Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Pepv3W19ZvO0G32xN-G5OBpIPHY.roa
File: Pepv3W19ZvO0G32xN-G5OBpIPHY.roa (raw, json)
Hash identifier: rzjGa778TzdrvbH5utoavrmmKAl3fcYpAHdHVt1KoyI=
Subject key identifier: 3D:EA:6F:DD:6D:7D:66:F3:B4:1B:7D:B1:37:E1:B9:38:1A:48:3C:76
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018EDCBD7360D8E66DD64200B252A774F0FB
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Pepv3W19ZvO0G32xN-G5OBpIPHY.roa
Signing time: Sun 14 Apr 2024 13:13:07 +0000
ROA not before: Sun 14 Apr 2024 13:13:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:dc:bd:73:60:d8:e6:6d:d6:42:00:b2:52:a7:74:f0:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 14 13:13:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3dea6fdd6d7d66f3b41b7db137e1b9381a483c76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:af:45:70:39:83:18:5c:a0:4f:73:cc:98:35:
d0:a2:b6:b7:3e:3d:81:15:9c:6a:b0:60:bf:25:2c:
e5:2d:6b:6c:97:7a:e7:2e:84:5d:91:80:80:e2:a5:
ef:fd:ad:d6:51:71:14:95:8c:79:49:2d:41:56:a9:
a9:9d:7c:e5:c4:b7:f0:c8:3b:c0:40:50:83:6b:9b:
8d:a5:65:1a:da:df:0d:48:f6:bd:df:3c:ba:70:39:
44:33:bf:68:c4:fd:b1:65:be:e2:83:ec:1f:0d:9b:
e2:8e:4e:6c:93:8d:f7:af:c4:a2:63:43:bd:d2:8f:
8b:5c:82:20:53:8a:a6:01:9f:af:33:1c:4f:90:18:
53:82:ba:26:8a:6b:aa:83:c9:6a:9a:3b:cc:51:4d:
2a:cc:0e:e0:51:e9:67:d1:e6:d4:f2:f0:b0:62:22:
78:69:e7:77:b3:90:33:70:26:33:be:7d:76:58:f0:
71:60:94:eb:40:1b:ea:f8:5f:5a:20:3b:fc:90:59:
0e:dc:eb:aa:d7:1a:d1:6a:16:e4:96:fa:b7:b8:07:
4a:d7:52:97:ae:34:46:49:9a:ac:b6:3c:c9:1f:1c:
f5:0a:6a:0a:3e:b9:7d:0f:a9:e7:07:80:d2:1e:d8:
20:b2:9f:45:65:92:28:ab:e1:48:d9:43:1a:22:9a:
17:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:EA:6F:DD:6D:7D:66:F3:B4:1B:7D:B1:37:E1:B9:38:1A:48:3C:76
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Pepv3W19ZvO0G32xN-G5OBpIPHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
2f:a8:cb:91:9e:54:e2:98:c1:9a:fc:1a:d6:f2:85:a6:dd:71:
7b:32:4c:61:b1:07:25:c1:e7:08:78:e0:ee:7f:1d:dd:31:4a:
f1:af:49:4f:f0:4a:f2:83:c1:87:a2:52:22:24:5f:43:7e:8a:
af:9c:2f:18:00:76:d7:c9:10:68:89:80:d7:b5:85:62:8f:d9:
1f:b8:10:9b:80:b8:6f:83:ef:d6:2c:17:45:53:fb:73:b6:9d:
db:9a:d2:c3:96:69:50:ed:b2:4b:dc:8c:46:86:1f:bd:9c:4f:
ce:42:4c:5c:07:d8:55:95:bc:d2:3d:de:15:79:7f:60:c7:98:
b2:3f:ee:9d:b0:1f:93:47:34:a5:51:b3:07:da:5e:e2:8b:05:
0a:32:0c:dc:11:80:cf:c9:17:f8:f8:e9:b1:3f:0a:01:62:65:
ce:f0:e6:38:55:d7:aa:64:4d:df:0d:0a:f9:ae:e4:d4:f3:3a:
ff:9e:65:bc:44:c8:c7:32:ac:3a:69:4d:0d:80:b5:15:98:44:
b4:b9:37:3a:97:48:71:ee:99:58:46:7c:79:f9:29:92:26:37:
a5:75:ec:0f:b2:6e:2f:88:27:85:35:cf:ca:47:dd:b0:df:f5:
29:4b:e7:c6:d4:86:ff:76:af:41:5b:d6:6a:5c:a4:f9:2e:24:
1a:60:f4:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:50 2024 by rpki-client on console-ams.rpki-client.org