Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/QqG4vsvm3Ir6NnrkNbmJ9ZgDFBw.roa
File: QqG4vsvm3Ir6NnrkNbmJ9ZgDFBw.roa (raw, json)
Hash identifier: itQcrtJyRyZAGM1dkbroTOmU5P6bBIWVYNuLj00YEJw=
Subject key identifier: 42:A1:B8:BE:CB:E6:DC:8A:FA:36:7A:E4:35:B9:89:F5:98:03:14:1C
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018D740D2A5C909889BB9E596FB32DE0B877
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/QqG4vsvm3Ir6NnrkNbmJ9ZgDFBw.roa
Signing time: Sun 04 Feb 2024 12:17:16 +0000
ROA not before: Sun 04 Feb 2024 12:17:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:4013:c01e/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:74:0d:2a:5c:90:98:89:bb:9e:59:6f:b3:2d:e0:b8:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Feb 4 12:17:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=42a1b8becbe6dc8afa367ae435b989f59803141c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:9d:9a:af:7f:ee:40:66:31:98:d4:2b:20:9d:
c4:23:9f:fd:25:65:f1:0e:f5:08:3f:03:58:ef:e2:
d9:7f:a9:d2:8e:83:ab:99:48:36:a9:8f:60:3f:6d:
d0:46:18:2c:01:bb:6a:57:fb:a6:31:cd:84:4a:f3:
f5:32:67:16:82:00:2b:25:d4:1c:54:b8:6f:23:84:
69:4b:c2:9e:f8:cc:cb:cf:c8:bb:4c:f4:f0:0a:59:
9b:51:71:c2:03:98:83:ab:94:71:01:17:14:68:ca:
0b:1b:7d:54:94:2c:5b:46:f5:77:c2:c4:15:94:98:
5d:44:34:d0:2d:22:88:b2:a2:5e:6b:e4:98:c6:33:
be:7e:f6:ec:15:8f:64:e9:6e:ba:be:69:72:9a:a8:
ef:39:d2:15:fa:58:06:cd:ae:46:b2:57:96:56:c5:
c9:cf:18:85:2c:ca:56:27:da:ce:a8:82:de:cc:54:
b8:6b:d4:e6:ec:a2:e9:65:51:3f:b6:80:3d:8b:87:
88:16:9d:6b:d3:52:93:4e:03:b9:34:4c:8e:16:e9:
ae:7a:63:69:b5:a2:02:94:1f:42:a0:3b:58:e5:b6:
28:b7:b8:a9:14:f3:8a:3b:f2:ba:b7:38:9e:48:49:
5f:77:69:2b:dc:57:68:97:67:9e:19:ad:25:fc:2e:
1a:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:A1:B8:BE:CB:E6:DC:8A:FA:36:7A:E4:35:B9:89:F5:98:03:14:1C
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/QqG4vsvm3Ir6NnrkNbmJ9ZgDFBw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
68:60:6d:aa:18:27:c8:80:1d:69:01:40:4d:b5:6b:27:68:7b:
43:bf:77:81:3f:03:93:80:7d:b9:0f:0e:b6:4e:b7:51:80:fd:
c4:26:85:2e:e8:ef:92:58:82:1e:7e:c3:3c:3d:1f:70:82:72:
6d:4a:e3:fb:b7:62:bb:b0:8b:c2:09:44:99:c0:b6:35:1b:90:
e0:c8:12:50:a6:2d:0e:11:f1:b5:f9:ba:60:4f:84:c1:0c:dc:
f6:82:a5:66:57:90:a9:e3:d3:bf:08:a3:2c:55:ce:13:d0:6b:
51:2f:c4:78:12:33:33:d1:44:bc:d5:7d:90:e5:c6:6c:ef:11:
07:12:f7:4f:ec:5a:2e:b5:a6:e8:aa:bd:29:c3:4f:cf:5c:89:
9a:51:60:da:f8:dc:33:d9:98:fc:e1:8f:2d:46:cc:3a:f2:1e:
de:90:f8:4d:9b:7c:5d:26:06:3e:9d:2b:b2:a5:d1:6d:f3:ac:
f8:fe:ea:27:fb:ea:f9:4d:9b:ee:df:06:2b:99:0f:74:1a:f7:
a0:95:3a:85:4e:43:a2:53:56:7a:02:77:8e:82:29:4a:0c:8f:
90:37:8f:34:a3:38:33:d7:42:18:4c:8c:3f:ae:b7:ad:ca:53:
c9:ef:1b:53:33:27:52:48:bb:9b:f7:b7:4e:08:3b:c3:0c:31:
27:70:1c:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:50 2024 by rpki-client on console-ams.rpki-client.org