Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/YYh0lYq-63OpSE_Hrnpry7mtk0c.roa
File: YYh0lYq-63OpSE_Hrnpry7mtk0c.roa (raw, json)
Hash identifier: 7JIV73F9F6wbymJDzEygus7gyO6lV6tgAeIudtCahPw=
Subject key identifier: 61:88:74:95:8A:BE:EB:73:A9:48:4F:C7:AE:7A:6B:CB:B9:AD:93:47
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018DF41CDB2ADED4C2AF006CA53DDCBC4023
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/YYh0lYq-63OpSE_Hrnpry7mtk0c.roa
Signing time: Thu 29 Feb 2024 09:05:48 +0000
ROA not before: Thu 29 Feb 2024 09:05:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:c109:b478/128 maxlen: 128
2001:67c:64:ffff:0:18d:e84f:370a/128 maxlen: 128
2001:67c:64:ffff:0:18d:f41c:5be/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f4:1c:db:2a:de:d4:c2:af:00:6c:a5:3d:dc:bc:40:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Feb 29 09:05:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=618874958abeeb73a9484fc7ae7a6bcbb9ad9347
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:2d:c1:12:1c:ab:07:86:39:5a:22:45:a4:9d:
eb:83:45:28:ce:86:99:1a:4f:90:f7:31:55:8f:cc:
19:09:b5:72:73:5d:57:3f:33:eb:96:d0:6b:db:3f:
5a:0c:5b:59:74:47:0f:1a:3f:fe:e0:ad:3a:e4:74:
22:e9:35:bc:1b:e9:99:e3:24:22:81:17:d4:ae:05:
41:ba:57:50:76:ed:ec:ab:d3:69:5e:9c:5f:db:70:
72:65:e9:b4:5c:56:2d:fd:fb:f8:9f:d5:c4:46:e0:
39:45:8a:0f:18:9b:da:02:f7:52:ca:4f:43:b7:3c:
59:15:ff:24:dd:86:9c:34:03:39:de:86:e1:e0:ab:
1e:22:77:81:f7:51:0b:25:5a:c5:2b:bf:d0:6f:8e:
ae:b0:07:38:f2:c8:2e:ef:ef:f6:cb:61:49:a6:d4:
47:9a:a9:b5:56:49:8a:80:54:f8:b5:09:54:2e:4b:
ed:5b:fa:cd:52:a4:fb:9f:d8:66:7d:16:9e:69:78:
70:03:67:8b:00:8b:fa:5b:3c:17:ea:19:d5:ec:bb:
2b:26:4a:70:dc:6f:c3:1e:fc:03:02:b7:de:a4:2c:
d2:05:79:bf:d0:c3:4c:2a:a5:87:8a:60:99:7d:c9:
09:53:77:29:10:f5:c7:de:d0:5e:89:27:70:ab:7a:
3f:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:88:74:95:8A:BE:EB:73:A9:48:4F:C7:AE:7A:6B:CB:B9:AD:93:47
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/YYh0lYq-63OpSE_Hrnpry7mtk0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
2d:e0:44:80:9a:3a:8d:2b:3c:24:f8:87:17:c7:2a:d3:0c:75:
10:86:dd:ff:b6:07:3a:b3:e0:26:f3:d3:5f:be:e5:3b:5b:65:
48:fb:cd:98:14:a8:93:4d:48:54:80:44:74:e9:3d:f2:7c:bd:
59:ab:89:9e:35:da:95:a9:08:06:93:59:a5:ab:2a:02:59:cc:
d3:88:2b:f1:7f:3a:23:e9:e3:63:11:76:68:0d:e1:50:32:ef:
c2:55:82:42:2e:c2:e0:43:ab:d9:a8:3e:91:64:6d:d3:8b:e2:
b2:4c:9f:0a:ab:da:50:a0:f7:4f:17:6f:ac:8c:40:b2:03:fe:
a8:77:3c:a9:71:ae:f1:ae:44:91:db:c4:53:35:ca:29:4a:27:
55:a9:4a:e3:6b:13:75:e7:1e:f9:7c:79:1d:28:ed:25:08:7a:
aa:50:b7:97:93:8a:92:66:82:48:47:56:2f:c3:9f:41:ae:35:
fe:f4:de:df:b0:fe:bc:4c:58:a4:68:77:c0:4e:14:61:81:f7:
f7:57:6b:cf:73:a0:f1:fd:19:23:a0:c6:36:a9:42:0f:4b:99:
61:3e:1e:b0:ac:39:f8:dc:c4:83:d1:c9:84:40:c3:8b:42:d8:
dd:41:33:4f:ca:1d:61:e7:b7:6b:ab:9d:f7:6a:4f:a9:f4:b9:
d3:a7:d1:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:51 2024 by rpki-client on console-ams.rpki-client.org