Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/YTxmhGdhfNjnpeIwkIeuSmKVADU.roa
File: YTxmhGdhfNjnpeIwkIeuSmKVADU.roa (raw, json)
Hash identifier: v6dmV3sH9EencK+ZD9b1lcjuOLRfwUGbb+KQxLgjcbs=
Subject key identifier: 61:3C:66:84:67:61:7C:D8:E7:A5:E2:30:90:87:AE:4A:62:95:00:35
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018C9D74ACEEFBE3F2B88F30AC8AB853C1EF
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/YTxmhGdhfNjnpeIwkIeuSmKVADU.roa
Signing time: Sun 24 Dec 2023 20:11:58 +0000
ROA not before: Sun 24 Dec 2023 20:11:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:9d:74:ac:ee:fb:e3:f2:b8:8f:30:ac:8a:b8:53:c1:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 24 20:11:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=613c668467617cd8e7a5e2309087ae4a62950035
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d1:fe:da:8f:8b:bc:6e:f6:0a:24:d6:6d:c7:
b7:57:bd:76:a8:5b:2e:66:37:32:d8:b9:f8:5e:51:
f9:6f:49:d3:33:95:39:32:89:9d:44:18:63:fb:67:
e2:87:0d:9a:cf:4d:08:ae:9c:d8:b9:51:bf:f3:44:
7b:24:36:c0:6e:f0:8d:98:d7:5c:da:cb:f0:c1:ef:
c7:25:3e:cf:80:97:64:87:21:9c:9e:83:8d:eb:91:
11:e4:07:77:27:83:eb:80:9e:75:c9:f5:68:19:22:
6b:05:73:ab:30:0c:55:89:0d:27:44:5e:95:57:f9:
52:34:cc:24:15:b4:d6:e8:df:40:3f:d5:68:4f:8c:
99:24:23:c9:f9:5a:9e:97:ff:f1:81:bc:69:14:bd:
f0:1f:b5:2c:59:ba:b4:05:c2:92:08:cd:52:34:07:
d6:6b:3b:40:87:7c:bb:68:31:c4:6a:4d:48:8d:e7:
55:31:17:cf:60:dc:48:05:2e:1f:d8:9e:23:56:5a:
cc:c1:64:8e:b1:e9:08:cd:a5:bc:96:e0:10:ff:8f:
48:16:d4:86:d0:f3:f6:fd:e8:d2:63:7e:5f:e1:fb:
bc:b4:e6:2f:08:7b:1e:dd:e1:22:26:3f:45:3b:f7:
c5:00:81:d8:2a:8b:5c:fa:c8:79:9e:74:73:32:e3:
49:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:3C:66:84:67:61:7C:D8:E7:A5:E2:30:90:87:AE:4A:62:95:00:35
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/YTxmhGdhfNjnpeIwkIeuSmKVADU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
7d:4d:2e:66:c7:f8:ff:60:64:87:35:e0:c3:96:3f:0b:95:a2:
90:00:82:f3:6f:b9:d5:02:2f:c3:81:87:a1:ba:02:f1:e8:63:
88:64:a3:6a:7b:28:8e:24:c0:2c:06:83:67:36:9e:62:50:b4:
09:c4:a1:60:b5:b0:4a:e5:fd:9a:ee:19:aa:7f:79:71:96:e6:
c1:ef:18:31:e0:d6:d4:1d:b3:28:2f:d9:1c:06:2c:e6:f7:6b:
7a:21:64:3d:48:76:57:20:b2:b9:01:c3:c9:d8:51:b1:1a:75:
5e:ee:d7:22:43:1a:4a:ea:82:a4:53:29:fe:8e:3e:c3:1f:18:
99:9d:e2:eb:99:dd:44:84:1f:50:c0:ed:28:9c:17:57:03:8f:
1c:be:5a:61:63:97:06:f3:3c:b8:48:ec:fa:54:a0:91:20:a8:
a0:7a:8c:77:64:09:fb:22:0f:b4:20:24:ed:a0:78:c3:bf:25:
f6:2f:c9:86:bd:f1:45:a1:56:1a:d8:c1:f9:f9:4c:ce:1c:e7:
a5:f7:59:01:42:86:25:0d:8c:90:7f:f3:52:35:f5:73:fa:6f:
3e:d7:53:3a:04:ed:2a:c4:94:1c:6f:a9:42:45:86:71:f9:20:
4d:b3:ab:a9:d7:c2:f8:e5:35:71:c4:8a:85:a6:91:68:16:d2:
89:52:7e:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:31 2024 by rpki-client on console-fra.rpki-client.org