Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/RZdkVBEisY7zeDuy53SoqFJDCA8.roa
File: RZdkVBEisY7zeDuy53SoqFJDCA8.roa (raw, json)
Hash identifier: 3EJDEM/2Bcro7fiw2E6SEGm1ilBptFnln0hLIfPoy04=
Subject key identifier: 45:97:64:54:11:22:B1:8E:F3:78:3B:B2:E7:74:A8:A8:52:43:08:0F
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CF916F59DC271B514AB41AA06F51B44EB
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/RZdkVBEisY7zeDuy53SoqFJDCA8.roa
Signing time: Thu 11 Jan 2024 15:14:40 +0000
ROA not before: Thu 11 Jan 2024 15:14:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f9:16:f5:9d:c2:71:b5:14:ab:41:aa:06:f5:1b:44:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 11 15:14:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=459764541122b18ef3783bb2e774a8a85243080f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ec:ad:99:6a:3e:be:ff:1c:0b:f0:f2:66:23:
94:9c:de:4c:f5:a6:13:fd:e0:82:dc:ad:f3:9f:54:
52:01:f8:49:fd:ce:27:d6:7d:9f:44:25:b2:9c:1c:
2a:00:03:bc:8d:04:36:2f:1d:63:22:38:6e:1e:cb:
6b:22:da:35:a4:77:bc:42:e8:e3:72:28:db:7d:b8:
a4:90:41:82:16:bf:5f:af:af:d7:a3:ac:c0:e9:4a:
2d:56:61:fc:92:4a:3e:fc:51:57:61:7d:a8:bf:59:
6d:3b:7a:82:cb:86:59:22:15:0b:86:23:7f:25:be:
47:d6:12:e7:38:e5:96:84:da:e6:d9:ef:25:d3:08:
5e:a5:45:3d:65:c8:50:5a:06:ae:b3:47:06:f4:fc:
b2:6b:20:89:92:fa:43:78:13:b4:e0:54:58:d1:26:
7b:1b:9d:fe:ab:06:6c:bd:d1:4d:f3:c8:3c:48:df:
01:e3:9c:f7:88:0e:20:48:ae:49:98:33:a8:b3:3e:
2f:a8:a4:84:2e:3e:23:d1:20:12:98:df:91:7f:e2:
5b:f5:a2:ae:65:e0:4c:99:20:1f:70:e2:4b:68:05:
d6:e6:95:1b:45:69:dc:0c:6f:c9:93:b2:4d:bf:2a:
51:82:ca:40:27:20:d3:85:91:31:1c:bb:0c:be:13:
40:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:97:64:54:11:22:B1:8E:F3:78:3B:B2:E7:74:A8:A8:52:43:08:0F
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/RZdkVBEisY7zeDuy53SoqFJDCA8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
79:38:34:c4:39:4c:48:4b:17:16:8b:bd:00:df:74:06:58:3d:
8f:a4:3e:f2:71:69:b9:c1:fe:e7:a2:c2:13:4b:3f:cd:61:6e:
0f:2a:ac:2c:3c:6b:2c:9c:0b:4e:bd:ba:19:b1:d9:5b:c9:58:
21:f5:42:9f:8a:5a:b1:35:af:ae:86:b5:90:06:0c:59:f6:30:
40:b9:fa:e8:16:bc:32:e1:5e:24:2d:d0:c5:d1:14:7f:ff:95:
9c:38:7b:0e:c2:66:64:2b:52:61:3f:fb:81:ef:6f:69:8a:89:
23:dd:3c:0c:89:9c:76:c9:4b:3f:9e:7e:3f:8b:1c:f0:93:c2:
b1:ca:7e:ed:e1:d8:c5:fb:4d:5c:b3:aa:84:89:12:cc:a6:3e:
8b:11:85:10:19:f1:ac:f6:59:83:e3:29:98:2e:3f:e8:b3:34:
76:c5:d3:1b:e8:2f:7b:d0:dc:7f:43:d4:0c:ea:57:5b:ff:76:
70:cc:37:6c:26:76:d3:3c:77:6f:63:5b:18:0e:df:47:b8:a6:
35:0d:04:db:b3:d4:47:32:41:f0:b2:1b:43:77:6c:93:12:99:
e7:39:b1:59:e7:38:84:b9:eb:6d:87:a2:a8:b5:c0:2b:b4:b2:
95:3b:d4:63:cd:bc:77:e8:c6:53:06:7b:c1:d3:db:cf:88:73:
cc:fd:0b:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:50 2024 by rpki-client on console-ams.rpki-client.org