Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/dPoWAKy-lY4nhnEUdFnrd-EWWTc.roa
File: dPoWAKy-lY4nhnEUdFnrd-EWWTc.roa (raw, json)
Hash identifier: w2Jw3DqaQxNoC0kncrT0C4G6ljITy3r9x0DaOpw8DdI=
Subject key identifier: 74:FA:16:00:AC:BE:95:8E:27:86:71:14:74:59:EB:77:E1:16:59:37
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018ED4CB256F094A6B7B94A0376BB6CDD978
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/dPoWAKy-lY4nhnEUdFnrd-EWWTc.roa
Signing time: Sat 13 Apr 2024 00:11:06 +0000
ROA not before: Sat 13 Apr 2024 00:11:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:d4:cb:25:6f:09:4a:6b:7b:94:a0:37:6b:b6:cd:d9:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 13 00:11:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=74fa1600acbe958e278671147459eb77e1165937
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:37:02:dc:1d:43:28:fe:4b:9a:a9:a3:37:5f:
56:23:0a:9e:a6:94:37:a0:61:ff:b3:f9:4c:d7:6a:
68:f9:fc:20:f7:34:67:e4:91:d1:22:17:4a:ce:76:
ea:63:d1:0b:70:2c:d1:5a:d3:f6:70:09:e1:09:d8:
0b:d0:ee:2a:11:1d:cd:18:11:c7:06:15:21:13:de:
91:64:7c:0d:14:1e:a4:d6:23:ae:64:5f:28:ab:09:
a9:d1:8e:6b:31:44:f6:db:90:33:2b:12:45:f6:46:
fe:6f:fa:1f:03:e9:39:9d:e5:5e:4e:1c:d8:b8:58:
5d:da:f6:e5:64:5f:f4:b9:29:f5:81:4c:36:75:16:
b0:23:17:b5:bd:db:c2:36:e4:ba:c4:7b:7c:8c:28:
33:41:02:89:ad:08:75:36:05:29:04:80:0c:39:50:
c2:e8:a4:d2:b8:68:4d:e0:b5:41:fe:00:c0:26:77:
23:ed:28:1b:c3:b9:46:de:2e:16:a8:90:b8:5a:2b:
f1:86:25:04:c1:65:aa:d6:45:30:53:bb:09:44:89:
91:ca:16:df:84:b5:3a:24:45:a9:a4:9d:45:4f:02:
3d:b8:ac:92:df:32:af:09:8b:38:7a:93:5b:4c:6c:
2b:82:1d:16:d3:fa:28:26:f4:0a:3d:89:4b:3d:f4:
d5:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:FA:16:00:AC:BE:95:8E:27:86:71:14:74:59:EB:77:E1:16:59:37
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/dPoWAKy-lY4nhnEUdFnrd-EWWTc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
a1:30:90:ff:3a:33:2f:43:6e:e6:90:ec:84:f2:61:fb:49:3f:
cc:27:c5:78:f8:d8:20:d6:b6:84:c5:00:fb:d7:8c:d3:0a:f1:
f3:fc:21:8b:36:3f:f4:c9:59:82:69:12:ae:19:a4:57:b4:1a:
85:f8:21:9b:61:6a:7d:df:90:a8:78:ab:96:f3:11:ad:a7:12:
4e:bf:0a:dc:c7:86:af:07:41:29:e4:25:10:70:34:b3:e8:51:
b0:04:6e:14:33:0b:f3:63:6e:f9:c4:ae:3b:03:33:79:5a:98:
69:44:63:d9:01:d6:87:03:9f:4d:e7:4d:27:43:3a:a2:2b:ec:
6a:11:f3:66:9a:82:58:a3:5c:c9:fb:99:d0:2d:34:09:fb:37:
29:55:63:14:1f:ec:6e:27:42:06:62:61:80:ca:ea:38:88:3a:
4a:d1:d8:02:14:01:43:c7:69:db:df:7e:53:a4:f2:b4:8f:b8:
9a:e9:68:5a:3c:4b:ad:8b:88:05:0a:16:5b:74:a6:be:32:df:
0b:64:04:81:58:66:d6:73:e7:58:d7:20:64:e4:7a:bd:01:46:
85:6c:91:8d:d4:15:67:a0:d2:3d:e1:73:81:a8:08:30:39:08:
85:ac:ab:05:0d:a1:f9:c2:3d:20:02:a2:fb:fb:50:46:a2:65:
3a:44:04:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:32 2024 by rpki-client on console-fra.rpki-client.org