Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/UFHqrBa7fIYMC7h4UxYxP0kDS2c.roa
File: UFHqrBa7fIYMC7h4UxYxP0kDS2c.roa (raw, json)
Hash identifier: jbx6hUZmqDfGa4fzZsQAG+i4HNM+X6hj7MXMUCwcYiI=
Subject key identifier: 50:51:EA:AC:16:BB:7C:86:0C:0B:B8:78:53:16:31:3F:49:03:4B:67
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CEB21A8294E871BEC58FF97C038802662
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/UFHqrBa7fIYMC7h4UxYxP0kDS2c.roa
Signing time: Mon 08 Jan 2024 22:11:40 +0000
ROA not before: Mon 08 Jan 2024 22:11:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:eb:21:a8:29:4e:87:1b:ec:58:ff:97:c0:38:80:26:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 8 22:11:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5051eaac16bb7c860c0bb8785316313f49034b67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:14:77:c2:f4:5a:87:9e:40:1f:2d:5f:72:69:
5b:c7:a6:21:32:c1:29:2e:6e:fb:f6:bb:e7:aa:9d:
fa:f8:cc:c6:2f:87:f4:02:85:1c:b1:ab:09:ce:5e:
03:39:45:7e:92:d2:8a:04:2d:c6:1c:d1:ec:81:1f:
a2:92:ed:31:00:47:36:b6:59:8a:9e:fe:3d:3e:8d:
6f:3e:ff:45:80:94:cb:9b:d7:a3:74:5c:38:91:af:
df:9c:b8:37:79:8f:29:88:b0:68:63:e0:88:40:a7:
c9:28:96:2d:00:e7:e5:08:32:40:ed:7d:0a:f8:7e:
27:56:c9:ec:89:5c:37:33:b9:cc:1d:a7:93:1b:41:
af:97:4e:18:92:8a:ad:99:b1:c9:29:2a:19:b9:70:
8e:79:a6:69:d8:ea:e5:6c:39:1d:de:74:cd:5a:98:
98:78:5c:3d:50:58:f5:90:22:c3:3b:7e:1e:09:3f:
32:98:67:5b:c3:4a:a4:c3:7a:07:51:df:02:1f:22:
a8:09:d0:72:b3:a7:73:01:b0:cb:da:23:70:4a:d6:
3f:c0:6a:ef:05:c3:a0:2f:6e:a7:22:4a:4a:96:bc:
89:11:44:0b:6d:4b:b6:a7:91:8b:e6:b1:47:72:60:
e2:bc:f0:4d:9f:94:1b:ec:00:57:31:26:36:ec:f0:
55:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:51:EA:AC:16:BB:7C:86:0C:0B:B8:78:53:16:31:3F:49:03:4B:67
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/UFHqrBa7fIYMC7h4UxYxP0kDS2c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
0a:25:01:df:b1:c0:20:9b:98:b8:67:3e:1d:da:f9:94:4d:a1:
1e:bf:53:54:ee:33:9b:be:2b:a1:da:9b:93:bd:7b:53:a2:26:
52:06:e9:0d:a6:e3:6e:7f:21:e2:03:c7:02:86:2a:b8:4a:f8:
a2:f6:f7:62:a1:a9:20:a6:f2:83:5b:23:fe:da:c9:15:e0:45:
6a:5e:3c:13:0c:51:9f:f3:0a:8b:f9:28:0b:67:90:5f:18:2b:
68:6b:0b:62:88:ca:e9:76:56:09:5e:4f:39:0c:a6:e4:68:78:
46:d9:dc:bb:e4:28:39:48:f6:24:bc:bc:14:d1:f5:2c:9e:f4:
b9:90:66:d5:db:9f:0c:4a:4e:ae:33:d2:9a:0d:76:de:6f:32:
19:67:03:f4:18:b3:eb:90:31:41:06:9d:49:9a:0b:7e:50:81:
cd:7c:03:f3:2d:df:95:02:c8:8c:b0:ef:67:d0:79:1f:4c:7a:
4d:72:fd:00:1b:bf:fc:80:d7:db:58:da:e3:19:91:f7:d2:a1:
cc:26:47:a1:23:cc:68:ce:47:0e:f8:37:79:69:72:f0:f2:5d:
e7:48:0e:52:1e:d1:81:39:ec:c4:96:58:95:b3:64:a6:e6:ea:
17:02:e6:40:1f:5c:8b:52:17:a1:51:09:a3:ad:6e:ff:e7:c9:
73:a1:1c:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:31 2024 by rpki-client on console-fra.rpki-client.org