Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/np-bMoPurnALUGrec2FMHHAFlpg.roa
File: np-bMoPurnALUGrec2FMHHAFlpg.roa (raw, json)
Hash identifier: uYWmEf3EG62vedLPZjLK9Ltm/Z50ItBwCXBdOeZEMVk=
Subject key identifier: 9E:9F:9B:32:83:EE:AE:70:0B:50:6A:DE:73:61:4C:1C:70:05:96:98
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018E82D86B377B9BDFF41EF76DEA1C965831
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/np-bMoPurnALUGrec2FMHHAFlpg.roa
Signing time: Thu 28 Mar 2024 02:16:44 +0000
ROA not before: Thu 28 Mar 2024 02:16:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:c109:b478/128 maxlen: 128
2001:67c:64:ffff:0:18d:e84f:370a/128 maxlen: 128
2001:67c:64:ffff:0:18e:76c8:d5da/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:82:d8:6b:37:7b:9b:df:f4:1e:f7:6d:ea:1c:96:58:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Mar 28 02:16:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9e9f9b3283eeae700b506ade73614c1c70059698
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c6:50:e7:9c:c0:19:8a:1a:1a:0b:a0:37:c5:
9d:a4:34:4b:40:f9:01:1b:f6:44:10:e2:55:e2:73:
bb:19:a5:93:cb:92:73:56:44:f7:20:b4:3b:05:e9:
0a:39:df:07:94:e8:d2:fb:64:d5:f3:13:9a:33:76:
47:5e:d2:f9:11:f7:5e:05:ac:a0:2a:70:5c:a3:d2:
91:a5:1a:e8:cd:6f:e6:c8:0c:71:15:54:4b:90:d8:
99:a6:cc:a8:ec:8e:cf:9b:07:5e:f8:7e:64:07:4e:
cf:ea:d7:23:36:e2:cf:b1:43:ce:43:e3:28:41:6d:
ea:07:a5:0c:15:69:02:aa:2c:18:76:a9:aa:a6:8e:
32:74:0c:73:d2:da:a9:62:c0:d4:d9:ac:44:28:e5:
f6:ea:fe:e8:3c:7b:e8:d1:b4:20:44:1e:10:a6:15:
ff:55:f2:78:72:a5:60:20:de:9f:c2:9e:3c:a8:1f:
2d:f6:80:50:a6:f8:82:7b:1f:0a:6c:c0:e8:99:a8:
ab:e8:56:28:e6:f7:d5:69:03:04:5d:d5:78:0e:39:
45:1e:d5:aa:89:fc:3c:d6:33:9a:34:fb:59:9d:33:
c1:c1:89:cb:56:37:f7:0c:13:c7:1f:2b:6c:b5:be:
6b:33:aa:8a:22:58:0e:8f:3c:bb:a0:c2:57:bc:15:
1b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:9F:9B:32:83:EE:AE:70:0B:50:6A:DE:73:61:4C:1C:70:05:96:98
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/np-bMoPurnALUGrec2FMHHAFlpg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
8a:aa:6f:72:51:17:d6:fa:7f:31:8a:cf:8f:9f:01:11:a8:9c:
41:49:19:03:c7:b7:ce:c1:7e:99:61:08:60:ff:a6:a7:98:d2:
f3:8b:be:67:b3:91:03:53:ef:3b:ba:13:ca:94:30:f8:c1:36:
17:11:99:f1:31:a5:5a:7b:15:5c:bf:35:38:78:2a:68:92:28:
ae:e7:8f:49:8e:bb:a5:93:ec:31:dc:ac:5f:ea:16:29:99:b6:
9b:48:d5:5d:00:9a:2c:6d:83:04:0a:f1:9a:06:4e:d0:ac:42:
0e:df:50:ea:d0:f8:83:e4:ac:51:0e:6f:4a:25:f5:0e:17:c1:
53:c5:5f:54:50:ef:e3:7d:5c:87:1e:b3:9c:12:2d:98:35:e2:
58:39:22:31:44:12:8e:9a:b7:92:b7:e5:09:10:b0:d1:ec:b9:
e6:ae:b0:6e:ea:eb:fc:6e:b6:1e:00:f5:90:7b:0e:12:50:f3:
a8:57:a3:2f:50:f3:a1:b0:a6:42:b7:e7:e5:59:22:22:a8:84:
a8:92:7c:c1:7a:ae:27:48:03:db:96:cf:9b:5b:34:06:27:d5:
0b:25:e1:f8:26:96:77:e2:bb:af:e6:4d:9e:54:a7:40:fe:7c:
58:aa:e1:ef:91:36:ee:77:ec:b2:ba:07:3b:9e:35:71:29:44:
87:32:63:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:51:25 2025 by rpki-client