Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/TkPbtX-NTUWFjk7Hcqk0fJ4HVUQ.roa
File: TkPbtX-NTUWFjk7Hcqk0fJ4HVUQ.roa (raw, json)
Hash identifier: xjrxucBlbFA/0GfeP3YlmrlFq1rb228gn8WmhSbaDpc=
Subject key identifier: 4E:43:DB:B5:7F:8D:4D:45:85:8E:4E:C7:72:A9:34:7C:9E:07:55:44
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018D3E9A8A65D3BCD3ACA2CBB1B1CEFB109E
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/TkPbtX-NTUWFjk7Hcqk0fJ4HVUQ.roa
Signing time: Thu 25 Jan 2024 03:12:11 +0000
ROA not before: Thu 25 Jan 2024 03:12:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:3e:9a:8a:65:d3:bc:d3:ac:a2:cb:b1:b1:ce:fb:10:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 25 03:12:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4e43dbb57f8d4d45858e4ec772a9347c9e075544
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:75:61:f5:c9:23:3d:31:db:a9:ad:02:af:9f:
05:0f:44:84:cd:2c:34:0c:8a:f1:ec:7b:4f:e5:79:
00:47:32:c4:bd:c4:4a:0d:24:14:37:5c:2b:49:72:
53:69:ee:3c:c9:e6:4f:df:01:14:8f:05:f0:df:91:
81:b4:89:34:bc:ce:9b:a8:6a:a3:e4:3c:b4:11:ca:
5c:da:ff:75:e7:bd:9b:0f:68:11:88:39:61:ed:c0:
49:d2:8d:d2:70:f4:83:d3:60:8c:8c:38:9d:5b:76:
5c:f3:03:7d:ec:86:86:ca:73:50:91:94:e4:99:39:
62:4f:02:44:57:16:08:bf:89:11:76:17:fc:14:59:
40:e3:d1:11:2d:ef:83:3a:2c:65:21:35:eb:fb:aa:
61:9e:ea:11:9c:53:84:32:76:0f:04:42:55:0e:e7:
e6:f9:f4:ab:ed:80:ab:19:d8:b2:f1:e3:15:52:5c:
74:08:6f:02:49:e7:b6:1c:00:85:1f:51:55:50:29:
47:4f:7d:ff:d0:78:07:20:a2:35:e7:de:c0:74:61:
3c:7d:b4:25:73:d7:88:60:1c:2a:b8:37:cf:98:27:
e5:24:fd:23:93:a6:0c:43:77:f5:bd:c7:51:e9:74:
64:b3:0c:f3:3e:bc:bd:92:df:fd:bb:61:0f:aa:ec:
6c:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:43:DB:B5:7F:8D:4D:45:85:8E:4E:C7:72:A9:34:7C:9E:07:55:44
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/TkPbtX-NTUWFjk7Hcqk0fJ4HVUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
92:cb:4f:ac:8e:b6:a9:c0:9f:45:75:69:ba:36:e5:41:99:a0:
ad:34:a0:d8:28:c3:60:40:01:ca:62:8f:e4:4e:39:4f:b7:0d:
78:02:b5:6f:ec:9e:26:79:f6:0c:0e:f6:00:77:38:26:93:6c:
dd:e7:4c:53:0e:ff:63:f1:38:28:cd:66:ac:43:63:c4:b5:ce:
9a:69:fc:03:fe:17:49:88:b1:8d:db:27:83:e3:45:f5:32:e3:
21:f6:c0:8a:52:42:d5:b9:c4:e9:41:f7:51:4e:b1:90:1f:35:
ee:9e:b4:44:6d:60:37:55:3c:44:52:c3:ab:27:db:cf:82:a3:
50:fc:ff:62:98:c9:b0:cb:75:48:28:0a:bf:f7:90:ec:a4:95:
70:f2:3e:ba:b7:e7:12:82:8e:ff:3c:5b:73:0c:b8:36:9e:63:
0d:e6:af:b0:a2:e9:23:13:88:25:af:6b:4a:b4:0b:50:f2:68:
fd:b5:2b:0a:a1:2d:94:54:8c:ff:6c:95:5d:28:2c:c5:74:81:
4b:2e:5e:73:fb:79:1c:a1:38:86:2c:8b:24:ce:85:54:f1:95:
09:5a:a4:ea:0c:a6:6b:12:00:42:6f:9e:6c:ea:ae:d6:63:34:
1f:6d:a9:95:36:e4:98:87:f6:45:52:cb:0c:24:57:c3:11:f4:
da:d4:53:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:50 2024 by rpki-client on console-ams.rpki-client.org