Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/PUtZ19CgwV3H5UixB3158nmdXco.roa
File: PUtZ19CgwV3H5UixB3158nmdXco.roa (raw, json)
Hash identifier: PLtxKzpj7l8/HEbsAzKjrf6A6rNxnXQOsniWp4ogpcQ=
Subject key identifier: 3D:4B:59:D7:D0:A0:C1:5D:C7:E5:48:B1:07:7D:79:F2:79:9D:5D:CA
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018EB8E6C0F1BD855193F171F3FF14CFB347
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/PUtZ19CgwV3H5UixB3158nmdXco.roa
Signing time: Sun 07 Apr 2024 14:11:54 +0000
ROA not before: Sun 07 Apr 2024 14:11:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:b8:e6:c0:f1:bd:85:51:93:f1:71:f3:ff:14:cf:b3:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 7 14:11:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3d4b59d7d0a0c15dc7e548b1077d79f2799d5dca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:61:d0:77:a3:9a:13:e3:19:12:86:92:4d:3b:
e1:ee:7e:30:76:f7:3a:7b:48:fe:b9:05:59:d9:fd:
20:92:d3:43:53:cb:75:65:07:db:f5:ed:01:7d:64:
4d:41:a9:6b:52:15:3c:68:75:38:fa:1c:e6:5b:1f:
b6:63:34:bc:21:9f:c8:3b:11:47:f1:fe:31:e0:e1:
8d:b6:8e:80:db:4b:50:5c:db:e7:13:d3:93:fd:18:
32:32:89:92:15:18:96:11:aa:44:e9:cd:9d:68:0e:
3e:9e:f6:ed:7d:3b:0e:3b:cf:4e:0f:cb:34:33:9f:
32:ef:07:03:1c:35:22:1d:ee:0d:6b:0a:6d:a1:98:
b4:ca:97:54:27:bb:56:78:16:8e:d6:f7:16:cd:cb:
93:37:59:16:99:4b:93:04:da:ce:ba:e1:9d:0d:b6:
9f:f8:2e:b1:71:6d:d6:1a:0b:da:e4:5e:15:6f:f1:
02:19:ce:70:3f:01:dc:71:03:a8:07:9d:71:5b:87:
7f:0c:3e:75:a3:ac:0b:d3:92:8f:2f:3f:36:2e:ab:
3c:dd:b6:1c:5e:56:3c:b7:0a:59:43:df:57:10:36:
b7:b2:14:c2:f2:54:c4:60:1e:f5:ac:a8:ac:38:76:
b7:fd:32:d8:3a:bb:a4:be:0a:f0:01:60:16:df:10:
3a:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:4B:59:D7:D0:A0:C1:5D:C7:E5:48:B1:07:7D:79:F2:79:9D:5D:CA
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/PUtZ19CgwV3H5UixB3158nmdXco.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
92:6f:05:e9:13:df:1a:09:40:82:2a:25:88:f8:b8:89:85:ce:
16:07:64:55:77:c4:7d:dd:4f:01:60:95:f2:39:58:7d:2e:91:
45:51:c4:28:40:7e:00:41:11:73:b7:f1:67:d1:6d:ed:fe:b2:
bd:b6:68:7f:9c:32:dc:27:35:35:44:7b:02:db:03:3e:79:78:
45:96:f8:aa:e5:5c:26:d0:e0:bf:01:fd:7c:12:30:e2:a1:8d:
a2:aa:98:ba:cf:43:0c:93:96:42:6f:15:eb:ce:f6:d4:8f:0e:
3c:ff:20:d7:05:30:97:6a:e4:98:e6:1f:8e:7e:98:76:26:f5:
07:b7:6a:20:76:e4:e1:4f:72:eb:83:42:5e:27:79:2d:b2:12:
71:17:d8:a5:31:3c:9d:a8:55:99:67:fa:e0:40:53:36:67:ab:
8f:d2:e0:88:96:65:3f:f7:a6:64:1f:03:7c:a1:9c:c5:c1:8f:
6e:16:71:cd:9a:b7:e9:d1:e6:c7:a2:8c:a0:9f:27:79:d9:05:
35:6f:f4:e5:bd:65:d0:e3:19:15:20:e0:c4:c0:55:06:c9:a2:
f9:99:e5:54:24:de:c8:3c:9f:9f:2f:c7:8a:6a:8c:3f:06:08:
33:ec:55:70:5b:22:91:29:3f:43:88:a4:e4:c9:59:fa:35:19:
d4:e8:b9:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:37:32 2025 by rpki-client