Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/ZsJJBpu7o-BzqStPPIBfl7yy154.roa
File: ZsJJBpu7o-BzqStPPIBfl7yy154.roa (raw, json)
Hash identifier: HMdeZylFo/QaR9HSnUTipSgwFKIaz++2qN9AmiieyFY=
Subject key identifier: 66:C2:49:06:9B:BB:A3:E0:73:A9:2B:4F:3C:80:5F:97:BC:B2:D7:9E
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018EE2BF887ED3B0736BC048628275039854
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/ZsJJBpu7o-BzqStPPIBfl7yy154.roa
Signing time: Mon 15 Apr 2024 17:13:06 +0000
ROA not before: Mon 15 Apr 2024 17:13:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e2:bf:88:7e:d3:b0:73:6b:c0:48:62:82:75:03:98:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 15 17:13:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=66c249069bbba3e073a92b4f3c805f97bcb2d79e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:04:4a:5e:eb:6e:0f:3f:e9:64:05:7e:0b:8a:
86:53:fa:17:77:67:07:1b:b1:90:80:96:b5:b6:4e:
af:8e:60:00:fe:9b:41:8c:b9:4e:05:bb:a2:fa:23:
b2:62:95:9c:77:bc:da:eb:03:5e:eb:d4:9f:53:0b:
c7:b3:bc:e0:90:7a:57:d0:06:ac:4b:f9:09:cf:00:
f4:b0:ab:f5:b4:4e:df:31:26:7b:3e:78:82:00:12:
f9:23:ec:07:46:75:c7:04:1f:73:1a:26:5e:25:37:
b3:1a:6c:01:0b:47:cd:71:7b:9e:84:80:39:00:7c:
4f:06:a5:0a:5b:cb:d4:15:b6:b1:4a:97:c6:98:8e:
61:87:6a:1f:44:d9:eb:17:d5:d0:09:55:88:19:e1:
51:0a:f4:46:13:10:c1:0d:66:72:05:9a:eb:69:01:
cf:0f:2b:89:e1:77:92:3f:32:e4:6c:11:63:ac:f1:
1c:a9:34:4d:5d:42:63:d3:75:9b:54:10:ca:21:ad:
93:30:c1:19:ca:c4:03:db:f2:ba:b0:3b:d5:0c:34:
10:1a:c7:0b:c5:83:9b:d1:f6:1b:d0:f2:f4:4c:03:
90:f2:d6:48:70:d3:79:48:84:c0:67:99:76:52:fe:
53:11:f3:b8:1d:f8:0f:0c:e1:9c:32:27:5e:80:83:
d3:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:C2:49:06:9B:BB:A3:E0:73:A9:2B:4F:3C:80:5F:97:BC:B2:D7:9E
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/ZsJJBpu7o-BzqStPPIBfl7yy154.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
a4:9d:ac:78:dd:1c:45:46:ea:45:22:0a:2a:69:76:5a:cd:3f:
92:13:78:e9:8c:66:a1:97:aa:e1:39:f5:26:61:a1:b7:6e:b7:
ea:2a:86:b6:60:7d:c8:0f:13:43:69:9d:f0:31:9d:5e:4a:71:
74:0d:66:53:48:e9:0d:16:5b:e8:b4:79:e4:93:4b:e8:99:45:
c2:38:a5:a0:ba:e8:06:8e:ed:6f:18:a1:ff:23:57:32:d4:77:
0e:9c:3d:2e:a1:59:c5:b5:60:c9:5c:13:4b:30:c8:7b:02:c9:
c3:aa:a7:51:d8:6b:67:0b:f1:b1:ab:c0:58:55:70:7f:11:4a:
e7:62:5e:61:84:5d:ae:7c:0a:95:a6:d6:0c:d8:38:84:4b:ff:
95:8d:0b:6d:b3:41:1e:b6:49:29:c3:e1:5b:78:bc:d4:82:b0:
92:03:0a:1a:19:59:77:8b:08:55:60:11:df:9d:12:38:0e:43:
b1:0d:40:ec:4d:d0:f2:38:81:71:e3:c1:3d:d3:cc:f3:4c:c4:
62:41:e0:c8:03:08:ee:5e:9c:58:8b:28:56:43:2d:6a:cb:a6:
dc:d5:c6:72:89:d3:bb:04:73:20:9d:37:70:74:23:38:e1:27:
78:c5:45:a2:0c:dc:ae:86:9e:de:8a:74:23:4e:24:10:b1:44:
7f:c3:7e:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:31 2024 by rpki-client on console-fra.rpki-client.org