Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/N9hEfRR8Zu-ly-h1kh2DK7rYlfk.roa
File: N9hEfRR8Zu-ly-h1kh2DK7rYlfk.roa (raw, json)
Hash identifier: spMEQ4cE0ZEMwOu9PkZnRW7L/KuNZlodvubU6yWtBsg=
Subject key identifier: 37:D8:44:7D:14:7C:66:EF:A5:CB:E8:75:92:1D:83:2B:BA:D8:95:F9
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018D160AF803D166DA1F2CEFD1127C274A3E
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/N9hEfRR8Zu-ly-h1kh2DK7rYlfk.roa
Signing time: Wed 17 Jan 2024 06:10:34 +0000
ROA not before: Wed 17 Jan 2024 06:10:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:16:0a:f8:03:d1:66:da:1f:2c:ef:d1:12:7c:27:4a:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 17 06:10:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=37d8447d147c66efa5cbe875921d832bbad895f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:53:80:56:76:23:3a:14:2d:a1:b9:58:51:b7:
e1:df:04:79:87:cf:71:75:3c:90:49:e2:ac:f8:85:
a9:9b:05:bb:47:a6:29:cf:03:44:d8:e9:d5:0d:1b:
0f:87:a3:aa:ca:b2:cb:13:14:a6:00:90:bc:98:1d:
39:66:75:75:9c:8f:c5:89:26:db:66:d6:e6:c5:06:
d7:1f:e7:04:ba:74:8a:bc:f8:92:67:a8:9a:e5:ef:
6c:7e:44:79:2e:b0:55:36:de:42:49:58:1e:09:5f:
35:7f:9f:42:b3:d0:af:2d:4b:0e:d4:12:78:ab:a9:
f3:cd:86:c2:eb:df:c9:9c:1e:9f:fc:32:32:8d:53:
24:75:f8:5a:ee:19:5d:86:bb:54:99:36:5a:4b:4c:
27:d1:d6:f0:22:d7:15:c9:ce:fd:89:5a:6a:d5:0c:
13:a5:d5:a6:a7:aa:f0:02:14:0c:2e:e4:a6:be:e6:
5c:2f:43:66:de:c2:97:7c:d9:a0:92:aa:8c:ec:21:
a4:12:5f:7a:c7:59:0f:8b:b1:43:32:c4:fd:46:c0:
b8:5f:ce:fa:eb:b1:57:06:7a:62:3b:88:bb:ae:63:
5e:5c:c1:77:8b:e2:d7:bb:dd:f4:54:c1:de:0e:90:
ae:78:59:90:ee:fd:8b:b4:1e:cd:a7:2b:f3:ac:1d:
96:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:D8:44:7D:14:7C:66:EF:A5:CB:E8:75:92:1D:83:2B:BA:D8:95:F9
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/N9hEfRR8Zu-ly-h1kh2DK7rYlfk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
a4:d6:14:c1:80:68:ba:d3:2b:1a:d5:2e:8d:b3:be:7c:a7:86:
9b:c2:e7:51:88:f6:a0:0d:7a:11:0c:2d:a1:51:c8:03:a2:72:
be:92:6b:fd:a1:19:4f:fa:4c:db:95:94:0e:d2:a2:28:e4:5d:
98:0f:89:ad:0c:c7:ba:35:a6:7f:90:af:87:c7:62:ae:20:17:
94:f8:8b:a7:05:0d:a6:13:f9:d2:d5:7c:11:1d:88:d9:d6:38:
4a:55:0c:75:c3:3d:a3:e8:d4:8f:52:86:64:a2:0f:ef:11:8c:
77:b0:4c:6a:14:2a:3d:f4:af:8b:01:70:6f:34:06:bd:97:42:
11:45:85:df:eb:45:98:32:23:99:f3:90:dc:10:93:51:9a:f1:
30:98:66:49:a8:56:98:ee:49:c3:ba:2c:cc:5b:d5:73:43:9f:
ef:78:47:43:1a:8c:e7:80:f2:ad:d7:1c:cf:e7:e8:36:55:f9:
3e:23:ec:4d:5d:37:81:97:ef:3a:1d:98:a0:0c:f5:ef:f6:6e:
e8:bb:86:a5:a1:52:73:4a:0e:1b:08:39:61:25:75:c4:42:b3:
21:0c:1a:0a:5b:4e:23:29:d8:82:cd:fe:05:5e:12:6b:fd:75:
5f:10:3e:e9:62:30:9d:ec:44:9b:92:a8:5c:01:fd:d7:27:98:
81:1e:93:7e
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY0WCvgD0WbaHyzv0RJ8J0o+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzYjNkYTNlY2I4YTdkNDMzZGUzODMzODY2N2IzNWU2OGRm
NzNmOGMwHhcNMjQwMTE3MDYxMDM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzN2Q4NDQ3ZDE0N2M2NmVmYTVjYmU4NzU5MjFkODMyYmJhZDg5NWY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+1OAVnYjOhQtoblYUbfh3wR5h89x
dTyQSeKs+IWpmwW7R6YpzwNE2OnVDRsPh6OqyrLLExSmAJC8mB05ZnV1nI/FiSbb
ZtbmxQbXH+cEunSKvPiSZ6ia5e9sfkR5LrBVNt5CSVgeCV81f59Cs9CvLUsO1BJ4
q6nzzYbC69/JnB6f/DIyjVMkdfha7hldhrtUmTZaS0wn0dbwItcVyc79iVpq1QwT
pdWmp6rwAhQMLuSmvuZcL0Nm3sKXfNmgkqqM7CGkEl96x1kPi7FDMsT9RsC4X876
67FXBnpiO4i7rmNeXMF3i+LXu930VMHeDpCueFmQ7v2LtB7NpyvzrB2W5QIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFDfYRH0UfGbvpcvodZIdgyu62JX5MB8GA1UdIwQY
MBaAFNOz2j7Lin1DPeODOGZ7NeaN9z+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODct
YzUzOTc5ZDY2Y2E1LzEvTjloRWZSUjhadS1seS1oMWtoMkRLN3JZbGZrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODctYzUzOTc5ZDY2Y2E1
LzEvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAKTWFMGAaLrTKxrVLo2z
vnynhpvC51GI9qANehEMLaFRyAOicr6Sa/2hGU/6TNuVlA7SoijkXZgPia0Mx7o1
pn+Qr4fHYq4gF5T4i6cFDaYT+dLVfBEdiNnWOEpVDHXDPaPo1I9ShmSiD+8RjHew
TGoUKj30r4sBcG80Br2XQhFFhd/rRZgyI5nzkNwQk1Ga8TCYZkmoVpjuScO6LMxb
1XNDn+94R0MajOeA8q3XHM/n6DZV+T4j7E1dN4GX7zodmKAM9e/2bui7hqWhUnNK
DhsIOWEldcRCsyEMGgpbTiMp2ILN/gVeEmv9dV8QPuliMJ3sRJuSqFwB/dcnmIEe
k34=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:50 2024 by rpki-client on console-ams.rpki-client.org