Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/jgJMqqJ_qpJ2oZFjac0cpkFvPUM.roa
File: jgJMqqJ_qpJ2oZFjac0cpkFvPUM.roa (raw, json)
Hash identifier: AILMjjixbj1cYVeuqLc3kCDzHWnexSZQUCyY5jAhhuQ=
Subject key identifier: 8E:02:4C:AA:A2:7F:AA:92:76:A1:91:63:69:CD:1C:A6:41:6F:3D:43
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CB79BEC2D89B4ACBF5492D9F0417D6611
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/jgJMqqJ_qpJ2oZFjac0cpkFvPUM.roa
Signing time: Fri 29 Dec 2023 22:04:58 +0000
ROA not before: Fri 29 Dec 2023 22:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18c:b79b:28f5/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b7:9b:ec:2d:89:b4:ac:bf:54:92:d9:f0:41:7d:66:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 29 22:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8e024caaa27faa9276a1916369cd1ca6416f3d43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2c:69:09:13:1f:c1:04:b2:21:a4:92:e8:a8:
05:84:d9:24:60:76:df:f4:92:e5:e8:57:31:73:5c:
91:8e:56:e5:77:83:74:3a:44:24:24:ab:74:f9:8b:
78:8a:2c:77:20:6a:52:84:04:46:29:9e:2c:4a:4c:
3d:d6:92:9b:73:ed:9a:4a:8e:8b:03:e3:e8:ef:23:
be:cb:9e:8e:22:1c:5f:b8:f0:33:05:80:b7:e5:0b:
38:f1:34:28:4f:8e:9d:04:54:82:fa:1f:f2:e0:e8:
de:cd:43:1e:9a:4e:13:d5:be:82:ae:db:c1:ff:98:
d3:27:9c:ab:12:c1:df:42:8d:67:c0:46:46:65:ab:
2b:89:73:fa:c5:40:09:2e:7d:99:8f:8e:98:6f:87:
9b:c1:0b:80:92:2d:38:3a:ee:1e:11:83:6d:66:a6:
26:d3:15:43:78:c2:7f:2a:f2:56:80:8e:86:07:6c:
16:fa:9b:cb:90:6e:12:f5:3b:b3:c6:6c:d6:55:5b:
dd:bf:d6:9d:35:49:a0:b8:f4:0d:7a:10:e1:aa:e9:
66:07:1e:13:54:71:17:74:16:5e:7b:05:f7:31:65:
a5:1e:18:af:30:d7:1b:f3:fa:5b:4a:de:a5:c0:23:
c4:af:6e:07:f5:f2:65:de:cc:8c:c9:90:18:81:ee:
12:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:02:4C:AA:A2:7F:AA:92:76:A1:91:63:69:CD:1C:A6:41:6F:3D:43
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/jgJMqqJ_qpJ2oZFjac0cpkFvPUM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
0b:95:ff:8e:d4:6d:a7:a4:fe:c7:59:59:2a:e0:a8:7b:03:3b:
96:29:4e:96:a6:1f:f3:da:5f:8e:02:c0:e9:4e:00:03:44:13:
44:a8:a5:3b:01:6d:e6:9c:f4:ad:3d:18:13:73:b1:48:cf:cc:
85:00:cf:75:b6:55:4c:0b:79:2f:c3:81:62:4c:ce:15:c1:be:
14:41:d7:a0:6f:c0:e3:49:1c:a8:f8:16:41:4f:de:a1:36:28:
03:df:72:a3:8c:7f:9e:9e:93:3e:67:0c:eb:2e:14:f4:b0:3d:
6c:8a:37:0c:be:73:f6:ca:93:5e:67:ef:af:5b:63:7f:17:9e:
0f:7e:42:7b:36:d7:77:87:82:4c:88:d2:d1:e7:fa:d6:e2:50:
72:47:bf:d8:91:46:9e:ba:d7:74:db:c5:3e:28:83:1b:6c:24:
ca:f4:fc:18:5e:39:a3:e7:bc:f1:46:59:ea:64:78:ab:06:30:
19:a9:16:e4:73:d1:77:2b:ba:ef:85:f1:1d:07:5d:6a:e2:fe:
9c:e4:8f:6d:56:b3:48:37:04:5a:35:6a:05:60:0d:c6:b5:41:
89:c7:f5:96:f0:c0:97:80:df:c0:48:57:d0:05:50:db:18:f5:
0f:11:be:fa:03:af:20:bc:dd:3f:1d:0d:f1:9d:d7:a9:8c:ac:
4a:9d:18:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:32 2024 by rpki-client on console-fra.rpki-client.org