Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/SD6YTw01duPgHfm0nrPTkOBQPVI.roa
File: SD6YTw01duPgHfm0nrPTkOBQPVI.roa (raw, json)
Hash identifier: xYZ8ibS5/wDao2Pn13UUCzOLVeOyjnCD1a3/gVVubPc=
Subject key identifier: 48:3E:98:4F:0D:35:76:E3:E0:1D:F9:B4:9E:B3:D3:90:E0:50:3D:52
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018C8C811260E567F39539617464EDFEE172
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/SD6YTw01duPgHfm0nrPTkOBQPVI.roa
Signing time: Thu 21 Dec 2023 13:11:58 +0000
ROA not before: Thu 21 Dec 2023 13:11:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:8c:81:12:60:e5:67:f3:95:39:61:74:64:ed:fe:e1:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 21 13:11:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=483e984f0d3576e3e01df9b49eb3d390e0503d52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e2:55:26:2f:9f:0a:96:14:4e:fc:48:6e:6d:
30:1e:ad:7e:ed:4b:ab:a4:bc:41:bb:00:18:c2:44:
94:e1:d7:48:40:3a:3d:0b:f0:74:e1:a8:94:9b:23:
a8:16:5f:8a:db:31:f0:c8:4d:78:ff:cb:75:a8:75:
a2:ad:6e:19:c9:61:38:1a:17:55:54:91:23:89:d3:
7e:05:18:f1:1c:fd:38:43:1d:7f:bc:20:0e:b6:bc:
ee:5c:d5:72:2e:a9:75:15:6f:77:85:f6:c7:a8:a4:
56:8a:fe:72:4c:24:df:91:34:83:17:54:df:47:00:
fa:fc:9c:78:7d:e5:8b:58:4f:be:8c:85:ac:31:5c:
6f:7d:6a:c7:f6:16:35:48:8d:da:62:e5:38:b2:15:
37:93:d5:bb:9e:fb:17:56:56:d8:fa:13:0d:82:41:
3d:7d:3d:01:dd:3f:b8:f6:a2:22:6d:97:29:a5:c6:
e2:ea:64:26:e5:35:48:1d:86:bf:90:2d:4b:dd:65:
0f:65:a8:78:7e:65:f8:e8:d9:9e:0f:5f:eb:1f:14:
67:e3:75:8e:ce:f5:f9:a0:a1:6b:d3:d2:c4:73:84:
e8:5e:83:c9:f8:26:e5:79:57:08:84:24:35:c9:c4:
22:6e:39:4c:e2:b1:03:2e:1e:94:5f:2c:f4:ac:6e:
36:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:3E:98:4F:0D:35:76:E3:E0:1D:F9:B4:9E:B3:D3:90:E0:50:3D:52
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/SD6YTw01duPgHfm0nrPTkOBQPVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
58:69:3d:dc:59:ae:5f:ca:1a:ac:ac:a3:6e:7b:e9:37:90:e3:
70:55:3b:4c:4a:a6:7f:74:94:2d:88:43:55:78:b2:56:60:62:
0d:a9:63:6e:80:50:7b:7b:a1:c3:bc:92:9d:cd:ad:f0:f9:72:
d7:2c:52:2b:b3:48:f3:b2:39:7b:78:13:ad:9e:ab:1e:5f:17:
cf:43:ae:71:7c:d7:bc:07:42:09:25:3f:c1:26:a8:6a:98:39:
de:49:f9:44:b1:3f:f1:8f:93:93:d3:15:eb:c0:85:77:3a:ba:
c6:a9:79:37:9a:13:62:65:e2:fb:ac:6d:8f:e2:1e:ac:b5:55:
b7:3b:10:a4:58:96:dc:ed:3a:e0:11:1d:dd:9c:dc:3a:0b:07:
69:dd:c9:c2:c4:23:c2:78:40:83:34:97:bf:df:d4:e3:c9:0c:
b9:21:36:b4:c6:09:79:a4:f7:0f:e7:49:ad:d6:a1:45:29:7d:
4f:15:15:32:37:7c:ae:93:cf:f8:6f:d0:c3:99:bd:4d:91:e2:
12:3f:dd:04:af:dc:d8:b7:f9:14:f8:91:18:f6:1e:cf:24:51:
a2:16:6b:26:95:0d:36:c6:9a:02:b0:74:5c:c6:f1:1a:59:7a:
bb:e5:5b:0b:36:65:6c:c0:89:27:b1:a4:5a:91:89:86:f9:4f:
b6:03:45:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:50 2024 by rpki-client on console-ams.rpki-client.org