Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/eRduaAw7eQG6lWI-7GJKUlFOyds.roa
File: eRduaAw7eQG6lWI-7GJKUlFOyds.roa (raw, json)
Hash identifier: yWjTC6ASjEYCUm7sAB6UMEy8sbB5Cp3HjzaQtkNZSG4=
Subject key identifier: 79:17:6E:68:0C:3B:79:01:BA:95:62:3E:EC:62:4A:52:51:4E:C9:DB
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CBD6F50B144688AA0F6D4A7F33F8A0719
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/eRduaAw7eQG6lWI-7GJKUlFOyds.roa
Signing time: Sun 31 Dec 2023 01:13:58 +0000
ROA not before: Sun 31 Dec 2023 01:13:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:bd:6f:50:b1:44:68:8a:a0:f6:d4:a7:f3:3f:8a:07:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 31 01:13:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=79176e680c3b7901ba95623eec624a52514ec9db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:55:24:bd:e7:38:42:e5:8a:01:e7:19:04:83:
24:3a:65:a9:d3:c9:6b:fe:01:a3:18:b4:59:ee:54:
dc:69:04:c1:b1:2a:c6:1d:b7:79:cd:d3:c9:ca:46:
5b:1e:26:52:99:e9:32:a7:02:cb:0b:c6:42:6a:a5:
c6:9d:ea:44:c4:e1:ce:01:23:c6:6c:80:53:ba:6e:
9c:4b:15:0e:69:c3:ad:35:5d:0c:d0:3d:8f:b4:00:
3c:e6:f7:7d:30:2a:92:69:b8:08:4c:63:ec:9e:53:
90:b4:87:eb:06:b0:d7:ee:69:eb:be:5d:e6:ef:b4:
bb:c8:f7:41:07:03:07:48:09:8a:bb:69:e2:48:33:
e5:19:d4:b7:ee:36:fd:c6:06:69:2f:68:b7:d2:a2:
f0:2e:dc:67:80:8b:e2:73:8f:ee:61:2e:22:87:a5:
3d:10:4e:39:c3:8e:fd:fb:fd:29:33:77:64:42:0e:
49:2c:ee:cc:c0:b4:22:1b:af:ab:84:b3:2b:f3:f0:
ff:13:be:c3:52:c0:94:76:20:06:c4:6a:fc:1c:e4:
6a:56:ef:9d:b9:cc:23:7e:e8:72:9f:08:d8:3a:74:
d0:d6:e5:d0:ab:0c:44:5f:2d:00:9d:5a:e1:19:72:
95:65:58:84:6a:c2:1f:0f:a8:67:8f:f1:11:00:8b:
5b:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:17:6E:68:0C:3B:79:01:BA:95:62:3E:EC:62:4A:52:51:4E:C9:DB
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/eRduaAw7eQG6lWI-7GJKUlFOyds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
54:c0:57:4a:82:48:5a:f9:8f:1c:5f:b4:a4:7e:33:1a:2e:eb:
a1:2b:79:8b:f6:75:c6:49:d1:f2:cd:18:7a:64:99:31:06:91:
c3:dc:cb:b3:a9:fe:9e:66:c1:62:81:f4:4c:9b:13:21:0b:e2:
94:9d:eb:f8:03:1f:75:ea:42:f8:8a:78:bb:bd:9e:a0:58:c6:
ea:ee:23:e8:5b:9e:b6:2d:07:f9:5a:54:00:98:97:a4:7c:00:
f4:07:2c:fe:26:ae:4b:c2:24:0f:78:fc:a7:83:a0:9c:cd:7a:
15:50:d4:9a:97:4c:b0:86:01:a7:00:9b:6f:07:d3:0b:7c:0b:
a8:5c:bc:1c:24:05:cd:f1:61:4c:a6:b0:16:1f:84:ee:e9:56:
d1:6b:21:44:f8:ec:d7:af:96:fa:2e:33:dc:32:d8:24:23:16:
71:fe:5b:8d:7d:d9:6b:a2:31:54:32:b1:f0:94:e2:b4:84:ab:
20:fd:fc:a1:c8:38:bb:13:d5:98:ff:50:2d:e7:17:4d:f0:b1:
f8:db:c4:33:ad:6a:34:d4:cc:d8:c4:34:d6:25:d7:6c:9f:79:
d2:6b:c5:7f:d9:60:75:e8:a9:31:8b:c7:ed:78:8e:ee:c7:f1:
7f:bd:78:6f:7c:1e:c3:cf:d3:c4:b9:b2:bf:57:34:37:1b:5d:
08:78:ac:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:16:21 2025 by rpki-client