Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/QRpWG0h25jnVMJB6PXerxj96T_M.roa
File: QRpWG0h25jnVMJB6PXerxj96T_M.roa (raw, json)
Hash identifier: wEQaGC/zMxBUwaRCStFTKXkopa1z5rb7CsWwBzfW/Zs=
Subject key identifier: 41:1A:56:1B:48:76:E6:39:D5:30:90:7A:3D:77:AB:C6:3F:7A:4F:F3
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018D005FE4B282A313DC98EA9F1132221340
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/QRpWG0h25jnVMJB6PXerxj96T_M.roa
Signing time: Sat 13 Jan 2024 01:11:40 +0000
ROA not before: Sat 13 Jan 2024 01:11:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:00:5f:e4:b2:82:a3:13:dc:98:ea:9f:11:32:22:13:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 13 01:11:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=411a561b4876e639d530907a3d77abc63f7a4ff3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:cb:18:83:b2:3b:f6:e6:15:7f:19:9d:9f:87:
d9:1f:c6:c0:59:5d:28:8e:e8:17:d7:0f:2a:a4:f3:
41:c7:02:c7:6d:16:1b:a1:7a:a5:58:da:d4:84:e9:
21:9f:48:15:c8:0e:51:2f:f5:d9:08:e3:b5:83:5c:
2e:a5:df:48:18:c1:ba:23:bb:2a:33:17:38:42:36:
2a:fa:ab:43:54:74:b0:83:69:8e:26:eb:97:cd:36:
b9:dd:e6:37:b0:87:fe:06:96:d9:fc:f8:61:d1:51:
79:2c:8b:65:99:bb:8d:33:af:18:8a:c2:a8:b2:3a:
8e:d2:56:2e:f7:d5:78:3e:72:c6:a3:17:cd:7e:f6:
cf:4c:14:9f:bf:28:13:ba:e3:79:71:34:67:40:e1:
9b:ae:a9:a0:00:82:88:c3:63:74:89:d7:53:31:29:
32:ed:46:41:9f:e5:4d:a7:58:19:75:a0:41:6c:fe:
84:4a:dc:b8:bd:5b:85:2e:db:c0:ac:e0:1d:26:bb:
cb:9c:80:2e:cf:4a:2c:49:0f:ef:38:01:46:b2:34:
52:c1:b8:25:ad:0e:54:bc:0b:06:32:ea:b8:7f:6e:
13:0d:ab:bd:e9:2b:64:50:a6:59:b9:be:4a:14:4d:
39:f3:c3:49:9b:65:e2:a5:34:df:fc:dd:1d:11:1d:
3f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:1A:56:1B:48:76:E6:39:D5:30:90:7A:3D:77:AB:C6:3F:7A:4F:F3
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/QRpWG0h25jnVMJB6PXerxj96T_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
96:d6:72:d4:8f:b0:cc:01:a6:1b:1a:ac:49:f8:b0:f7:b5:08:
3a:35:d6:83:60:f4:48:ca:c7:62:da:c0:33:57:a9:b6:07:89:
cf:8a:4e:4d:22:06:83:0a:9a:e7:af:fd:4b:06:87:5d:5c:3b:
49:ea:a5:8c:c0:4d:32:10:5f:95:c1:5f:45:17:15:0c:04:a9:
f8:45:fd:44:c0:6a:7e:c6:26:77:13:44:3a:7d:6d:80:29:83:
44:e7:45:d4:1f:33:52:b8:01:43:32:e8:06:8e:c6:7e:5c:51:
77:09:45:99:e8:79:16:db:b5:ef:84:38:8a:d1:2e:dc:9a:da:
c0:43:dc:6e:08:31:e1:a8:5d:23:ed:9f:43:d8:69:60:a8:76:
27:63:d4:40:5d:47:1e:ff:7a:67:45:d0:bd:38:19:3f:aa:70:
4f:ff:30:71:02:5a:93:99:5f:f1:66:c4:18:59:da:9f:1d:f3:
8a:d5:1d:04:59:62:79:ff:ee:4c:b0:92:6c:c1:11:12:2e:84:
89:1f:50:a9:0a:83:35:90:44:50:22:22:5b:c9:d6:74:c4:5e:
69:23:5a:1f:12:13:89:7f:9c:3f:6f:5b:14:79:c9:57:2f:2c:
77:82:67:a0:9c:ab:ff:ed:44:3d:d5:46:6d:f8:25:67:74:6c:
05:8c:94:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:31 2024 by rpki-client on console-fra.rpki-client.org