Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/fsC77hohEyIfnqUdsg2zmkwSdZk.roa
File: fsC77hohEyIfnqUdsg2zmkwSdZk.roa (raw, json)
Hash identifier: SM8NrviaSZdz7FPKTVGWiSGGCY2TfuKtEoSWLd5g7OA=
Subject key identifier: 7E:C0:BB:EE:1A:21:13:22:1F:9E:A5:1D:B2:0D:B3:9A:4C:12:75:99
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018C9D3EA7B89B760CDF7DFB16BCCC4B25C2
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/fsC77hohEyIfnqUdsg2zmkwSdZk.roa
Signing time: Sun 24 Dec 2023 19:12:58 +0000
ROA not before: Sun 24 Dec 2023 19:12:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:9d:3e:a7:b8:9b:76:0c:df:7d:fb:16:bc:cc:4b:25:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 24 19:12:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7ec0bbee1a2113221f9ea51db20db39a4c127599
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:82:4a:6a:23:7e:d2:af:ae:31:01:5a:1a:bc:
c9:e2:cd:48:13:a8:d5:64:5b:d0:84:98:f6:06:64:
0b:4c:44:36:74:30:41:d8:36:30:ec:e5:07:5f:dd:
2f:79:de:4d:41:4d:92:d8:33:8e:79:26:66:ba:0f:
ec:2c:9c:78:94:3a:41:74:0b:48:d7:ff:44:ce:ea:
23:ab:49:ed:47:01:2c:f6:10:69:bd:d6:46:12:18:
d4:f0:6e:97:bd:70:13:9e:f9:3a:a3:49:28:c1:e1:
0d:2c:fa:cb:28:f8:e2:f6:55:eb:a6:ce:41:ec:42:
e5:14:37:aa:da:5e:4a:dd:af:35:90:b4:2f:f0:a1:
c9:4c:29:b1:34:19:9f:38:62:26:80:59:1e:f4:1a:
13:ed:0e:47:eb:8a:82:bc:8a:2c:6f:64:d4:55:60:
fe:49:74:f7:7d:7b:4d:dc:fe:64:02:f2:41:3d:e3:
4a:a4:cf:ce:42:0e:92:cc:b6:9f:93:44:40:2a:30:
85:b8:a8:37:9a:a0:ae:08:57:da:b2:c4:46:45:4b:
20:75:0f:49:67:9b:e4:20:4e:65:a9:ef:5b:32:61:
38:fc:68:3f:27:ad:ce:c3:d2:9b:12:ef:13:a5:31:
87:dc:58:99:40:31:77:cf:b6:db:59:3e:d0:45:2e:
b3:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:C0:BB:EE:1A:21:13:22:1F:9E:A5:1D:B2:0D:B3:9A:4C:12:75:99
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/fsC77hohEyIfnqUdsg2zmkwSdZk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
8c:97:b1:84:ec:64:e3:10:e9:78:05:05:cb:dc:98:9b:69:76:
27:56:55:72:69:94:40:4b:68:ca:50:84:d0:c6:ad:cd:41:68:
ac:d1:51:76:71:9a:47:cd:d7:fa:71:85:4b:57:45:a9:f8:7b:
7f:e8:aa:9e:3e:cd:a3:d2:1b:4b:ac:f9:c1:fa:9c:2b:0e:ea:
59:d1:73:5c:b8:3f:97:3d:bf:0d:c9:c0:19:00:7c:4e:77:ce:
b8:dd:07:af:f4:33:e6:12:29:91:c2:f3:29:46:70:e1:d0:f1:
c3:3e:66:71:f3:f2:6a:0c:60:1c:91:07:13:f9:73:a3:f3:ac:
4b:54:3e:b5:f4:e8:f9:8c:e8:c1:05:af:69:45:19:bd:cf:c2:
17:33:72:5f:0c:60:89:29:56:bf:37:f4:4c:6f:4f:a3:a1:73:
77:e8:67:da:ff:f3:d5:24:67:aa:2e:f9:bc:e5:71:31:46:e0:
ba:43:0b:92:c1:d8:0b:54:76:c9:23:00:d9:eb:a9:c6:43:a8:
d5:79:97:b2:00:0b:4c:a6:85:f5:24:8f:82:58:ec:41:3a:d0:
d3:ca:82:fb:ba:9f:09:e3:0b:3e:60:49:a5:b8:02:d2:39:5d:
67:96:a5:c3:a2:e9:4d:cf:fa:87:0d:0f:2e:98:c6:54:f9:1b:
ad:b2:e1:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:51 2024 by rpki-client on console-ams.rpki-client.org