Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/YgqwG0QE94sJ9D2ZMg3X_sXJKZA.roa
File: YgqwG0QE94sJ9D2ZMg3X_sXJKZA.roa (raw, json)
Hash identifier: 24xdh7Hvk+EP2m67Cn6Ogf15ATA3hOrx9YC4DdCAhHQ=
Subject key identifier: 62:0A:B0:1B:44:04:F7:8B:09:F4:3D:99:32:0D:D7:FE:C5:C9:29:90
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018D683B58AE19DBAEB487135D67D1243A61
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/YgqwG0QE94sJ9D2ZMg3X_sXJKZA.roa
Signing time: Fri 02 Feb 2024 05:12:16 +0000
ROA not before: Fri 02 Feb 2024 05:12:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:4013:c01e/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:68:3b:58:ae:19:db:ae:b4:87:13:5d:67:d1:24:3a:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Feb 2 05:12:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=620ab01b4404f78b09f43d99320dd7fec5c92990
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:76:9a:5e:f1:ac:77:5e:2b:03:dd:ef:62:6a:
8e:20:0d:9a:5c:31:e2:83:d9:12:a3:27:76:bf:37:
57:47:6e:f9:bc:15:f0:57:fe:d4:e5:52:2e:51:49:
10:e1:53:09:4a:ae:c6:f9:b2:4e:f2:a4:c8:84:6b:
fd:6b:7e:21:16:a4:02:22:b0:a2:17:98:ba:00:ba:
b5:f6:00:ea:ee:2f:27:25:0f:91:0e:83:78:f9:c3:
ea:a0:de:f1:80:d4:cc:d9:73:63:e8:54:be:f6:54:
3b:a3:ef:39:2c:2d:77:33:6c:4d:c5:ef:99:1e:cc:
ee:66:07:e8:58:e0:f2:47:e0:e0:39:d1:61:44:c6:
3e:5d:3c:c8:a4:c2:01:12:77:a5:14:80:ea:c9:87:
4c:05:71:8d:4a:54:d6:47:7e:5a:ed:eb:c2:de:e1:
f9:f2:3c:f2:d1:6d:f6:7e:6d:2e:8d:6a:a4:6c:1e:
17:26:cd:fc:4e:ee:08:ce:29:9d:90:51:fa:76:06:
52:e5:c6:b1:48:16:8b:76:0d:39:2a:eb:fa:e4:1c:
06:e9:7d:40:5b:68:85:76:66:f4:9b:2d:9d:39:0f:
c9:9d:a2:3c:5b:b0:1f:d9:3a:34:14:ec:e3:dd:d1:
6e:7d:d8:3a:86:8d:32:32:db:e9:a7:33:12:3e:17:
4e:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:0A:B0:1B:44:04:F7:8B:09:F4:3D:99:32:0D:D7:FE:C5:C9:29:90
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/YgqwG0QE94sJ9D2ZMg3X_sXJKZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
9e:56:55:4c:e5:4b:35:29:15:7f:5f:db:d2:f1:5b:00:02:eb:
71:18:94:71:53:35:49:74:96:33:46:37:a9:a9:b1:25:04:f7:
c6:78:85:c1:ff:0b:90:69:6e:30:42:db:70:e0:12:12:fb:29:
15:ba:b1:42:82:c0:3f:16:92:ce:90:74:ea:19:88:3a:db:08:
8c:a4:1b:f5:e5:e1:5a:e8:56:4e:bb:04:ec:dc:6d:99:3a:47:
eb:7b:31:7a:5f:90:20:37:fa:2b:71:77:ba:0c:8c:88:03:5e:
49:fc:c3:dc:cd:ea:e4:ed:29:f7:f7:61:cd:38:be:e6:e8:9c:
ec:f9:8d:51:01:9f:44:af:90:67:f3:5b:ae:e4:e7:71:c3:1f:
74:e7:c5:35:c2:fe:b7:a8:1b:25:ac:aa:e9:f7:fb:ca:43:09:
19:93:f9:47:5c:af:68:8c:3c:67:02:cd:6c:81:07:5c:eb:6f:
72:a0:8c:0f:6d:f2:af:b3:04:49:9a:92:9b:23:be:85:cb:19:
77:28:34:48:60:02:fa:96:11:c6:31:05:15:96:8d:c1:53:ad:
9a:dd:a2:dd:86:68:43:fa:33:4e:a3:cb:3f:f0:3c:4e:f7:6b:
f2:7a:49:41:d3:68:27:19:eb:50:e2:ec:46:b1:f8:89:51:05:
14:35:c0:cd
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY1oO1iuGduutIcTXWfRJDphMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzYjNkYTNlY2I4YTdkNDMzZGUzODMzODY2N2IzNWU2OGRm
NzNmOGMwHhcNMjQwMjAyMDUxMjE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MjBhYjAxYjQ0MDRmNzhiMDlmNDNkOTkzMjBkZDdmZWM1YzkyOTkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt3aaXvGsd14rA93vYmqOIA2aXDHi
g9kSoyd2vzdXR275vBXwV/7U5VIuUUkQ4VMJSq7G+bJO8qTIhGv9a34hFqQCIrCi
F5i6ALq19gDq7i8nJQ+RDoN4+cPqoN7xgNTM2XNj6FS+9lQ7o+85LC13M2xNxe+Z
HszuZgfoWODyR+DgOdFhRMY+XTzIpMIBEnelFIDqyYdMBXGNSlTWR35a7evC3uH5
8jzy0W32fm0ujWqkbB4XJs38Tu4IzimdkFH6dgZS5caxSBaLdg05Kuv65BwG6X1A
W2iFdmb0my2dOQ/JnaI8W7Af2To0FOzj3dFufdg6ho0yMtvppzMSPhdOUwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFGIKsBtEBPeLCfQ9mTIN1/7FySmQMB8GA1UdIwQY
MBaAFNOz2j7Lin1DPeODOGZ7NeaN9z+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODct
YzUzOTc5ZDY2Y2E1LzEvWWdxd0cwUUU5NHNKOUQyWk1nM1hfc1hKS1pBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODctYzUzOTc5ZDY2Y2E1
LzEvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAJ5WVUzlSzUpFX9f29Lx
WwAC63EYlHFTNUl0ljNGN6mpsSUE98Z4hcH/C5BpbjBC23DgEhL7KRW6sUKCwD8W
ks6QdOoZiDrbCIykG/Xl4VroVk67BOzcbZk6R+t7MXpfkCA3+itxd7oMjIgDXkn8
w9zN6uTtKff3Yc04vubonOz5jVEBn0SvkGfzW67k53HDH3TnxTXC/reoGyWsqun3
+8pDCRmT+Udcr2iMPGcCzWyBB1zrb3KgjA9t8q+zBEmakpsjvoXLGXcoNEhgAvqW
EcYxBRWWjcFTrZrdot2GaEP6M06jyz/wPE73a/J6SUHTaCcZ61Di7Eax+IlRBRQ1
wM0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:51 2024 by rpki-client on console-ams.rpki-client.org