Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/UhGaGhDxmxthfbQvLzdmULNhw_g.roa
File: UhGaGhDxmxthfbQvLzdmULNhw_g.roa (raw, json)
Hash identifier: kigPdFyEXGh6FY7KOZTBBvoBztc2RMZID0rBbU0bANQ=
Subject key identifier: 52:11:9A:1A:10:F1:9B:1B:61:7D:B4:2F:2F:37:66:50:B3:61:C3:F8
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018ED870FB33884EFC237EDEEFC69ED6108B
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/UhGaGhDxmxthfbQvLzdmULNhw_g.roa
Signing time: Sat 13 Apr 2024 17:11:06 +0000
ROA not before: Sat 13 Apr 2024 17:11:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:d8:70:fb:33:88:4e:fc:23:7e:de:ef:c6:9e:d6:10:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 13 17:11:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=52119a1a10f19b1b617db42f2f376650b361c3f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:1b:21:29:6b:67:cd:c3:6a:90:b8:0e:e6:f1:
fc:00:e9:58:47:f8:f0:05:ee:15:f2:47:7a:f4:80:
ff:a3:4d:40:e5:0e:f4:86:89:f1:12:61:91:54:93:
55:15:09:ce:89:ee:55:76:c7:11:b0:ed:ca:77:da:
aa:a2:14:cf:8d:da:c3:c7:a6:5a:7e:3c:bc:8b:70:
92:fc:df:c4:9c:78:a4:62:b2:0d:be:5a:8b:52:9d:
64:04:09:e1:b7:38:05:64:28:36:66:61:0b:ae:b8:
f5:e1:fb:68:1d:b8:6c:df:96:fd:52:98:f6:1b:7e:
08:a0:ab:72:ae:9e:a4:16:e6:35:61:9f:32:df:49:
f3:80:56:a1:3b:bd:35:06:71:4b:d1:7c:ac:9f:ba:
21:0e:ba:65:f7:32:f9:d3:45:47:03:1a:4a:b1:3f:
c9:67:89:9c:31:93:80:35:09:e1:80:6a:76:d9:c5:
1c:11:83:54:96:c0:8f:68:c5:00:33:bf:99:3e:07:
90:8b:2d:89:42:9e:aa:af:4a:37:ef:5e:fe:51:c8:
9b:97:5b:10:83:48:d4:4a:cf:b8:cd:ea:63:54:4b:
dc:5a:a2:2c:cd:3a:28:e2:99:09:57:d3:c7:59:fe:
db:40:08:2f:b1:8d:22:02:76:bc:13:ce:58:69:ae:
cf:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:11:9A:1A:10:F1:9B:1B:61:7D:B4:2F:2F:37:66:50:B3:61:C3:F8
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/UhGaGhDxmxthfbQvLzdmULNhw_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
80:74:02:8b:bf:24:57:92:b6:f7:84:e5:46:bf:ae:51:d4:d6:
c4:c9:d5:09:cf:5e:6f:44:8c:2d:8c:41:c2:37:bb:4b:b6:ad:
d3:5e:76:a5:d1:3c:72:ba:0d:76:df:cd:0f:d7:3e:a9:02:41:
39:97:fe:64:56:d0:61:69:5d:e8:01:ff:de:33:63:72:73:df:
86:e1:4c:a8:13:9e:94:56:41:69:b4:16:8d:a2:5a:5a:3b:75:
2d:40:ea:9f:70:74:5a:fe:ae:f4:37:01:bd:ec:b2:88:3a:f5:
6a:b6:ea:38:a3:2b:84:79:cb:94:82:21:18:64:35:41:cc:08:
70:a3:08:2d:f3:a2:cd:a4:f6:32:ca:ab:53:a5:85:ff:6f:56:
78:02:59:53:d5:2b:42:2e:8f:c5:81:dc:4a:bd:cc:56:f3:b7:
03:a1:05:ed:b3:33:85:30:d1:a8:b7:f9:31:2d:73:28:0d:6b:
3b:7b:fe:a8:bf:e6:8e:0c:74:ae:61:b8:46:59:53:3e:30:b8:
d4:6b:b0:83:9e:49:80:27:ce:41:0e:76:e2:50:34:55:6c:13:
4f:a0:29:64:75:99:5d:a7:08:d1:3a:8e:a7:c4:67:5e:91:6e:
4f:9e:75:b4:ff:df:47:ec:05:2d:78:8c:3e:68:ec:89:ed:bd:
be:cf:1d:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:31 2024 by rpki-client on console-fra.rpki-client.org