Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/YwAbpOZ0OSX3JggxyIKnH8dDxZg.roa
File: YwAbpOZ0OSX3JggxyIKnH8dDxZg.roa (raw, json)
Hash identifier: oqtCkrSR3xvyNeENjn2IPffgxmgy8zV5Hf54/kTUXB4=
Subject key identifier: 63:00:1B:A4:E6:74:39:25:F7:26:08:31:C8:82:A7:1F:C7:43:C5:98
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CE17AC33D6F991DD14D0553E75161E06C
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/YwAbpOZ0OSX3JggxyIKnH8dDxZg.roa
Signing time: Sun 07 Jan 2024 01:12:48 +0000
ROA not before: Sun 07 Jan 2024 01:12:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:e1:7a:c3:3d:6f:99:1d:d1:4d:05:53:e7:51:61:e0:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 7 01:12:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=63001ba4e6743925f7260831c882a71fc743c598
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:19:8b:7b:30:d9:37:13:15:df:39:30:89:d2:
84:6f:4c:ed:cc:91:13:5b:ef:81:74:8e:a1:ff:d9:
32:e4:4e:eb:b6:25:70:ed:47:08:33:e8:11:5a:f5:
95:ee:37:02:ee:40:51:2d:83:a2:23:84:6d:06:29:
58:fc:0f:d0:c0:80:21:fe:b9:b3:20:ef:55:cf:b0:
3b:9f:3a:af:ed:fb:64:9c:ca:80:c7:10:f7:22:76:
44:ed:27:a1:58:af:d9:0e:fe:df:0b:f7:ac:56:cc:
3f:8e:da:77:71:85:82:f2:67:4b:f6:c7:2f:e4:2d:
68:be:a4:81:2b:13:35:13:6e:74:53:23:24:24:a1:
6b:4e:5a:03:d0:9e:29:d2:fb:46:7e:60:45:32:44:
29:30:93:51:ea:04:49:a2:25:dc:f8:9e:90:68:07:
bb:31:6c:f3:f9:54:eb:8d:89:7c:75:cf:3d:66:ca:
dc:51:fc:55:02:e8:03:8b:cd:4d:4d:b0:d5:6f:07:
59:c1:3c:04:df:13:f9:c1:6f:c4:3f:62:91:9c:ff:
57:87:3a:40:b7:f3:d0:2c:cf:ac:ca:9e:e4:00:2a:
6a:d1:a5:45:bd:46:38:04:cf:39:f8:94:84:6a:e3:
61:66:af:c5:99:89:90:59:12:d3:be:79:7f:e5:c4:
ee:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:00:1B:A4:E6:74:39:25:F7:26:08:31:C8:82:A7:1F:C7:43:C5:98
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/YwAbpOZ0OSX3JggxyIKnH8dDxZg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
2e:36:c4:b6:9f:09:84:16:1c:de:e7:37:02:ab:e6:1a:e5:a9:
ea:c3:55:d6:f0:72:ec:90:ae:7a:6d:81:19:d3:a6:62:ca:3c:
3f:8e:d5:25:6b:13:99:7d:d3:35:60:d7:3d:53:0a:e4:5c:85:
92:21:4d:f3:fb:d0:87:d0:9f:53:a7:dd:56:1c:5d:87:fb:52:
6a:1a:6a:64:31:4d:84:d0:2e:01:f2:35:61:8b:dc:9b:2a:94:
d7:c1:18:7a:8f:a1:15:e9:0c:26:c4:1e:77:9f:f6:a3:6b:6a:
ed:32:b4:34:fb:55:58:9c:34:85:a2:4e:49:b8:12:bd:ef:47:
49:67:90:ac:00:fb:9b:6f:9c:6e:35:c9:47:48:c4:3f:2e:7a:
b3:e5:d8:74:b6:fa:1d:2f:f7:16:e8:7e:90:29:cf:ec:57:d5:
3c:a4:28:ed:45:1e:c3:1b:d3:0b:c2:0b:6f:f6:82:71:4b:be:
dd:79:fa:01:af:63:04:f6:b1:2b:03:7d:55:14:c0:d2:88:2f:
4b:94:cf:7b:f3:8c:45:c8:50:93:4c:b7:ac:26:e6:42:4b:54:
25:ad:df:00:04:a0:76:1c:65:8a:0d:9a:de:c5:12:0f:74:9a:
2a:b5:6c:e7:34:0e:20:46:bd:78:83:55:3c:be:8a:e3:a6:3d:
8f:75:27:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:25:54 2025 by rpki-client