Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/SUJBQOrKeXr5vZpow3k2fDul_Yw.roa
File: SUJBQOrKeXr5vZpow3k2fDul_Yw.roa (raw, json)
Hash identifier: Zve4InFiYIa7sCsXcFPBoZhZPvyW5gl2T7/MKF5infw=
Subject key identifier: 49:42:41:40:EA:CA:79:7A:F9:BD:9A:68:C3:79:36:7C:3B:A5:FD:8C
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018EE4AC170AE54A8944889E31958BE03819
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/SUJBQOrKeXr5vZpow3k2fDul_Yw.roa
Signing time: Tue 16 Apr 2024 02:11:07 +0000
ROA not before: Tue 16 Apr 2024 02:11:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e4:ac:17:0a:e5:4a:89:44:88:9e:31:95:8b:e0:38:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 16 02:11:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=49424140eaca797af9bd9a68c379367c3ba5fd8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:a7:86:dc:66:c6:34:18:41:e2:56:1f:2d:f2:
72:d7:d2:ba:ad:db:e3:43:e6:e5:a2:4a:77:34:91:
ff:8c:b6:5f:9c:66:90:85:dc:10:d2:fe:5b:68:77:
fa:82:9a:91:35:b8:ad:e0:6b:3d:15:59:89:82:cd:
d1:a0:42:f9:94:b4:3c:44:a9:2a:02:4e:65:be:60:
97:ef:d3:c3:51:23:0e:2c:37:c6:99:1d:8e:7f:d2:
84:4d:f2:fe:1f:1d:15:a3:c2:bc:db:64:6d:1d:c8:
80:05:bf:53:57:99:5a:c1:f3:86:15:f2:31:53:f4:
20:53:44:3d:bc:ba:4a:80:a6:64:f3:2c:c2:08:63:
db:c1:0f:b4:11:9a:62:3d:fd:67:e3:ca:c2:90:40:
56:3a:a9:28:69:53:69:3d:35:43:c6:13:92:db:8d:
a4:b1:7f:39:d5:70:b9:16:25:b9:10:91:b3:5f:7f:
32:33:10:ad:a4:fc:38:2e:2e:b5:cd:e0:c6:1b:e6:
b8:58:60:99:5d:c3:12:93:29:c8:2f:65:6f:0a:84:
60:46:88:0a:6c:2b:f1:3d:1b:de:40:c1:db:c0:11:
ac:51:9d:ef:4a:d1:33:e0:6d:db:8e:ea:69:78:82:
2a:d4:7e:58:71:cc:43:60:52:cb:ff:aa:50:04:73:
5d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:42:41:40:EA:CA:79:7A:F9:BD:9A:68:C3:79:36:7C:3B:A5:FD:8C
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/SUJBQOrKeXr5vZpow3k2fDul_Yw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
96:cb:76:1f:5b:85:b9:ed:10:b3:c4:12:4e:59:75:10:1c:fa:
dc:75:b4:64:51:42:f2:3a:75:70:8a:83:e9:36:67:af:24:de:
be:0c:ca:94:ad:76:a7:2d:69:68:35:a1:e4:26:ec:c1:c2:c0:
c3:9b:43:d6:19:16:a8:8e:2f:19:5e:30:a4:90:f0:c1:98:a2:
98:85:b0:29:77:6c:05:55:c9:a4:81:69:0f:f4:df:7c:df:92:
3e:58:99:cf:3a:58:c3:97:dd:1e:5f:91:3a:5f:3b:05:db:65:
f7:9d:45:53:b6:c4:bd:d7:e9:27:d9:d6:8c:cf:f4:3e:2c:6c:
f5:6d:d1:aa:c7:a7:cf:e4:4e:b4:38:1e:17:6a:c1:48:4f:e0:
6d:c2:b9:4e:33:82:a3:41:11:50:e3:31:6a:30:24:74:80:bc:
9a:53:b5:1d:df:36:69:4a:0d:d0:63:cc:a8:83:1f:81:f7:2c:
a7:de:9e:07:07:95:69:91:53:94:6d:0a:c7:86:f7:9c:2a:ca:
69:3a:fe:aa:1a:c5:d3:db:6a:80:63:25:c5:95:36:07:e0:09:
a5:bb:27:81:14:f7:f8:75:58:bd:59:65:67:3c:ad:ea:a3:5b:
b0:c2:b4:d0:aa:7a:67:e4:dd:2e:ef:ba:a8:3d:ad:7c:54:a9:
d8:ef:28:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:50 2024 by rpki-client on console-ams.rpki-client.org