Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Vi9BPDS1Uld-hUNICie_n7egSa8.roa
File: Vi9BPDS1Uld-hUNICie_n7egSa8.roa (raw, json)
Hash identifier: wkDaJvbH2iW1XrkzZUB2GGuDT1co9R5I2nyw3nXDSeY=
Subject key identifier: 56:2F:41:3C:34:B5:52:57:7E:85:43:48:0A:27:BF:9F:B7:A0:49:AF
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018E9CFFABE49001BB2E2FE412406D1B876F
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Vi9BPDS1Uld-hUNICie_n7egSa8.roa
Signing time: Tue 02 Apr 2024 04:09:45 +0000
ROA not before: Tue 02 Apr 2024 04:09:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:c109:b478/128 maxlen: 128
2001:67c:64:ffff:0:18d:e84f:370a/128 maxlen: 128
2001:67c:64:ffff:0:18e:76c8:d5da/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:9c:ff:ab:e4:90:01:bb:2e:2f:e4:12:40:6d:1b:87:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 2 04:09:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=562f413c34b552577e8543480a27bf9fb7a049af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:ff:df:ea:c4:7a:a1:69:13:bd:51:f3:37:ff:
9d:18:25:8f:77:08:4f:04:0e:9a:5c:b1:15:b4:d4:
71:71:02:0c:ca:0c:6f:cc:e8:58:21:3c:6c:a5:11:
7a:f5:f3:59:a1:1e:ec:ca:2e:63:9d:95:da:b8:ed:
91:f5:2e:32:67:95:ad:3b:ca:b6:97:0b:9f:3a:21:
4d:cf:42:95:df:46:d4:77:36:46:16:7d:2d:2c:d7:
c0:59:70:18:20:56:c3:7b:d0:75:a0:ca:55:f8:b7:
03:b8:76:a2:44:3b:21:19:91:ec:f4:be:e3:0a:e0:
c0:07:7b:e2:85:c6:d3:00:32:0e:37:79:cc:f3:79:
0b:ae:58:6f:be:8c:e7:17:b3:fd:82:04:a8:9d:2e:
da:fc:5b:c1:90:7c:d0:0f:db:5c:9d:65:b7:a8:8d:
11:fd:27:9b:d1:b2:2e:8b:ca:d3:26:ec:ce:91:f0:
5a:64:9e:05:a3:7d:4f:6d:62:32:eb:2e:64:03:56:
c5:6b:69:37:ce:83:85:e0:42:9e:83:4a:01:06:fb:
93:64:e9:b9:60:48:79:2e:ef:1d:80:f1:1e:b6:58:
db:45:8e:61:f4:d5:f3:9e:a7:3c:ad:54:25:53:3c:
91:bd:0d:27:82:6e:df:aa:61:77:42:c5:fc:85:ff:
df:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:2F:41:3C:34:B5:52:57:7E:85:43:48:0A:27:BF:9F:B7:A0:49:AF
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Vi9BPDS1Uld-hUNICie_n7egSa8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
0b:07:0f:c4:9c:ac:ea:d3:2f:b5:f5:86:73:05:51:66:9c:13:
12:4d:f6:c4:da:55:58:e2:a0:da:0b:a0:ab:8b:0f:9a:3d:f8:
a6:19:d3:1a:9c:4f:dc:71:08:fd:7b:32:b8:51:39:4b:60:a0:
9e:ce:4f:6b:85:93:36:55:81:29:0e:c5:8d:af:91:f4:44:b3:
bf:b7:2c:ca:9d:da:d1:7c:29:85:cd:53:23:6c:83:9a:f7:ea:
72:61:e2:ac:30:25:ad:7c:4b:19:2b:a0:29:93:13:d8:c2:2a:
a9:96:e2:39:35:13:0e:30:cb:a6:e2:24:16:8b:23:f3:3f:b5:
15:e8:13:ac:03:23:47:a4:da:35:4e:25:e7:05:e0:dd:8b:33:
71:aa:d0:bb:16:d2:ba:23:ae:6e:eb:0e:2a:c3:af:72:9b:97:
ab:86:7d:2c:fb:41:ec:0a:e3:55:58:92:43:60:68:2b:8f:66:
23:cc:26:33:7a:d3:08:b3:02:37:c8:e5:3a:20:cc:01:80:7d:
aa:5c:28:2a:f9:17:3a:17:4b:47:55:59:32:17:3a:f4:28:1d:
22:be:ec:8b:3a:4e:fc:cc:1d:9f:8f:fb:f6:7d:f6:b2:d3:da:
a1:d3:1a:2c:52:90:60:b2:8a:9e:74:ff:f6:d6:43:c7:7d:97:
da:f4:21:59
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY6c/6vkkAG7Li/kEkBtG4dvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzYjNkYTNlY2I4YTdkNDMzZGUzODMzODY2N2IzNWU2OGRm
NzNmOGMwHhcNMjQwNDAyMDQwOTQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NjJmNDEzYzM0YjU1MjU3N2U4NTQzNDgwYTI3YmY5ZmI3YTA0OWFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6//f6sR6oWkTvVHzN/+dGCWPdwhP
BA6aXLEVtNRxcQIMygxvzOhYITxspRF69fNZoR7syi5jnZXauO2R9S4yZ5WtO8q2
lwufOiFNz0KV30bUdzZGFn0tLNfAWXAYIFbDe9B1oMpV+LcDuHaiRDshGZHs9L7j
CuDAB3vihcbTADION3nM83kLrlhvvoznF7P9ggSonS7a/FvBkHzQD9tcnWW3qI0R
/Seb0bIui8rTJuzOkfBaZJ4Fo31PbWIy6y5kA1bFa2k3zoOF4EKeg0oBBvuTZOm5
YEh5Lu8dgPEetljbRY5h9NXznqc8rVQlUzyRvQ0ngm7fqmF3QsX8hf/ftwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFFYvQTw0tVJXfoVDSAonv5+3oEmvMB8GA1UdIwQY
MBaAFNOz2j7Lin1DPeODOGZ7NeaN9z+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODct
YzUzOTc5ZDY2Y2E1LzEvVmk5QlBEUzFVbGQtaFVOSUNpZV9uN2VnU2E4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODctYzUzOTc5ZDY2Y2E1
LzEvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAAsHD8ScrOrTL7X1hnMF
UWacExJN9sTaVVjioNoLoKuLD5o9+KYZ0xqcT9xxCP17MrhROUtgoJ7OT2uFkzZV
gSkOxY2vkfREs7+3LMqd2tF8KYXNUyNsg5r36nJh4qwwJa18SxkroCmTE9jCKqmW
4jk1Ew4wy6biJBaLI/M/tRXoE6wDI0ek2jVOJecF4N2LM3Gq0LsW0rojrm7rDirD
r3Kbl6uGfSz7QewK41VYkkNgaCuPZiPMJjN60wizAjfI5TogzAGAfapcKCr5FzoX
S0dVWTIXOvQoHSK+7Is6TvzMHZ+P+/Z99rLT2qHTGixSkGCyip50//bWQ8d9l9r0
IVk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:51 2024 by rpki-client on console-ams.rpki-client.org