Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/PyMxHCjAVf189FWKJcGNy5Q_Ehg.roa
File: PyMxHCjAVf189FWKJcGNy5Q_Ehg.roa (raw, json)
Hash identifier: pAPm1mOwis4mWy2BgDWhf40Jrki5CIZENZZHbQ7siEM=
Subject key identifier: 3F:23:31:1C:28:C0:55:FD:7C:F4:55:8A:25:C1:8D:CB:94:3F:12:18
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018E06976348F2C0F67465D75553B1779C2E
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/PyMxHCjAVf189FWKJcGNy5Q_Ehg.roa
Signing time: Sun 03 Mar 2024 23:12:48 +0000
ROA not before: Sun 03 Mar 2024 23:12:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:c109:b478/128 maxlen: 128
2001:67c:64:ffff:0:18d:e84f:370a/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:06:97:63:48:f2:c0:f6:74:65:d7:55:53:b1:77:9c:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Mar 3 23:12:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3f23311c28c055fd7cf4558a25c18dcb943f1218
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:02:aa:98:15:17:72:ee:67:01:2c:27:91:12:
73:1f:63:b4:f2:3a:e5:b1:d1:1d:fc:3e:a1:6f:71:
b7:ba:46:5c:9a:83:5c:3c:69:18:bb:94:21:99:cc:
81:3d:02:be:9f:94:a9:31:dd:b0:e9:87:87:50:d7:
76:8a:ce:8c:bd:13:85:32:e1:a8:07:4a:96:12:34:
42:67:80:a8:8e:21:74:20:0f:3f:c2:38:4c:00:4a:
62:46:68:34:f2:8f:66:86:50:42:2b:94:00:d9:c2:
d5:fe:fe:c7:49:23:e1:ad:04:c1:18:e6:a9:36:f9:
dc:09:b0:82:f5:a2:d1:f1:a0:25:33:b0:71:2e:37:
dd:e9:08:d2:28:49:b6:fe:19:80:95:9f:58:a5:c8:
13:72:8b:af:d1:2d:2a:4d:a9:70:9e:cc:02:f2:ea:
6e:db:9e:65:b2:89:bf:00:d5:a6:83:cb:b3:f8:5c:
ce:01:5f:8e:ed:97:39:81:9b:b8:5e:be:bc:a7:01:
a3:5d:64:78:f1:c3:2d:40:4f:12:6c:e2:d1:f2:36:
e5:2b:b0:d7:a3:aa:12:60:fa:e5:88:64:f3:ba:3c:
26:fe:12:4b:60:89:92:94:68:ab:aa:f6:52:46:8c:
b4:d7:b6:22:ee:1c:d1:0d:ac:37:6b:b3:d5:11:1b:
25:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:23:31:1C:28:C0:55:FD:7C:F4:55:8A:25:C1:8D:CB:94:3F:12:18
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/PyMxHCjAVf189FWKJcGNy5Q_Ehg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
75:61:48:b3:33:61:4f:bc:57:9a:06:27:73:e4:0c:30:bb:56:
ca:5f:f4:37:16:ae:81:6e:f2:64:1d:4d:ed:e1:b3:06:d4:02:
b4:0d:6b:21:b1:1d:f7:46:2b:f4:7c:37:54:3f:e9:29:3f:8c:
4d:ef:3b:f1:14:c3:fc:a0:de:31:98:3a:3b:1a:77:20:1b:07:
49:55:89:0f:01:bb:6c:05:3f:cb:0b:33:cd:56:d0:48:a3:78:
9f:14:ba:92:d6:a4:36:9f:72:cd:1d:bb:34:59:b0:44:ac:27:
b8:fa:59:29:1e:63:b3:1a:b4:8b:cd:f1:f1:e3:1b:30:56:3f:
2b:c6:0a:d8:bb:44:51:b1:4d:8a:d3:d4:81:b4:71:95:98:d1:
ee:78:dc:0f:47:b8:44:f0:b1:f1:d9:e5:8f:c3:ea:4d:17:ab:
d2:7e:79:46:bf:bc:6b:22:33:90:07:5c:c0:0a:91:c1:71:b9:
25:75:a6:27:c0:c1:5d:bb:0f:bf:e7:b7:40:75:f9:14:91:f3:
51:3e:71:6c:c8:32:f0:2c:0f:58:67:61:1a:a4:3d:20:b8:da:
84:fd:31:49:07:9c:4a:8b:3d:71:0f:a6:c4:be:07:a5:2d:43:
78:62:46:60:61:6a:f6:1a:e3:47:25:04:28:83:e2:6c:b0:18:
71:f8:51:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:31 2024 by rpki-client on console-fra.rpki-client.org