Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/YR2HgNTNA8rCZpM5OfFPifbNDd4.roa
File: YR2HgNTNA8rCZpM5OfFPifbNDd4.roa (raw, json)
Hash identifier: fOT5zEpD/MyIF7+rjcl2rD9733YclNP0uWJCQtn9Nzc=
Subject key identifier: 61:1D:87:80:D4:CD:03:CA:C2:66:93:39:39:F1:4F:89:F6:CD:0D:DE
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CAFB2C6CC42A361C639F97AB771EE9777
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/YR2HgNTNA8rCZpM5OfFPifbNDd4.roa
Signing time: Thu 28 Dec 2023 09:12:58 +0000
ROA not before: Thu 28 Dec 2023 09:12:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:af:b2:c6:cc:42:a3:61:c6:39:f9:7a:b7:71:ee:97:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 28 09:12:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=611d8780d4cd03cac266933939f14f89f6cd0dde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:a5:e2:4e:75:0e:6f:b0:45:d6:d3:28:20:15:
bc:6d:88:cd:b9:9e:ed:fd:1e:0b:3b:60:47:88:43:
70:bb:ce:84:ed:81:6b:25:03:aa:83:9e:c4:f3:68:
9f:ec:63:36:50:3e:8e:92:72:46:c2:1c:39:4d:0c:
c0:73:b3:d2:3c:1c:65:44:c1:24:47:cf:73:e9:53:
b0:fd:25:e1:7d:ce:bd:46:18:7e:74:81:a4:53:bb:
e0:ab:df:90:9d:23:33:ba:c8:30:0c:33:63:50:98:
b7:d0:ee:8f:13:64:26:f1:74:ad:ad:6f:00:e2:27:
46:db:e7:26:de:fa:b9:67:00:6e:9e:34:a2:f5:fb:
17:b8:90:d3:d8:e9:30:b5:37:3d:39:1b:d9:79:53:
d9:2e:f7:68:62:3b:3e:01:59:a1:8c:35:8c:73:65:
15:bf:f9:e4:cc:05:4f:f3:54:69:b8:e2:99:89:3c:
d1:35:f4:f0:d4:6a:5b:c4:6b:67:37:69:19:7e:46:
51:f2:fd:35:da:d2:4b:d1:32:81:9c:8f:9f:a2:2d:
e9:0e:8a:7d:f2:79:c9:9b:8c:e7:ee:18:4c:12:96:
c6:95:b5:5d:d6:97:43:08:2d:c6:48:9c:22:b8:5d:
50:93:38:c9:50:98:fc:2d:20:cf:a9:4a:4e:ee:a9:
d3:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:1D:87:80:D4:CD:03:CA:C2:66:93:39:39:F1:4F:89:F6:CD:0D:DE
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/YR2HgNTNA8rCZpM5OfFPifbNDd4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
5c:28:67:75:bd:90:6d:95:82:02:ec:fe:88:91:1f:8a:cb:dd:
a2:99:70:a3:a9:e8:36:85:80:d3:da:8e:c3:35:66:0f:8e:d4:
a2:18:88:4f:c3:f7:e1:42:cc:54:2f:70:c6:06:7e:bf:fe:cf:
c0:21:ce:fa:28:99:ca:93:c0:ba:17:d5:c1:cd:80:76:52:71:
9b:15:f4:01:25:a1:e5:64:8a:ff:4c:6c:a5:06:e5:da:49:cd:
1c:04:88:67:f4:5b:08:2f:30:19:31:c4:8a:61:34:71:4c:3b:
83:a4:32:01:06:0f:64:f2:77:80:bc:0a:e7:1e:51:52:4b:56:
7d:71:fb:30:89:0d:cd:56:8a:e8:02:1e:03:4f:cc:a7:b3:7a:
1d:7c:60:10:9d:37:12:13:34:f8:b6:24:8b:94:f3:e0:05:b5:
0a:59:73:8e:f7:31:62:b5:d9:d1:0f:5d:da:56:c4:c4:a8:35:
fa:0f:6f:53:4f:14:ff:99:4f:31:51:fe:42:67:8a:ba:ce:0a:
08:3f:a2:4a:ea:c5:68:d2:e1:73:68:b7:66:a5:9d:20:19:48:
d9:b4:2e:c0:8c:fe:60:91:2f:6b:24:b2:3d:c1:d8:33:96:5b:
fe:e8:fd:35:e8:d6:85:9b:f3:8a:26:95:84:ff:19:99:00:b6:
12:75:02:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:51 2024 by rpki-client on console-ams.rpki-client.org