Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/aRUfJ2XW4t3j4AJeaf2JdH5AKN4.roa
File: aRUfJ2XW4t3j4AJeaf2JdH5AKN4.roa (raw, json)
Hash identifier: Yg1kLJeTdhKSg89xv4yZR/9JoXkzbKrG0+K3NOOPewg=
Subject key identifier: 69:15:1F:27:65:D6:E2:DD:E3:E0:02:5E:69:FD:89:74:7E:40:28:DE
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018EADBE4EA1D3EE74E8811F64573F195C86
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/aRUfJ2XW4t3j4AJeaf2JdH5AKN4.roa
Signing time: Fri 05 Apr 2024 10:11:54 +0000
ROA not before: Fri 05 Apr 2024 10:11:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:ad:be:4e:a1:d3:ee:74:e8:81:1f:64:57:3f:19:5c:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 5 10:11:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=69151f2765d6e2dde3e0025e69fd89747e4028de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:6b:28:16:d4:e2:4d:04:52:3e:1f:67:b5:f5:
fd:9b:4c:9d:d2:ee:a0:67:68:38:a2:53:ae:2e:92:
fb:2d:5c:34:00:77:76:6a:0e:03:c8:4d:65:9b:1c:
cc:dc:64:6e:e5:eb:56:7b:ea:c0:37:06:7e:f3:2f:
3b:e8:80:a6:d9:c5:5e:09:c9:1b:87:4c:e4:ab:3a:
15:4b:d6:40:04:7b:e8:df:bc:81:aa:40:84:97:7a:
56:0a:d3:fd:0c:25:30:e5:21:8a:66:84:db:d2:2f:
42:f3:a8:57:93:cf:2d:b3:95:eb:fc:24:3b:90:d2:
95:47:3d:82:e7:98:f4:83:37:b1:f8:d4:98:88:51:
d5:d3:19:45:cd:16:a6:8e:fc:40:90:5c:05:44:fc:
85:9f:88:22:e9:f5:80:77:86:0e:5f:a9:e0:dd:18:
af:ef:f5:df:87:f1:14:ae:98:5a:fa:10:45:ff:e8:
78:e3:45:9e:11:1d:3e:29:9f:1f:b4:9c:47:bc:ae:
03:c4:ee:56:17:d1:d3:98:05:7e:5c:3f:8c:f4:1f:
7f:da:b4:e1:d1:1b:0b:36:6a:8a:9c:3f:fb:69:43:
6e:6a:a9:e8:f0:15:91:f0:e9:f6:df:da:d8:24:08:
61:04:27:32:e2:46:8d:2a:41:4b:8f:0f:10:0c:fc:
6f:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:15:1F:27:65:D6:E2:DD:E3:E0:02:5E:69:FD:89:74:7E:40:28:DE
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/aRUfJ2XW4t3j4AJeaf2JdH5AKN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
25:62:4c:cf:1d:2a:17:af:93:da:56:44:b6:9b:b3:52:49:54:
d4:4f:d3:e3:e5:33:45:6c:d5:84:b9:68:6c:f7:93:2a:df:d2:
3c:ef:c2:87:ea:ec:5e:69:59:38:22:96:58:4b:ac:b5:a9:9b:
a1:e9:69:3c:c4:33:7b:f6:ef:36:d7:09:e7:dc:ec:2f:d5:57:
7a:ba:6d:24:f5:71:49:c8:c0:1a:92:bb:59:1f:da:83:6e:5a:
06:d0:7e:64:05:4b:9b:c8:e6:f8:f3:fe:00:c5:17:ca:52:d3:
1e:7c:3d:30:82:90:3c:6a:c8:27:89:c8:28:e1:7d:ba:ae:b7:
e7:cd:f9:c8:4b:7f:98:9a:9d:50:72:15:7c:d0:54:13:30:ff:
fd:36:71:99:81:1a:73:4a:86:fc:7f:b1:af:de:c5:79:f4:c7:
e4:58:12:c4:5a:3b:fc:8e:97:3e:de:2e:5f:b2:41:ce:a8:c7:
c3:09:1c:83:d6:d5:11:12:3c:18:29:5a:e7:99:cd:c4:ca:61:
3c:41:68:6a:35:d6:9c:4c:56:18:97:41:7f:cb:8b:8e:2e:03:
d5:c9:21:d8:a1:36:42:d1:89:7c:38:a6:ff:a4:eb:68:cb:53:
05:7d:c0:00:9d:e6:06:50:81:ac:0c:81:fd:a9:9b:0c:69:fb:
cf:41:c3:84
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY6tvk6h0+506IEfZFc/GVyGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzYjNkYTNlY2I4YTdkNDMzZGUzODMzODY2N2IzNWU2OGRm
NzNmOGMwHhcNMjQwNDA1MTAxMTU0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2OTE1MWYyNzY1ZDZlMmRkZTNlMDAyNWU2OWZkODk3NDdlNDAyOGRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh2soFtTiTQRSPh9ntfX9m0yd0u6g
Z2g4olOuLpL7LVw0AHd2ag4DyE1lmxzM3GRu5etWe+rANwZ+8y876ICm2cVeCckb
h0zkqzoVS9ZABHvo37yBqkCEl3pWCtP9DCUw5SGKZoTb0i9C86hXk88ts5Xr/CQ7
kNKVRz2C55j0gzex+NSYiFHV0xlFzRamjvxAkFwFRPyFn4gi6fWAd4YOX6ng3Riv
7/Xfh/EUrpha+hBF/+h440WeER0+KZ8ftJxHvK4DxO5WF9HTmAV+XD+M9B9/2rTh
0RsLNmqKnD/7aUNuaqno8BWR8On239rYJAhhBCcy4kaNKkFLjw8QDPxvBQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFGkVHydl1uLd4+ACXmn9iXR+QCjeMB8GA1UdIwQY
MBaAFNOz2j7Lin1DPeODOGZ7NeaN9z+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODct
YzUzOTc5ZDY2Y2E1LzEvYVJVZkoyWFc0dDNqNEFKZWFmMkpkSDVBS040LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODctYzUzOTc5ZDY2Y2E1
LzEvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBACViTM8dKhevk9pWRLab
s1JJVNRP0+PlM0Vs1YS5aGz3kyrf0jzvwofq7F5pWTgillhLrLWpm6HpaTzEM3v2
7zbXCefc7C/VV3q6bST1cUnIwBqSu1kf2oNuWgbQfmQFS5vI5vjz/gDFF8pS0x58
PTCCkDxqyCeJyCjhfbqut+fN+chLf5ianVByFXzQVBMw//02cZmBGnNKhvx/sa/e
xXn0x+RYEsRaO/yOlz7eLl+yQc6ox8MJHIPW1RESPBgpWueZzcTKYTxBaGo11pxM
VhiXQX/Li44uA9XJIdihNkLRiXw4pv+k62jLUwV9wACd5gZQgawMgf2pmwxp+89B
w4Q=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:31 2024 by rpki-client on console-fra.rpki-client.org