Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/knJFPm6-kp2DpIAPhatfYpQrL6k.roa
File: knJFPm6-kp2DpIAPhatfYpQrL6k.roa (raw, json)
Hash identifier: N52iOKnHGNyc8HCfwuIGmR7mjhDvbu312N2yzESXiLE=
Subject key identifier: 92:72:45:3E:6E:BE:92:9D:83:A4:80:0F:85:AB:5F:62:94:2B:2F:A9
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CC9729347BC70B83C65A3F119D3682660
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/knJFPm6-kp2DpIAPhatfYpQrL6k.roa
Signing time: Tue 02 Jan 2024 09:12:58 +0000
ROA not before: Tue 02 Jan 2024 09:12:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:72:93:47:bc:70:b8:3c:65:a3:f1:19:d3:68:26:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 2 09:12:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9272453e6ebe929d83a4800f85ab5f62942b2fa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:da:2f:ef:e5:a4:e4:4a:e8:56:82:54:7f:7f:
48:72:47:65:d0:9f:b3:8d:8e:3b:fd:5a:c3:34:1a:
23:87:56:c0:66:29:e5:a0:1c:ec:8d:93:06:f6:aa:
55:79:52:c9:1e:36:ec:24:19:51:40:e7:52:3e:c7:
00:f4:a6:b0:03:a4:59:1f:1c:7e:c5:ac:cb:55:c1:
45:8b:2b:db:98:a5:b7:fa:bb:bc:96:fe:a1:4e:10:
f2:c1:26:53:e7:6e:2a:95:f1:84:6e:e3:58:9b:cf:
dc:4c:3a:7e:a9:95:5a:73:f9:e6:aa:a6:99:20:ed:
ef:c5:83:a9:96:48:19:f3:a1:04:f8:73:5e:59:9a:
d9:90:08:f1:93:d2:45:e5:66:90:15:3f:e2:6b:d6:
07:12:23:f6:56:3a:ce:8d:9c:49:3c:76:d0:ed:e3:
37:48:9d:80:b7:31:a7:11:ab:bd:bc:12:1a:ab:e4:
45:96:51:39:11:b0:8c:dd:4f:5a:6d:70:e2:e8:fe:
2d:db:d2:8b:12:40:cd:75:02:88:8c:0d:11:53:f6:
1a:33:2c:8c:fc:e6:3c:82:a6:89:97:07:b1:87:35:
7e:db:52:f4:1f:25:6c:2c:46:ba:2b:32:bd:ae:4b:
a5:86:54:be:77:51:9a:f5:a4:64:5e:c3:36:60:a3:
95:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:72:45:3E:6E:BE:92:9D:83:A4:80:0F:85:AB:5F:62:94:2B:2F:A9
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/knJFPm6-kp2DpIAPhatfYpQrL6k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
39:c1:6b:be:6a:71:ea:2b:20:89:c5:46:ab:d1:0a:c0:4b:a7:
5c:84:4c:29:f8:ac:04:9f:7d:fd:e0:12:6c:8f:86:fc:62:43:
2b:13:7c:59:00:6b:ee:16:48:fe:47:e3:a5:b2:17:f3:57:c5:
37:1d:b5:72:68:21:fa:42:99:0e:fc:5e:dc:55:c6:c8:81:2a:
6c:1d:4b:d2:8c:6e:68:a5:a0:44:f0:98:e6:7c:ba:27:11:2a:
14:69:be:5f:29:06:17:be:bf:89:6e:4d:a9:0a:65:0f:2a:27:
e9:76:93:ea:da:5d:b3:72:3b:93:b9:96:36:e2:f5:2c:6b:b2:
9e:79:85:13:2d:e7:bb:d6:31:d6:68:12:f3:60:79:db:9e:bb:
80:ca:ae:b3:5d:b8:bc:5d:5d:c7:db:86:82:57:c2:c6:36:53:
d0:f5:0f:f5:36:cc:52:10:17:6d:d1:ef:b9:97:71:9e:1a:f3:
ab:6f:2f:42:48:6d:23:b9:08:de:5c:6d:64:de:11:96:7a:98:
08:a4:5a:23:dd:da:d6:ad:62:97:66:00:b2:96:92:f3:08:c7:
d7:e3:2c:42:26:86:62:87:2e:03:1a:c7:ac:a2:5d:c3:79:54:
45:48:c4:0c:0a:ee:ee:28:bd:c8:ad:f5:a5:b1:09:03:5f:c1:
40:25:c6:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:51 2024 by rpki-client on console-ams.rpki-client.org