Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/WAapmHC0Vk8dlvrPVTJPva_SUA0.roa
File: WAapmHC0Vk8dlvrPVTJPva_SUA0.roa (raw, json)
Hash identifier: kdC03tkUfYwCyrhvUUpXH167U1DDvfN2ovgzrgzOLME=
Subject key identifier: 58:06:A9:98:70:B4:56:4F:1D:96:FA:CF:55:32:4F:BD:AF:D2:50:0D
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018ECB92002D57AA1E95AE231A7EBEE27CF0
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/WAapmHC0Vk8dlvrPVTJPva_SUA0.roa
Signing time: Thu 11 Apr 2024 05:12:06 +0000
ROA not before: Thu 11 Apr 2024 05:12:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:cb:92:00:2d:57:aa:1e:95:ae:23:1a:7e:be:e2:7c:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 11 05:12:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5806a99870b4564f1d96facf55324fbdafd2500d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:de:cb:af:f4:0c:04:ea:cb:06:52:45:7c:f9:
c6:8d:1c:6c:71:64:06:69:6e:01:ab:7b:c6:ad:60:
ae:f9:48:10:92:b7:fb:e9:16:a1:1a:da:bc:34:8a:
a6:dd:a6:36:00:9f:6e:e2:87:f4:7a:94:11:ce:b5:
ab:7d:d2:23:1e:10:3e:22:df:ee:b5:20:56:c8:62:
1c:22:44:7e:c0:d0:3a:08:f7:4e:c5:af:21:c4:39:
84:31:95:5b:50:8a:29:b8:b3:09:5d:d7:a1:fd:d6:
8f:16:e2:56:86:b3:05:34:15:61:02:0d:92:cd:b0:
b0:3d:82:bf:c3:36:aa:e0:b5:6a:e1:43:ed:22:7d:
f9:9e:ef:28:1b:55:2d:af:49:78:af:a1:29:a7:0d:
1e:5b:a4:e6:84:79:aa:59:f6:8d:16:41:15:88:35:
ef:8d:9e:9e:c9:22:44:cb:90:06:ff:be:69:87:a7:
f1:92:ce:d8:fb:8f:e2:2e:3e:8d:af:5b:31:28:86:
1e:ef:20:b9:89:c7:5d:d8:6a:0a:a0:62:e1:da:6f:
a1:39:c0:49:a2:ef:88:59:80:f9:ae:e3:a3:bb:db:
59:b0:3a:a6:d5:d7:88:49:a6:5d:7a:0d:9e:d8:d4:
8d:97:65:a2:db:69:85:94:94:4b:5e:ca:5b:ab:03:
8e:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:06:A9:98:70:B4:56:4F:1D:96:FA:CF:55:32:4F:BD:AF:D2:50:0D
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/WAapmHC0Vk8dlvrPVTJPva_SUA0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
a4:fb:8f:d6:6b:22:f2:da:26:cd:83:e1:c8:33:6c:1a:12:67:
24:c2:c5:29:a6:ac:fd:46:02:bc:3b:58:c3:57:72:51:02:15:
6b:a6:f4:1d:cd:8e:b5:16:b0:87:4e:bf:cb:f5:09:cb:1a:85:
76:ca:36:7d:ad:c2:e4:15:17:61:bf:82:3d:53:32:c2:d3:7c:
46:ca:59:51:f0:56:33:16:72:83:3b:22:55:8d:05:bb:6f:6d:
7e:b5:41:1e:b0:24:2f:b5:a9:30:87:0a:ad:6a:24:c4:95:75:
4b:53:5d:f1:3b:a2:75:77:26:ee:56:80:a0:1b:04:94:39:f5:
2d:ae:03:2c:4b:bd:7e:b2:89:a0:c8:33:ce:f4:0c:4f:fd:06:
b2:1c:8a:7b:33:df:23:2d:b4:c7:12:78:d5:b8:17:f9:22:2a:
65:5a:6a:a7:8a:15:8c:69:41:9a:54:b4:7b:0b:b6:05:54:60:
d2:35:08:f8:27:b6:2e:a0:5c:45:2b:35:46:2a:6e:72:8c:99:
09:85:57:ba:87:e3:de:76:57:57:f1:bc:b5:95:2e:ed:1e:5d:
b2:8e:47:0a:52:8e:b2:9c:88:0b:04:f5:7f:14:bd:c8:c2:33:
38:ea:f1:fc:0d:0c:45:50:fc:f2:86:d8:f4:c2:ad:60:eb:02:
b6:34:37:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:31 2024 by rpki-client on console-fra.rpki-client.org