Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/ccEREOQ8rMgoBKzC0Gjhe2LDcoo.roa
File: ccEREOQ8rMgoBKzC0Gjhe2LDcoo.roa (raw, json)
Hash identifier: G9MfqZj0lTDcLFUip9TOYIm+IAKMzPFZsFuETzXIDiY=
Subject key identifier: 71:C1:11:10:E4:3C:AC:C8:28:04:AC:C2:D0:68:E1:7B:62:C3:72:8A
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018EC5FE2B7ADFCF71A41984BD1EB837C475
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/ccEREOQ8rMgoBKzC0Gjhe2LDcoo.roa
Signing time: Wed 10 Apr 2024 03:12:32 +0000
ROA not before: Wed 10 Apr 2024 03:12:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:c5:fe:2b:7a:df:cf:71:a4:19:84:bd:1e:b8:37:c4:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 10 03:12:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=71c11110e43cacc82804acc2d068e17b62c3728a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:84:51:25:23:cd:5d:f8:88:3d:80:f8:8c:d7:
49:d3:bc:61:0c:ba:30:fd:ce:6f:0c:eb:fa:e0:3d:
d9:7d:ff:eb:d9:15:7d:25:78:f8:68:ae:d2:98:04:
17:3e:1f:d1:6a:bc:c5:15:69:7c:46:f0:57:56:dc:
b8:3c:93:16:69:ec:6c:0f:7d:14:88:bc:81:8a:de:
fa:45:ce:43:23:66:68:e4:85:ad:51:d8:8a:49:4e:
aa:4d:0f:6a:1f:32:86:00:6f:15:88:4b:8f:0a:a3:
b4:4b:ae:43:e5:6b:1f:dc:27:5d:a7:32:ff:0c:bf:
08:d0:3f:f5:c8:79:e3:df:ca:ea:15:2b:15:62:2f:
f8:62:77:eb:21:13:eb:c2:53:b4:5d:46:21:77:ba:
92:f7:1d:02:81:86:3b:b8:77:72:2f:bb:56:b9:dc:
c3:e5:a6:6b:d4:03:70:ac:61:53:6d:9e:20:6e:48:
fa:c3:f2:86:3c:e5:37:2b:e7:08:4b:42:fe:af:5a:
92:f8:c4:14:75:fa:2c:d1:d0:6e:a5:b1:32:be:06:
ea:17:dd:8c:fc:71:a3:3c:09:22:01:97:58:f9:01:
31:81:59:e1:93:9c:8c:65:8f:04:ec:f7:8b:38:1a:
a0:e6:73:fc:52:c0:d7:d8:a2:13:7b:3d:75:1d:21:
72:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:C1:11:10:E4:3C:AC:C8:28:04:AC:C2:D0:68:E1:7B:62:C3:72:8A
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/ccEREOQ8rMgoBKzC0Gjhe2LDcoo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
95:53:86:c8:1c:e4:cc:2a:04:08:c7:1b:45:36:31:bf:65:94:
01:97:2a:46:4d:e9:37:ee:e4:22:af:3e:5e:b7:27:b0:fb:7c:
9b:05:3d:36:4f:38:d9:1e:da:54:8e:b6:5f:14:53:9c:b1:e9:
cb:79:50:1d:62:9b:d4:b5:b5:b7:07:00:c6:9d:09:e3:ce:4d:
b5:82:c7:07:0c:1a:16:e2:96:33:c7:83:e7:65:38:2f:4f:91:
9e:01:31:84:d2:41:69:aa:45:a6:99:77:11:b3:9c:7d:f0:c8:
ac:a7:31:b4:bc:36:23:22:fa:ce:99:a6:6b:ce:45:70:01:ac:
0a:25:ab:b2:8a:cd:d0:47:89:df:78:74:06:c8:18:69:0d:3f:
ba:dd:49:56:2a:4b:78:42:d1:a3:05:cf:58:9f:ca:ff:dc:58:
52:d8:e0:11:e4:f5:1e:c9:98:19:8b:e9:cc:bd:ad:3a:b3:e5:
e2:36:3a:d6:ba:1c:c9:fd:fd:08:74:2a:75:ab:a9:bf:db:a5:
12:43:a3:83:62:81:36:d1:20:fb:97:09:7e:82:31:f9:45:8e:
ff:30:70:5f:98:49:43:50:28:9a:91:d9:aa:9d:f8:77:79:b8:
bb:8e:87:a2:3b:ef:de:5c:38:d7:17:91:8d:86:f4:ca:5d:4f:
b1:d4:21:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:32 2024 by rpki-client on console-fra.rpki-client.org