Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/VFGs7C6RYzA0uk1lokdxkAC-hbE.roa
File: VFGs7C6RYzA0uk1lokdxkAC-hbE.roa (raw, json)
Hash identifier: 4rsAGBnPAkhaPQTTv3bFJfP/nphqXT87bBrUSfUx2so=
Subject key identifier: 54:51:AC:EC:2E:91:63:30:34:BA:4D:65:A2:47:71:90:00:BE:85:B1
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018D0A443CAF0C1FBE5CEB537BCB22EDB107
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/VFGs7C6RYzA0uk1lokdxkAC-hbE.roa
Signing time: Sun 14 Jan 2024 23:17:40 +0000
ROA not before: Sun 14 Jan 2024 23:17:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:0a:44:3c:af:0c:1f:be:5c:eb:53:7b:cb:22:ed:b1:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 14 23:17:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5451acec2e91633034ba4d65a247719000be85b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:58:c8:91:6f:4d:cf:03:99:d9:7b:79:b7:f2:
75:62:65:51:6d:71:07:62:4f:3c:da:3f:80:37:4a:
4a:29:fc:5f:3d:ea:9f:a2:ac:f6:2d:97:02:e9:71:
6c:dd:ce:b3:3d:f5:cd:4b:52:23:2e:32:04:7e:0f:
e7:e5:e7:3e:98:10:2b:76:7b:29:ba:30:d3:42:35:
6f:b8:fb:35:c8:09:81:f4:2f:b2:0d:a6:20:72:44:
ea:23:9c:19:ee:32:99:1d:d6:ae:d9:d8:86:a9:a6:
e4:1a:95:12:41:c3:89:2b:a5:88:66:f9:ee:3a:d9:
6a:01:51:01:6a:ac:5f:49:a8:c9:0c:1b:c7:22:90:
71:60:ba:45:d5:fc:c7:49:9a:b9:5a:49:64:4e:ec:
07:14:25:a9:ef:60:9f:56:29:a7:d9:4f:67:68:f5:
dd:3d:a6:51:49:3d:c6:b6:51:c7:60:6d:37:d4:5b:
57:b4:09:b3:22:4d:10:94:d3:b6:53:e7:4b:45:7c:
8d:b3:02:2e:2c:e9:9e:bb:b3:1a:45:89:99:4f:b6:
d4:7b:53:9a:08:94:22:63:8a:1a:3e:29:52:90:5a:
3e:27:67:8a:9b:4d:8e:64:43:64:8f:2c:05:6e:c8:
05:48:1f:7b:46:c9:f0:af:d5:67:7a:bc:47:ae:1f:
4b:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:51:AC:EC:2E:91:63:30:34:BA:4D:65:A2:47:71:90:00:BE:85:B1
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/VFGs7C6RYzA0uk1lokdxkAC-hbE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
49:8d:bf:eb:28:b9:c0:9d:99:24:6f:1b:75:7f:6e:ba:31:a6:
44:23:15:b8:2f:85:64:31:69:81:4d:c1:ea:a0:8c:62:1d:55:
9f:1e:58:5d:b4:87:94:01:ac:e2:dc:d1:e4:a3:10:6d:65:08:
f5:74:0d:3a:38:ed:9b:d7:ce:e4:20:a2:92:3b:a6:ef:da:88:
e7:32:68:18:ce:cd:60:59:da:8c:71:b8:93:ef:e5:fe:9c:ac:
3b:3b:46:4c:28:95:46:b7:60:0a:ed:5b:3a:a7:31:98:46:e0:
35:69:b1:51:d6:c1:49:a7:c2:04:17:d7:04:eb:5e:2c:5b:11:
05:34:e4:b5:66:00:de:20:2b:fb:97:4a:cc:af:07:a2:b2:26:
89:cc:50:47:a2:c9:fe:ba:0f:dd:2a:b1:1e:5a:85:81:2f:a9:
5d:e6:a1:a2:09:22:aa:ca:80:f5:4f:8f:f6:72:e7:36:9b:4c:
25:05:17:7f:40:ff:8e:b3:e3:8a:8b:9a:e3:fb:84:c4:92:f4:
6b:b9:62:3e:5b:33:cf:9b:b2:b2:6a:87:17:d1:50:27:43:18:
74:d1:bf:4a:d7:a5:f1:be:88:4f:0a:e0:13:d3:ed:cf:a3:39:
d7:16:0c:3d:6f:b6:af:aa:fb:50:2f:1d:ea:52:b5:a1:f1:26:
00:d2:11:a3
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY0KRDyvDB++XOtTe8si7bEHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzYjNkYTNlY2I4YTdkNDMzZGUzODMzODY2N2IzNWU2OGRm
NzNmOGMwHhcNMjQwMTE0MjMxNzQwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NDUxYWNlYzJlOTE2MzMwMzRiYTRkNjVhMjQ3NzE5MDAwYmU4NWIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhVjIkW9NzwOZ2Xt5t/J1YmVRbXEH
Yk882j+AN0pKKfxfPeqfoqz2LZcC6XFs3c6zPfXNS1IjLjIEfg/n5ec+mBArdnsp
ujDTQjVvuPs1yAmB9C+yDaYgckTqI5wZ7jKZHdau2diGqabkGpUSQcOJK6WIZvnu
OtlqAVEBaqxfSajJDBvHIpBxYLpF1fzHSZq5WklkTuwHFCWp72CfVimn2U9naPXd
PaZRST3GtlHHYG031FtXtAmzIk0QlNO2U+dLRXyNswIuLOmeu7MaRYmZT7bUe1Oa
CJQiY4oaPilSkFo+J2eKm02OZENkjywFbsgFSB97Rsnwr9VnerxHrh9LyQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFFRRrOwukWMwNLpNZaJHcZAAvoWxMB8GA1UdIwQY
MBaAFNOz2j7Lin1DPeODOGZ7NeaN9z+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODct
YzUzOTc5ZDY2Y2E1LzEvVkZHczdDNlJZekEwdWsxbG9rZHhrQUMtaGJFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODctYzUzOTc5ZDY2Y2E1
LzEvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAEmNv+soucCdmSRvG3V/
broxpkQjFbgvhWQxaYFNweqgjGIdVZ8eWF20h5QBrOLc0eSjEG1lCPV0DTo47ZvX
zuQgopI7pu/aiOcyaBjOzWBZ2oxxuJPv5f6crDs7RkwolUa3YArtWzqnMZhG4DVp
sVHWwUmnwgQX1wTrXixbEQU05LVmAN4gK/uXSsyvB6KyJonMUEeiyf66D90qsR5a
hYEvqV3moaIJIqrKgPVPj/Zy5zabTCUFF39A/46z44qLmuP7hMSS9Gu5Yj5bM8+b
srJqhxfRUCdDGHTRv0rXpfG+iE8K4BPT7c+jOdcWDD1vtq+q+1AvHepStaHxJgDS
EaM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:50 2024 by rpki-client on console-ams.rpki-client.org