Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/SqwpDwxPQsZ6580WG3w0PDRwvAU.roa
File: SqwpDwxPQsZ6580WG3w0PDRwvAU.roa (raw, json)
Hash identifier: mTFys97CZSmWVwYeWBJEDRKeu2gObiA05z3gq6MP464=
Subject key identifier: 4A:AC:29:0F:0C:4F:42:C6:7A:E7:CD:16:1B:7C:34:3C:34:70:BC:05
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018EB652A8AC09ABCE92F7E5190EB8C1EA39
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/SqwpDwxPQsZ6580WG3w0PDRwvAU.roa
Signing time: Sun 07 Apr 2024 02:10:54 +0000
ROA not before: Sun 07 Apr 2024 02:10:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:b6:52:a8:ac:09:ab:ce:92:f7:e5:19:0e:b8:c1:ea:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 7 02:10:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4aac290f0c4f42c67ae7cd161b7c343c3470bc05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:73:bb:e3:35:ee:a4:1b:df:e7:ff:7b:e3:f6:
a5:0f:2e:f4:d4:6e:40:8f:3b:32:5c:ec:45:a2:db:
d4:d7:0d:ae:dc:99:dd:30:b8:ea:33:60:36:2f:70:
f0:bb:fb:09:56:b8:25:b2:1b:ff:ab:ce:64:00:9d:
c2:e7:51:67:d3:da:b5:81:7b:03:cd:d4:51:f8:31:
52:08:0d:54:e0:83:7a:a9:c5:76:67:25:f2:2f:a8:
6d:15:cf:3a:de:13:a7:7f:b3:5a:0f:ec:2f:72:6f:
59:2a:67:05:8a:bf:c5:8f:10:42:a0:fc:64:8d:f9:
4a:d6:8a:db:6e:dc:88:84:b0:d6:4b:7f:c6:1c:e6:
97:24:98:86:3a:24:61:3e:de:33:a1:28:44:51:bc:
1f:92:c8:3f:3c:c0:e9:94:70:6d:cb:1f:16:c7:00:
8f:30:b5:8f:f1:23:88:20:ee:5e:ce:b7:de:f2:cb:
7a:ca:e1:6d:47:84:90:e3:d8:25:7c:15:f9:9a:c6:
12:76:3c:b5:73:08:e7:ac:19:4b:97:08:87:2f:65:
3e:28:b3:d7:04:f1:6b:9a:20:9b:a1:b5:dc:82:5a:
42:0b:cb:ff:a9:dc:a8:5e:03:49:83:2f:6e:3d:aa:
b0:54:03:35:87:2c:08:17:8f:df:0f:a5:63:98:4b:
a1:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:AC:29:0F:0C:4F:42:C6:7A:E7:CD:16:1B:7C:34:3C:34:70:BC:05
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/SqwpDwxPQsZ6580WG3w0PDRwvAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
11:58:37:9d:22:66:0e:bc:2f:41:2f:27:b1:b9:4d:5c:d2:1f:
b0:fa:2c:89:73:1c:23:38:6e:2b:19:47:5f:2c:c3:0e:03:53:
21:bf:17:13:91:e7:e4:9f:03:39:ad:32:c2:fc:5d:a5:af:b1:
ad:e1:6c:de:99:45:e3:55:58:43:1b:50:da:18:4a:30:f8:22:
90:73:f4:6f:81:2f:3e:c2:66:fa:29:74:17:8f:01:77:ad:70:
b7:16:a4:19:1a:05:14:f2:ff:f5:d1:6f:31:ae:bd:a9:71:b9:
ca:48:ce:67:b4:83:fe:4f:7a:f5:65:c9:fc:5f:aa:29:34:28:
91:9e:a5:17:b0:6e:62:23:76:0c:83:2a:85:58:f1:7b:30:4f:
d4:63:eb:5b:ae:4d:59:91:93:f4:ad:9d:71:72:59:8b:59:0c:
fa:79:49:cd:e9:b2:78:9e:c4:b2:d5:cd:6b:03:0f:46:92:8a:
4e:4d:84:05:c1:08:f9:48:c2:da:bc:7b:65:ae:91:da:f7:99:
dd:e1:7d:a8:f4:25:6a:02:5a:ba:75:9e:71:28:2a:00:65:81:
a2:55:17:7b:98:41:1b:d7:da:50:96:5c:b2:87:82:92:13:c2:
39:bc:8d:ed:69:64:6f:50:a4:72:03:70:c1:02:29:06:9d:bd:
95:f0:56:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:03 2025 by rpki-client