Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/RNxQamK0uSoWrHy7xhXuhI9gcwU.roa
File: RNxQamK0uSoWrHy7xhXuhI9gcwU.roa (raw, json)
Hash identifier: ZnIewpI52ajki9UFolXuKbdj8HitTIvAQ3E2LNhI9N8=
Subject key identifier: 44:DC:50:6A:62:B4:B9:2A:16:AC:7C:BB:C6:15:EE:84:8F:60:73:05
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018D2CCC2017093AAE87B854B9F4E01CE0DB
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/RNxQamK0uSoWrHy7xhXuhI9gcwU.roa
Signing time: Sun 21 Jan 2024 16:13:11 +0000
ROA not before: Sun 21 Jan 2024 16:13:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:2c:cc:20:17:09:3a:ae:87:b8:54:b9:f4:e0:1c:e0:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 21 16:13:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=44dc506a62b4b92a16ac7cbbc615ee848f607305
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:93:8f:2c:52:b8:b1:1c:79:db:f9:f9:02:93:
2c:c0:92:1e:98:fa:58:44:48:17:48:5c:dd:fb:69:
f3:7a:d4:58:6f:07:5b:cc:96:a4:42:da:09:77:26:
1a:b6:0a:b2:b9:44:b0:ca:4a:8c:41:86:bf:7a:0e:
16:b5:bf:d9:47:c2:d8:54:c0:aa:e5:c5:de:5f:87:
a7:e6:78:0f:79:df:d6:19:0f:b8:05:a8:12:2b:b3:
42:b7:c0:3f:3e:56:d8:2f:c7:d2:0b:cc:26:e4:5c:
9d:67:27:7d:7a:a8:0f:bb:27:1f:63:84:eb:79:79:
1e:30:fa:4d:ce:82:d3:9e:ee:30:f5:0b:6b:e5:06:
33:d3:05:87:cc:94:6f:32:ac:f7:18:56:34:df:15:
78:b6:54:60:e7:98:5f:09:89:2b:01:8d:57:72:5b:
59:eb:51:3c:a4:1a:84:fd:0a:ed:6b:52:f6:31:0e:
5e:c5:61:73:86:2a:d9:d4:e5:39:4e:5c:32:92:a1:
3d:c9:25:43:19:92:78:6e:bc:35:dc:bf:26:ce:4b:
b0:9b:86:6c:79:9f:93:98:c4:62:a6:86:b9:dc:f8:
87:15:8d:1c:af:5f:34:13:f9:6b:63:bf:43:2a:6a:
45:35:78:8e:55:a9:c4:c4:5d:f5:0b:14:51:ad:4c:
ae:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:DC:50:6A:62:B4:B9:2A:16:AC:7C:BB:C6:15:EE:84:8F:60:73:05
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/RNxQamK0uSoWrHy7xhXuhI9gcwU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
7b:37:5c:c0:aa:a1:47:03:a3:fa:cb:d4:f5:ed:25:03:2f:e1:
e0:93:11:25:da:c3:52:c9:ee:d2:a2:de:f4:50:24:65:96:d2:
34:76:a3:a1:95:ed:4a:cd:a7:71:d1:b8:d4:5b:a6:a9:00:62:
07:a0:61:af:c3:5f:b1:1d:a5:7f:59:72:4f:de:1b:3d:3d:c7:
0a:07:d0:93:ab:fb:e2:b1:dd:8c:9c:ec:be:e8:c5:d8:47:d4:
07:cc:ee:7e:8d:25:59:c9:cd:7d:77:d6:39:87:00:36:2f:79:
2c:d3:6f:8d:0a:ef:a1:a9:f5:3d:11:0b:7c:f0:f4:3f:21:8e:
18:e5:dc:a1:82:a0:62:db:2d:d0:37:4b:6e:7f:8d:7a:aa:16:
42:18:64:43:46:f1:e8:f0:1b:38:5d:64:ad:11:89:f6:21:dd:
50:8d:18:9a:6c:5d:5b:f7:2a:21:b8:2a:4a:05:6e:4c:8e:5a:
7c:bf:c4:cf:9a:c8:63:2d:5c:cf:68:a3:7c:60:98:d2:af:5d:
4e:83:34:8c:cc:ff:9a:6a:05:d1:06:29:94:3f:ae:cf:48:bb:
43:cd:de:50:2a:64:e1:dd:63:4f:1d:81:86:d8:ac:59:a6:7e:
71:c4:47:89:b7:d8:e5:4e:8d:87:5b:d4:28:7e:3d:26:93:26:
b2:e8:86:87
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY0szCAXCTquh7hUufTgHODbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzYjNkYTNlY2I4YTdkNDMzZGUzODMzODY2N2IzNWU2OGRm
NzNmOGMwHhcNMjQwMTIxMTYxMzExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NGRjNTA2YTYyYjRiOTJhMTZhYzdjYmJjNjE1ZWU4NDhmNjA3MzA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiJOPLFK4sRx52/n5ApMswJIemPpY
REgXSFzd+2nzetRYbwdbzJakQtoJdyYatgqyuUSwykqMQYa/eg4Wtb/ZR8LYVMCq
5cXeX4en5ngPed/WGQ+4BagSK7NCt8A/PlbYL8fSC8wm5FydZyd9eqgPuycfY4Tr
eXkeMPpNzoLTnu4w9Qtr5QYz0wWHzJRvMqz3GFY03xV4tlRg55hfCYkrAY1XcltZ
61E8pBqE/Qrta1L2MQ5exWFzhirZ1OU5TlwykqE9ySVDGZJ4brw13L8mzkuwm4Zs
eZ+TmMRipoa53PiHFY0cr180E/lrY79DKmpFNXiOVanExF31CxRRrUyuzwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFETcUGpitLkqFqx8u8YV7oSPYHMFMB8GA1UdIwQY
MBaAFNOz2j7Lin1DPeODOGZ7NeaN9z+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODct
YzUzOTc5ZDY2Y2E1LzEvUk54UWFtSzB1U29Xckh5N3hoWHVoSTlnY3dVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODctYzUzOTc5ZDY2Y2E1
LzEvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAHs3XMCqoUcDo/rL1PXt
JQMv4eCTESXaw1LJ7tKi3vRQJGWW0jR2o6GV7UrNp3HRuNRbpqkAYgegYa/DX7Ed
pX9Zck/eGz09xwoH0JOr++Kx3Yyc7L7oxdhH1AfM7n6NJVnJzX131jmHADYveSzT
b40K76Gp9T0RC3zw9D8hjhjl3KGCoGLbLdA3S25/jXqqFkIYZENG8ejwGzhdZK0R
ifYh3VCNGJpsXVv3KiG4KkoFbkyOWny/xM+ayGMtXM9oo3xgmNKvXU6DNIzM/5pq
BdEGKZQ/rs9Iu0PN3lAqZOHdY08dgYbYrFmmfnHER4m32OVOjYdb1Ch+PSaTJrLo
hoc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:50 2024 by rpki-client on console-ams.rpki-client.org