazmof_hfzWI38zjivyANDw.roa
Signing time: Tue 13 Feb 2024 17:18:07 +0000
ROA not before: Tue 13 Feb 2024 17:18:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:4013:c01e/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:a3:79:d7:ca:65:fc:73:cf:04:08:4d:28:e8:9b:7a:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Feb 13 17:18:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=320e7e0dace6a1ffe17f3588dfcce38afc80343c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:7a:69:87:e9:b1:5c:af:03:77:58:5e:1a:62:
a1:8f:8c:05:e8:ba:9f:12:0e:8f:df:74:08:9a:e5:
98:08:10:a7:f2:7a:51:63:ad:95:4a:81:c6:ab:4e:
21:39:af:d7:76:e7:83:26:81:e0:df:b3:74:e7:5b:
ba:b3:c1:a9:b7:1b:a4:0a:8c:65:b3:fa:b8:66:be:
6c:bc:38:ee:b6:83:94:85:30:bb:d3:3e:87:5c:b7:
00:86:bf:33:c6:fd:f5:2f:ff:ab:b2:70:be:91:24:
80:78:53:61:1d:56:bf:9c:b0:04:86:50:58:bb:9a:
3a:16:81:7d:34:40:c8:2a:ce:f4:29:af:3a:24:b0:
c3:52:cc:ee:f9:bf:d9:40:2f:50:61:ca:dd:2d:c6:
5c:01:8d:5b:df:90:87:7e:30:94:05:b0:73:2c:13:
a0:6f:df:04:fa:1f:bd:02:27:5d:a7:5e:ac:f2:1a:
b4:f8:ff:8c:9e:e7:45:0c:90:59:50:3e:4c:e4:a7:
bf:4d:52:16:ae:ed:31:31:42:83:d9:54:e4:a7:00:
21:89:05:6f:32:01:65:97:cb:4a:06:96:27:6f:57:
fe:b7:64:58:d5:24:e8:9a:5f:75:f1:3d:e6:0a:e0:
ef:4c:ab:6d:af:02:5a:13:dd:56:3a:13:2a:0c:39:
f4:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:0E:7E:0D:AC:E6:A1:FF:E1:7F:35:88:DF:CC:E3:8A:FC:80:34:3C
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Mg5-Dazmof_hfzWI38zjivyANDw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
12:2f:15:f1:4b:dd:2c:61:3c:b9:76:ec:aa:22:55:07:c1:a3:
68:97:ba:f2:e5:21:89:43:9d:b7:e8:50:82:4b:42:45:66:50:
a6:e3:99:0e:65:ee:4d:89:7f:68:ba:b2:c0:50:a0:12:9b:75:
d6:c1:e1:b6:67:1b:25:5c:44:00:a3:0f:59:21:73:a5:c3:df:
9e:38:46:9c:79:9d:e2:88:2b:10:9c:82:64:60:5e:fe:e2:a2:
2b:2f:7d:fb:4a:1b:2e:1d:6e:30:84:b8:a3:d3:39:da:38:6b:
42:87:21:e7:da:21:49:8d:0a:ab:01:22:47:87:8f:df:61:1e:
87:c8:e9:7c:2a:18:3c:7e:54:b9:85:a4:ad:fa:dc:75:20:55:
61:01:52:f3:d1:f4:f9:4e:ba:74:ce:6d:83:77:62:22:c9:83:
10:24:ba:6a:21:04:1c:5e:d5:4d:55:cb:89:9d:1a:ef:d2:31:
6b:c4:c6:ba:41:1d:83:19:b7:b5:15:30:bb:c1:84:30:38:09:
14:87:ee:6d:e3:d8:56:f6:6e:59:89:e9:22:ff:9d:27:c0:ae:
0b:26:f1:70:e2:26:16:90:39:99:6c:01:46:83:eb:6c:a9:de:
ea:ca:a1:69:6a:de:5c:75:d0:13:af:74:34:b4:61:96:1a:ea:
f9:37:87:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:50 2024 by rpki-client on console-ams.rpki-client.org