Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/b-j7W9NmczgY_YMcWaKS6n0NhgM.roa
File: b-j7W9NmczgY_YMcWaKS6n0NhgM.roa (raw, json)
Hash identifier: /WhGDmpdUjU4uYkeJjaZR3Akr/oMkrWUGvuvTXow3+U=
Subject key identifier: 6F:E8:FB:5B:D3:66:73:38:18:FD:83:1C:59:A2:92:EA:7D:0D:86:03
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CA3E49E75BDFC838856DA7367FCE356C1
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/b-j7W9NmczgY_YMcWaKS6n0NhgM.roa
Signing time: Tue 26 Dec 2023 02:11:58 +0000
ROA not before: Tue 26 Dec 2023 02:11:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:a3:e4:9e:75:bd:fc:83:88:56:da:73:67:fc:e3:56:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 26 02:11:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6fe8fb5bd366733818fd831c59a292ea7d0d8603
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:06:8a:3e:12:f3:69:45:ed:68:35:76:31:2b:
3e:72:e1:e8:46:3d:93:e3:15:63:e3:34:3f:13:22:
91:d3:c4:65:de:71:f8:af:fb:1b:5a:5e:3f:56:95:
de:26:ed:8b:cc:e8:0b:d8:aa:d7:59:39:00:ea:70:
b1:2f:d0:03:49:83:56:4d:a2:0f:06:09:ac:0a:48:
c1:fc:51:c6:2e:15:a1:ad:1f:ab:2d:d0:69:62:e6:
40:70:0c:1f:38:32:96:9e:55:d2:4a:2f:8f:96:c0:
13:00:a8:6f:6d:d5:9b:ac:2d:f8:ea:44:98:e1:5f:
23:e0:94:23:a0:dc:de:30:62:03:36:57:43:53:b2:
0e:41:d9:ed:1d:fd:f2:66:fb:59:ec:c2:c4:87:13:
9e:37:f1:55:82:78:c1:69:13:6f:8f:7e:bf:68:88:
a3:c4:91:7d:e9:0b:d7:6e:40:5c:56:54:8b:f0:91:
3e:1b:28:dc:5a:0b:5b:25:6a:9a:c3:7a:a0:70:74:
53:91:3e:1d:2f:fe:5b:68:86:29:e9:90:4a:6b:22:
e1:92:57:0a:2f:7c:b5:c0:04:ad:68:c5:af:88:59:
31:3e:98:6b:f1:c2:cc:6c:e7:5f:04:eb:83:29:09:
a8:85:da:3a:99:76:63:f4:e7:63:58:17:b9:58:b8:
e6:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:E8:FB:5B:D3:66:73:38:18:FD:83:1C:59:A2:92:EA:7D:0D:86:03
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/b-j7W9NmczgY_YMcWaKS6n0NhgM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
50:bc:a4:19:44:1a:95:c4:89:b0:4a:b8:33:1c:60:1c:2f:42:
11:a9:67:86:c6:d2:d3:2f:ad:c7:0c:15:3b:a9:36:c5:79:2c:
52:59:90:c3:3b:e1:fc:b4:fb:f7:c2:8c:67:df:1c:64:4d:64:
fa:93:58:9f:f9:89:b0:ea:2b:60:ed:d1:25:96:e0:dd:52:bd:
9c:3a:44:6b:ee:86:41:71:e0:0f:8f:2c:db:b6:95:4a:e9:7d:
1b:df:c0:59:ee:aa:a9:5d:e9:cd:b1:48:c5:c3:7d:71:43:15:
11:d5:c7:93:05:d3:47:22:af:4f:a1:5a:79:92:60:f6:bc:b5:
d4:27:6e:2a:5d:8e:09:f7:10:d7:67:5d:74:df:90:98:c4:6d:
f7:9c:99:0c:6b:07:e8:e0:61:cd:8b:05:a4:34:83:1e:44:af:
69:88:35:60:0f:15:18:79:dc:3b:fd:f4:e9:70:d9:d3:25:7c:
6c:7a:fd:cf:08:f0:95:fb:15:f7:98:5d:b9:c8:c9:03:4b:e4:
a3:e8:86:31:5b:f1:53:b5:c4:00:6d:07:c0:c7:f8:82:7b:9b:
d5:cb:f2:93:fb:e7:2a:40:f2:b9:4d:64:46:1c:db:df:57:b4:
e5:3f:5d:21:64:5f:68:9b:3e:0a:1c:1c:ba:ad:80:52:ed:c6:
91:95:76:0c
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYyj5J51vfyDiFbac2f841bBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzYjNkYTNlY2I4YTdkNDMzZGUzODMzODY2N2IzNWU2OGRm
NzNmOGMwHhcNMjMxMjI2MDIxMTU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZmU4ZmI1YmQzNjY3MzM4MThmZDgzMWM1OWEyOTJlYTdkMGQ4NjAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlwaKPhLzaUXtaDV2MSs+cuHoRj2T
4xVj4zQ/EyKR08Rl3nH4r/sbWl4/VpXeJu2LzOgL2KrXWTkA6nCxL9ADSYNWTaIP
BgmsCkjB/FHGLhWhrR+rLdBpYuZAcAwfODKWnlXSSi+PlsATAKhvbdWbrC346kSY
4V8j4JQjoNzeMGIDNldDU7IOQdntHf3yZvtZ7MLEhxOeN/FVgnjBaRNvj36/aIij
xJF96QvXbkBcVlSL8JE+GyjcWgtbJWqaw3qgcHRTkT4dL/5baIYp6ZBKayLhklcK
L3y1wAStaMWviFkxPphr8cLMbOdfBOuDKQmohdo6mXZj9OdjWBe5WLjmWQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFG/o+1vTZnM4GP2DHFmikup9DYYDMB8GA1UdIwQY
MBaAFNOz2j7Lin1DPeODOGZ7NeaN9z+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODct
YzUzOTc5ZDY2Y2E1LzEvYi1qN1c5Tm1jemdZX1lNY1dhS1M2bjBOaGdNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODctYzUzOTc5ZDY2Y2E1
LzEvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAFC8pBlEGpXEibBKuDMc
YBwvQhGpZ4bG0tMvrccMFTupNsV5LFJZkMM74fy0+/fCjGffHGRNZPqTWJ/5ibDq
K2Dt0SWW4N1SvZw6RGvuhkFx4A+PLNu2lUrpfRvfwFnuqqld6c2xSMXDfXFDFRHV
x5MF00cir0+hWnmSYPa8tdQnbipdjgn3ENdnXXTfkJjEbfecmQxrB+jgYc2LBaQ0
gx5Er2mINWAPFRh53Dv99Olw2dMlfGx6/c8I8JX7FfeYXbnIyQNL5KPohjFb8VO1
xABtB8DH+IJ7m9XL8pP75ypA8rlNZEYc299XtOU/XSFkX2ibPgocHLqtgFLtxpGV
dgw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:32 2024 by rpki-client on console-fra.rpki-client.org