Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/df1blOXA6ASJC7sC0V3kLuOH6_8.roa
File: df1blOXA6ASJC7sC0V3kLuOH6_8.roa (raw, json)
Hash identifier: /u9LPjq3+V9s9naoUePtbowLvUYye00PoCNVcQk3Qng=
Subject key identifier: 75:FD:5B:94:E5:C0:E8:04:89:0B:BB:02:D1:5D:E4:2E:E3:87:EB:FF
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018EC96BC4AD7354B8E5072710B1A780B043
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/df1blOXA6ASJC7sC0V3kLuOH6_8.roa
Signing time: Wed 10 Apr 2024 19:11:06 +0000
ROA not before: Wed 10 Apr 2024 19:11:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:c9:6b:c4:ad:73:54:b8:e5:07:27:10:b1:a7:80:b0:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 10 19:11:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=75fd5b94e5c0e804890bbb02d15de42ee387ebff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:37:a5:ca:11:2a:2a:a1:16:60:f0:47:fb:a4:
ea:35:a4:b9:5b:59:7f:42:ac:64:d2:45:d3:d4:af:
8f:ba:8b:0c:1f:35:89:68:5c:93:66:a6:02:06:c3:
72:63:7d:a8:5a:00:80:a8:b3:19:06:13:34:4c:ba:
d1:61:68:55:c2:68:d0:89:0e:50:95:07:37:e8:0d:
68:98:b7:a0:52:d1:85:01:c0:3f:ec:bb:1a:d2:a0:
22:a7:c2:3d:80:e2:dd:2e:df:a8:44:84:46:6f:3c:
0f:dc:c9:e2:4f:34:03:f0:56:4f:b5:65:df:04:1e:
00:53:cd:7f:c7:df:6e:8a:9d:75:c9:9a:f5:38:7d:
2c:85:e5:9a:c3:be:31:24:1f:db:58:af:74:68:b1:
b0:13:5d:43:33:9a:be:f0:e0:2c:6d:81:d1:fb:84:
11:90:79:a6:4b:5b:8d:e7:81:6f:48:06:71:a5:99:
2f:fb:e5:99:04:4f:14:cb:4d:e1:17:4e:b0:2d:4a:
12:65:25:4a:d0:f8:38:22:54:6d:13:dd:14:60:5a:
0a:22:23:02:76:b4:9b:92:81:c1:84:67:56:aa:7d:
40:e2:9d:bd:1f:bf:8c:49:38:c9:24:83:4a:20:ed:
f1:ed:be:98:68:47:2f:04:31:aa:97:0b:ad:0a:0d:
eb:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:FD:5B:94:E5:C0:E8:04:89:0B:BB:02:D1:5D:E4:2E:E3:87:EB:FF
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/df1blOXA6ASJC7sC0V3kLuOH6_8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
87:1f:0e:7b:5e:c9:65:19:05:4c:05:b3:d0:2c:04:fe:ac:78:
a6:31:8c:d2:5d:a4:5d:1a:26:bd:09:f1:29:ed:02:aa:30:6f:
74:d0:cc:a3:52:cf:e4:c2:7c:ff:2c:4c:c0:53:85:47:62:21:
d8:9d:67:7e:27:e6:8a:a6:eb:cc:57:22:19:5c:62:28:56:20:
6a:1b:bb:70:46:90:50:f1:cf:4c:f6:92:d7:5d:40:1a:04:d5:
a5:91:cd:70:d7:49:c0:49:43:b7:12:8a:69:4b:88:60:bf:a1:
21:c8:25:d9:51:79:6e:f9:4a:61:8e:ea:06:b5:e9:dd:60:7b:
cf:f0:6a:0f:11:c0:54:7e:8b:9d:34:11:65:0f:bb:73:16:9a:
b5:c4:7a:29:fe:8f:76:db:18:cd:32:b3:d1:9c:86:44:09:b9:
59:38:eb:c9:57:66:3f:ff:09:f9:52:85:69:9c:db:5d:dc:45:
43:09:df:1c:ad:39:4d:ec:18:67:63:76:ae:19:98:0e:e4:1a:
eb:b2:fe:9b:2f:b1:bd:35:74:86:a2:48:0d:b9:34:fe:23:69:
5b:a4:9d:a5:e8:4d:b4:f1:78:fc:33:7f:0c:69:3e:b8:5b:15:
62:0a:f4:7e:a5:0d:40:4f:9c:6d:20:bc:b0:c0:8f:61:49:8c:
fb:55:40:b3
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY7Ja8Stc1S45QcnELGngLBDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzYjNkYTNlY2I4YTdkNDMzZGUzODMzODY2N2IzNWU2OGRm
NzNmOGMwHhcNMjQwNDEwMTkxMTA2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NWZkNWI5NGU1YzBlODA0ODkwYmJiMDJkMTVkZTQyZWUzODdlYmZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArTelyhEqKqEWYPBH+6TqNaS5W1l/
Qqxk0kXT1K+PuosMHzWJaFyTZqYCBsNyY32oWgCAqLMZBhM0TLrRYWhVwmjQiQ5Q
lQc36A1omLegUtGFAcA/7Lsa0qAip8I9gOLdLt+oRIRGbzwP3MniTzQD8FZPtWXf
BB4AU81/x99uip11yZr1OH0sheWaw74xJB/bWK90aLGwE11DM5q+8OAsbYHR+4QR
kHmmS1uN54FvSAZxpZkv++WZBE8Uy03hF06wLUoSZSVK0Pg4IlRtE90UYFoKIiMC
drSbkoHBhGdWqn1A4p29H7+MSTjJJINKIO3x7b6YaEcvBDGqlwutCg3rmQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFHX9W5TlwOgEiQu7AtFd5C7jh+v/MB8GA1UdIwQY
MBaAFNOz2j7Lin1DPeODOGZ7NeaN9z+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODct
YzUzOTc5ZDY2Y2E1LzEvZGYxYmxPWEE2QVNKQzdzQzBWM2tMdU9INl84LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODctYzUzOTc5ZDY2Y2E1
LzEvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAIcfDnteyWUZBUwFs9As
BP6seKYxjNJdpF0aJr0J8SntAqowb3TQzKNSz+TCfP8sTMBThUdiIdidZ34n5oqm
68xXIhlcYihWIGobu3BGkFDxz0z2ktddQBoE1aWRzXDXScBJQ7cSimlLiGC/oSHI
JdlReW75SmGO6ga16d1ge8/wag8RwFR+i500EWUPu3MWmrXEein+j3bbGM0ys9Gc
hkQJuVk468lXZj//CflShWmc213cRUMJ3xytOU3sGGdjdq4ZmA7kGuuy/psvsb01
dIaiSA25NP4jaVuknaXoTbTxePwzfwxpPrhbFWIK9H6lDUBPnG0gvLDAj2FJjPtV
QLM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:32 2024 by rpki-client on console-fra.rpki-client.org