Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/gQtJPiNLWJ8V8K-7YYRUDt9Ca_g.roa
File: gQtJPiNLWJ8V8K-7YYRUDt9Ca_g.roa (raw, json)
Hash identifier: nlYw0uecNfGRQDkbCMY+S6vHnz7xrfOa6h+6PiEgAHM=
Subject key identifier: 81:0B:49:3E:23:4B:58:9F:15:F0:AF:BB:61:84:54:0E:DF:42:6B:F8
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018E7E14F043C48EDF0062B8FA29BD5D4D70
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/gQtJPiNLWJ8V8K-7YYRUDt9Ca_g.roa
Signing time: Wed 27 Mar 2024 04:04:45 +0000
ROA not before: Wed 27 Mar 2024 04:04:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:c109:b478/128 maxlen: 128
2001:67c:64:ffff:0:18d:e84f:370a/128 maxlen: 128
2001:67c:64:ffff:0:18e:76c8:d5da/128 maxlen: 128
2001:67c:64:ffff:0:18e:7e14:91f5/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:7e:14:f0:43:c4:8e:df:00:62:b8:fa:29:bd:5d:4d:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Mar 27 04:04:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=810b493e234b589f15f0afbb6184540edf426bf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:40:c5:e1:ec:34:3f:5c:af:22:36:7f:c8:4b:
20:9c:c1:8b:29:f0:a7:a4:97:3e:b4:65:2d:b3:2a:
67:d2:82:a6:f6:46:a0:a1:d4:49:fc:c0:e7:d7:95:
1c:77:e2:96:46:34:6a:76:22:31:cb:d7:3a:bc:27:
99:be:85:fb:12:aa:a2:28:6f:0c:37:f7:37:97:8c:
55:40:62:9a:4a:8f:5b:fe:10:55:02:42:7d:7b:08:
58:b7:04:6d:27:2c:89:fc:b1:32:37:d1:62:dc:74:
fc:7a:61:d8:4f:18:81:ee:e4:8c:57:56:e4:00:3e:
b7:36:c5:2a:c6:50:80:46:ec:0b:17:f3:fa:9d:69:
87:a1:99:eb:dc:a0:7f:d7:a9:a8:d2:1f:9d:67:81:
ba:ec:66:68:41:bc:84:26:c3:ca:39:a7:60:2a:7f:
47:d8:e9:01:b2:19:f8:81:e1:96:b0:44:b1:51:17:
1d:0b:3a:8a:5c:d5:09:63:84:c8:79:23:5a:17:ac:
64:c1:31:78:89:c4:eb:cc:43:86:89:e1:73:4a:68:
63:bd:c8:02:f8:23:f3:f9:11:4a:30:08:1f:d6:0f:
fb:13:59:b8:4c:d4:15:28:cb:c4:4e:34:20:28:c8:
cc:14:7a:3e:cb:0f:ce:45:ea:18:4d:f5:02:5a:83:
e0:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:0B:49:3E:23:4B:58:9F:15:F0:AF:BB:61:84:54:0E:DF:42:6B:F8
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/gQtJPiNLWJ8V8K-7YYRUDt9Ca_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
a4:29:c0:92:cd:4f:b6:88:38:f5:d4:8f:94:9d:64:1d:c0:aa:
a2:d4:8d:43:43:ed:61:56:be:83:50:03:0f:9e:18:02:ac:56:
92:47:c8:23:58:d2:50:35:d7:f0:de:9b:9b:96:22:cb:1b:25:
08:69:3e:a3:e8:cc:ce:73:36:e7:d1:fa:07:48:a3:b2:4e:e4:
41:3b:4e:f3:48:55:93:6a:94:f3:8b:67:6d:29:33:f6:3a:99:
67:46:39:8e:2d:c9:52:dd:fe:51:47:17:bd:51:24:f8:88:f4:
e8:e3:a2:f1:7c:98:35:76:04:ac:dc:80:58:0a:d9:9a:60:b0:
b5:d1:b0:65:84:97:7d:18:cc:68:5f:19:5b:9b:63:66:6d:60:
71:34:aa:8f:f5:8b:43:0c:87:cd:37:ab:1d:d8:bd:39:bc:18:
12:a4:bf:32:ab:1f:f3:5f:e2:01:5b:bd:e9:b4:71:7d:7b:ac:
33:3a:63:e3:58:df:9d:92:54:12:02:5a:98:da:53:77:f4:e7:
15:a4:11:f1:26:5d:e3:2a:63:df:92:52:f3:45:75:cf:18:d4:
49:f3:60:1d:2c:b1:87:20:5e:a6:4c:ea:5a:0e:3a:ef:0b:15:
a3:c5:2b:c7:1d:a4:dc:21:48:ef:02:b8:ea:ef:2a:f6:d4:0c:
83:4b:c8:da
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY5+FPBDxI7fAGK4+im9XU1wMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzYjNkYTNlY2I4YTdkNDMzZGUzODMzODY2N2IzNWU2OGRm
NzNmOGMwHhcNMjQwMzI3MDQwNDQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MTBiNDkzZTIzNGI1ODlmMTVmMGFmYmI2MTg0NTQwZWRmNDI2YmY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnkDF4ew0P1yvIjZ/yEsgnMGLKfCn
pJc+tGUtsypn0oKm9kagodRJ/MDn15Ucd+KWRjRqdiIxy9c6vCeZvoX7EqqiKG8M
N/c3l4xVQGKaSo9b/hBVAkJ9ewhYtwRtJyyJ/LEyN9Fi3HT8emHYTxiB7uSMV1bk
AD63NsUqxlCARuwLF/P6nWmHoZnr3KB/16mo0h+dZ4G67GZoQbyEJsPKOadgKn9H
2OkBshn4geGWsESxURcdCzqKXNUJY4TIeSNaF6xkwTF4icTrzEOGieFzSmhjvcgC
+CPz+RFKMAgf1g/7E1m4TNQVKMvETjQgKMjMFHo+yw/OReoYTfUCWoPgEQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFIELST4jS1ifFfCvu2GEVA7fQmv4MB8GA1UdIwQY
MBaAFNOz2j7Lin1DPeODOGZ7NeaN9z+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODct
YzUzOTc5ZDY2Y2E1LzEvZ1F0SlBpTkxXSjhWOEstN1lZUlVEdDlDYV9nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODctYzUzOTc5ZDY2Y2E1
LzEvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAKQpwJLNT7aIOPXUj5Sd
ZB3AqqLUjUND7WFWvoNQAw+eGAKsVpJHyCNY0lA11/Dem5uWIssbJQhpPqPozM5z
NufR+gdIo7JO5EE7TvNIVZNqlPOLZ20pM/Y6mWdGOY4tyVLd/lFHF71RJPiI9Ojj
ovF8mDV2BKzcgFgK2ZpgsLXRsGWEl30YzGhfGVubY2ZtYHE0qo/1i0MMh803qx3Y
vTm8GBKkvzKrH/Nf4gFbvem0cX17rDM6Y+NY352SVBICWpjaU3f05xWkEfEmXeMq
Y9+SUvNFdc8Y1EnzYB0ssYcgXqZM6loOOu8LFaPFK8cdpNwhSO8CuOrvKvbUDINL
yNo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:51 2024 by rpki-client on console-ams.rpki-client.org