Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/UdLSVpF1jbqqOFXo4cKqXDUsp4Q.roa
File: UdLSVpF1jbqqOFXo4cKqXDUsp4Q.roa (raw, json)
Hash identifier: GX9K/Pa8WwxvzoVyemFIJLebCBWHukPSUHoi025yExY=
Subject key identifier: 51:D2:D2:56:91:75:8D:BA:AA:38:55:E8:E1:C2:AA:5C:35:2C:A7:84
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018E92B2F34F98F503D1CB24AF1353C9721F
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/UdLSVpF1jbqqOFXo4cKqXDUsp4Q.roa
Signing time: Sun 31 Mar 2024 04:09:45 +0000
ROA not before: Sun 31 Mar 2024 04:09:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:c109:b478/128 maxlen: 128
2001:67c:64:ffff:0:18d:e84f:370a/128 maxlen: 128
2001:67c:64:ffff:0:18e:76c8:d5da/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:92:b2:f3:4f:98:f5:03:d1:cb:24:af:13:53:c9:72:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Mar 31 04:09:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=51d2d25691758dbaaa3855e8e1c2aa5c352ca784
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f0:12:f6:ab:8a:9b:8a:2b:ef:5f:b6:22:a5:
71:30:10:75:e8:5c:63:19:60:63:a4:e5:ed:d9:90:
bd:f4:ee:8a:84:51:70:be:dc:79:9b:f7:30:b5:c7:
c7:4e:f1:dd:d7:3e:7c:95:e1:97:f5:d6:39:d9:36:
d8:98:07:a1:79:af:24:a0:88:e4:89:27:e7:5a:dc:
a1:43:af:93:16:20:9e:eb:91:15:53:d8:62:f7:02:
d0:88:c7:f0:7f:1a:3c:7c:d5:c0:9b:bd:60:06:38:
a3:ef:83:20:e3:30:64:86:9f:a2:26:07:6e:72:a7:
ed:7a:e6:8b:0e:4d:f0:ba:9a:e2:a1:41:45:ac:41:
a8:42:b6:6e:0d:48:55:1a:f4:65:7b:bb:0a:6f:7b:
8e:cc:26:32:d4:84:2e:fe:5b:3e:61:9d:1d:41:97:
2a:c9:ad:5c:e6:4d:71:1d:64:37:d7:7b:56:15:30:
ed:6e:0f:1a:0a:c2:16:de:7b:83:c0:b6:f6:7b:fa:
c3:57:9a:0a:19:c0:f1:f0:a0:0d:d2:ac:3b:14:d1:
fb:d4:95:fb:56:a8:7a:39:f0:c2:85:59:fc:a8:e3:
23:a8:3e:fe:71:9d:6a:09:83:5d:20:b9:ad:52:20:
e7:af:e7:6c:bf:5a:17:ca:5c:ce:82:1a:27:08:d6:
27:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:D2:D2:56:91:75:8D:BA:AA:38:55:E8:E1:C2:AA:5C:35:2C:A7:84
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/UdLSVpF1jbqqOFXo4cKqXDUsp4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
87:d9:57:68:3e:cb:e1:6d:85:6e:9a:0b:76:86:b5:56:73:d1:
10:5c:07:07:fa:bd:3b:e0:c4:54:16:77:38:07:f7:68:1a:6b:
f6:ec:30:21:5b:6b:a6:5a:d7:78:40:c1:63:d5:b0:0c:0d:37:
5f:e4:67:98:1c:99:20:2a:75:a7:29:89:22:92:15:1a:8b:ff:
70:e9:2f:3f:0e:4c:5c:12:f0:45:93:03:d0:d7:ae:91:4f:35:
63:f9:51:d2:86:33:ca:bc:ff:12:53:7e:4d:cf:0a:f9:17:42:
b4:fb:5a:45:9f:9f:21:03:62:6c:9c:3a:1a:d7:cf:ad:8e:5d:
2b:ff:ce:b1:c4:ee:f6:a7:cd:76:0d:4d:4a:4d:bd:6b:24:17:
fb:c7:12:d9:e5:84:3d:f5:db:3e:f1:3d:bd:12:70:50:f3:04:
90:03:41:a6:4c:0b:92:f2:cb:1b:0f:06:8d:eb:82:d4:27:e1:
75:8c:09:52:84:6e:5f:c7:6d:a6:90:fe:64:a0:e8:6c:48:5b:
5d:da:6a:f0:a4:b7:ac:59:49:01:7e:43:69:4b:14:44:7e:ba:
74:31:11:57:6f:1b:f1:76:f4:9b:9d:e1:08:93:0f:c1:74:f2:
d5:e8:00:13:cb:05:f2:30:ff:c8:fa:33:09:c4:b8:28:da:b7:
0d:60:11:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:23:31 2025 by rpki-client