Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/eT8BQwye89sQQmpX8Bfab8z8Yv8.roa
File: eT8BQwye89sQQmpX8Bfab8z8Yv8.roa (raw, json)
Hash identifier: 6VXO5wO/7uQUTf5dQ+nnQYyrSmfpWjGmXKwVlnH1yAc=
Subject key identifier: 79:3F:01:43:0C:9E:F3:DB:10:42:6A:57:F0:17:DA:6F:CC:FC:62:FF
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018E0D095E15F320B700BA646A007475BD33
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/eT8BQwye89sQQmpX8Bfab8z8Yv8.roa
Signing time: Tue 05 Mar 2024 05:15:01 +0000
ROA not before: Tue 05 Mar 2024 05:15:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:c109:b478/128 maxlen: 128
2001:67c:64:ffff:0:18d:e84f:370a/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:0d:09:5e:15:f3:20:b7:00:ba:64:6a:00:74:75:bd:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Mar 5 05:15:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=793f01430c9ef3db10426a57f017da6fccfc62ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:10:5c:2b:20:cc:d5:ed:ff:05:18:f9:d1:8c:
a6:95:bd:2b:b1:d2:6f:d0:76:d0:d5:59:c4:c4:61:
ce:e5:d1:28:64:ac:9f:50:1f:e2:87:b8:e6:9c:a3:
22:f2:c5:95:46:9d:ba:d7:b1:fb:8d:a3:ec:1b:cf:
d6:46:e4:d9:91:00:8f:1c:df:df:27:c0:e7:d4:1b:
64:ac:64:fd:92:b2:78:7f:e8:4b:24:3b:82:a8:59:
8d:a4:05:77:6d:1b:30:7c:a9:78:3e:ca:45:ed:cc:
17:57:3b:1c:f3:b6:4a:a3:28:55:bd:5e:9a:1b:48:
2b:89:01:b4:38:13:64:66:a3:c9:c9:99:33:3a:7d:
11:16:9d:bd:85:33:70:f2:bd:0a:6e:8c:84:cb:23:
db:42:95:07:9e:3b:8b:4d:9a:99:2a:c8:b4:72:08:
d6:2a:ab:04:22:46:c8:03:ed:0e:14:f2:9a:11:22:
b0:ca:b6:2f:1d:cb:4e:d8:04:24:30:a4:14:9e:88:
92:74:7b:16:8a:41:dd:6c:bd:d5:26:48:ff:d8:67:
10:9b:f8:52:ea:81:2f:6d:ce:df:b3:61:0f:54:a3:
b5:0d:28:f1:99:14:4d:a2:ed:6b:ad:c4:cf:4c:f1:
e2:99:ce:36:e9:3a:ce:29:45:af:37:4a:7d:6b:23:
3d:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:3F:01:43:0C:9E:F3:DB:10:42:6A:57:F0:17:DA:6F:CC:FC:62:FF
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/eT8BQwye89sQQmpX8Bfab8z8Yv8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
22:e5:94:e5:af:6e:f2:e6:be:c6:98:e2:34:2d:84:b9:f5:eb:
af:a4:b8:26:18:97:19:b6:b5:df:60:e5:49:f9:ad:4b:21:2c:
c4:e9:0c:92:49:94:95:0c:1b:88:12:21:d6:20:36:56:42:57:
56:f4:03:6e:ef:a5:60:26:5b:75:e2:b3:fd:0e:ad:7f:eb:72:
17:86:23:86:53:52:c8:6d:15:e6:ff:33:c5:08:93:b7:24:d8:
2c:83:a5:56:44:45:8f:88:89:2d:07:28:7c:17:94:ed:81:b9:
e6:55:cd:af:60:06:d3:16:cc:36:ee:f5:e4:03:5a:e4:39:39:
ab:be:8e:10:b5:59:b4:2a:7f:3a:88:98:2f:87:d4:1c:1e:10:
4e:1b:4a:d9:bb:5b:95:4c:3b:ca:6c:6d:70:af:c9:5f:f9:fe:
d0:b9:f5:5c:07:dd:35:ad:8f:1a:87:9d:5d:ce:6e:fd:4b:ef:
d6:7f:b0:76:2d:1e:e3:f1:9d:0a:70:0d:fb:7d:1e:4e:ca:47:
ff:68:31:24:ce:ac:84:be:25:ad:65:64:7f:52:a6:1b:58:c6:
1c:a0:14:45:e7:70:d2:a7:b4:eb:8d:b5:6f:d5:41:e0:f6:5f:
f5:e4:0f:9f:74:b7:ee:bc:77:49:86:5d:6a:44:42:28:a1:fe:
e5:a4:55:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:56:18 2025 by rpki-client