Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/j_F1bC5EoIuDCUlVLzFf8nLfjoY.roa
File: j_F1bC5EoIuDCUlVLzFf8nLfjoY.roa (raw, json)
Hash identifier: S8Ykz87rT41ZtviYt5RKeym27DE4GOacYhNGI26gBGk=
Subject key identifier: 8F:F1:75:6C:2E:44:A0:8B:83:09:49:55:2F:31:5F:F2:72:DF:8E:86
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CC14D00A3E4344FF879F627324448BEDC
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/j_F1bC5EoIuDCUlVLzFf8nLfjoY.roa
Signing time: Sun 31 Dec 2023 19:14:58 +0000
ROA not before: Sun 31 Dec 2023 19:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c1:4d:00:a3:e4:34:4f:f8:79:f6:27:32:44:48:be:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 31 19:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8ff1756c2e44a08b830949552f315ff272df8e86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:2c:2c:8e:ff:39:21:50:a8:de:c3:da:8c:5c:
18:8f:02:99:4f:96:e5:11:40:70:d2:c7:0b:a4:0b:
78:73:48:d2:85:c8:e8:e1:42:7f:34:e0:8b:76:d1:
52:2b:67:0f:20:af:f9:5c:e6:ee:ad:ad:7d:15:95:
60:1c:41:8d:22:aa:00:4b:a9:cf:75:c7:8d:e3:eb:
27:29:2e:b9:c3:01:33:5b:37:21:6d:ea:75:ab:55:
13:ba:78:c4:a2:5d:80:fc:79:74:6d:6e:3a:60:c8:
30:be:0b:ff:cd:7a:81:11:5a:53:d8:62:67:67:e4:
96:96:3b:49:aa:dd:e7:84:12:95:1b:cb:62:5d:a1:
89:bb:23:93:05:ad:b6:a6:75:94:78:ef:37:24:2f:
e1:57:a1:08:46:3d:21:51:39:19:a9:73:f4:f2:20:
f8:be:04:04:9d:94:46:4d:7a:ea:2c:a0:68:9d:53:
8a:d8:8c:01:7b:e3:28:cf:16:ab:13:f4:96:bc:a1:
5d:30:96:04:48:d1:23:d8:7f:1f:a4:4a:c8:cb:cd:
8e:7d:3b:64:2e:b4:cc:a0:50:c4:ab:ab:93:fb:30:
f5:35:ac:eb:e0:7c:f7:e5:55:f5:89:73:8c:45:04:
c1:02:8d:02:dd:f5:82:c2:8c:6d:3e:06:cb:ab:83:
bd:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:F1:75:6C:2E:44:A0:8B:83:09:49:55:2F:31:5F:F2:72:DF:8E:86
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/j_F1bC5EoIuDCUlVLzFf8nLfjoY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
56:c7:34:27:68:5e:9e:36:57:c2:2c:da:95:47:78:01:e9:f6:
f8:68:37:14:f5:46:b5:e6:69:b4:32:f9:95:81:26:88:de:c1:
bd:e9:3c:f8:b3:b2:37:c8:9c:e0:c8:65:57:b5:dc:6b:21:b3:
b6:32:e8:d6:46:33:9a:4d:ef:a2:0e:69:d0:ef:e1:ee:1c:54:
85:e5:2b:83:00:55:15:72:0f:60:d1:ac:2b:dd:23:49:1c:e7:
d5:e0:08:2b:79:f1:c0:fa:07:0a:2f:3f:3d:a7:48:0c:b3:3b:
a6:95:07:a5:23:a5:2a:d0:1c:df:ef:d2:e3:7d:a7:12:e4:73:
8a:27:00:5b:5f:4d:31:bc:52:30:ed:05:c0:e1:ca:6c:86:1f:
4c:82:c4:a4:c8:30:22:ba:68:da:45:e3:fc:f5:68:24:92:0e:
2a:98:73:00:a8:3f:f8:20:f3:a6:7f:b3:0e:24:d3:8e:85:29:
67:0c:d2:ca:c4:f6:7e:62:89:bf:25:12:4d:0b:88:44:c3:32:
c3:90:8d:e4:18:11:77:fe:d2:3a:a4:d5:bf:b7:97:50:81:8b:
07:37:df:18:ae:f8:7a:43:43:b7:b6:fd:5b:96:40:9b:6a:4c:
c5:ba:5f:f3:14:15:80:c1:55:66:3d:ff:68:de:14:57:3c:38:
ca:51:ea:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:24:14 2025 by rpki-client