Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/lEb_ugfgeva9Ti1E7_meBZISiLE.roa
File: lEb_ugfgeva9Ti1E7_meBZISiLE.roa (raw, json)
Hash identifier: rDKlLL4J20Rv3r8L1iMiR/cooKP5GjsfO8amGbt2uMc=
Subject key identifier: 94:46:FF:BA:07:E0:7A:F6:BD:4E:2D:44:EF:F9:9E:05:92:12:88:B1
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018D363FDD555AEBDD733B3B868C3B910CCC
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/lEb_ugfgeva9Ti1E7_meBZISiLE.roa
Signing time: Tue 23 Jan 2024 12:16:11 +0000
ROA not before: Tue 23 Jan 2024 12:16:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:36:3f:dd:55:5a:eb:dd:73:3b:3b:86:8c:3b:91:0c:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 23 12:16:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9446ffba07e07af6bd4e2d44eff99e05921288b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:39:88:d0:70:cd:14:b5:84:f0:8e:8b:87:fd:
2d:18:cd:25:eb:31:b0:53:03:5b:c9:9c:bc:23:ef:
d4:b9:fb:27:1b:04:ab:b1:c5:71:49:f9:e7:3e:6f:
ff:ac:99:90:4d:fb:af:6c:2b:4f:c4:1d:80:02:fc:
ae:0e:b2:26:ee:b1:da:f5:47:cd:22:5a:b1:ce:31:
d8:cc:aa:17:67:1d:f9:a7:44:54:30:82:d2:2e:a6:
8b:bb:fe:c8:24:d8:d2:43:40:ae:8b:16:bb:a8:e0:
53:b7:a5:e2:b7:58:0c:41:79:6d:3b:5d:2e:8e:55:
f0:1c:bc:aa:d7:a1:01:79:0e:7c:1a:32:19:61:28:
18:d8:8e:b5:43:7b:55:ed:97:40:a1:49:4f:c6:bc:
61:7d:4c:21:f5:36:82:62:73:15:86:5f:1a:1f:bd:
a4:db:f4:26:c6:3f:23:24:63:d7:76:77:f7:6b:bd:
09:42:fa:de:76:54:9d:e1:3d:e5:c5:46:0e:05:ad:
85:76:ad:09:08:02:f6:a5:e2:f9:e2:a8:30:31:2e:
81:eb:99:be:fe:0b:d9:7c:d1:9b:59:2a:99:7a:09:
6c:d3:11:81:c2:d3:79:8d:f8:bc:c7:9f:c9:d3:3b:
06:ed:97:88:7e:1f:21:b6:66:e2:cc:2a:09:1e:64:
61:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:46:FF:BA:07:E0:7A:F6:BD:4E:2D:44:EF:F9:9E:05:92:12:88:B1
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/lEb_ugfgeva9Ti1E7_meBZISiLE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
30:f1:3d:22:02:23:90:ba:cc:43:b9:78:c6:0f:a0:d3:17:0b:
e5:d7:40:1b:f1:35:71:7b:fa:4a:ef:f9:ef:50:dc:01:2b:e0:
29:94:9d:bd:41:ae:49:18:bb:ca:36:70:ea:99:9f:fd:92:8c:
5e:a8:86:63:b2:99:91:0d:51:ce:0c:74:3f:cd:17:6b:3f:82:
8c:b9:06:86:f8:52:b0:b9:9f:e7:6b:1a:78:68:b5:35:80:16:
ec:ba:47:fb:02:48:89:ab:b7:03:45:d0:d0:e4:a0:f6:0c:97:
6d:59:a2:c9:55:37:e1:d5:3f:1e:7d:0c:1f:12:fc:83:f7:b5:
35:62:30:2b:25:21:4a:ba:24:2e:fe:82:cb:a6:98:b0:e2:e5:
17:9f:2d:3d:27:84:55:79:a8:7e:ea:45:ae:d4:80:df:c1:48:
32:3d:9c:24:21:83:14:18:9e:68:c2:70:ee:ef:bc:17:1e:75:
99:f1:e1:7b:61:ae:5a:eb:2b:1a:07:38:81:20:cf:69:13:5b:
87:7d:60:94:88:5d:61:c5:b7:1d:7c:ac:18:30:83:b4:75:14:
ba:04:1e:76:e8:f0:ff:0f:48:8c:fb:05:e8:0d:0e:83:fc:c8:
d3:8d:42:f6:16:a8:92:7a:27:6d:3d:a4:c9:25:fb:7a:60:63:
2f:94:70:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:38:42 2025 by rpki-client