Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/pZvAi_a0ZunhI3BMz_AB2XuU97M.roa
File: pZvAi_a0ZunhI3BMz_AB2XuU97M.roa (raw, json)
Hash identifier: EqEioHU9evFYlFsKmdTGpgi7klXnyMIxvf7q4SWW8wQ=
Subject key identifier: A5:9B:C0:8B:F6:B4:66:E9:E1:23:70:4C:CF:F0:01:D9:7B:94:F7:B3
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018E5A7D9C68F758FA52BA22BF224813EA30
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/pZvAi_a0ZunhI3BMz_AB2XuU97M.roa
Signing time: Wed 20 Mar 2024 06:12:45 +0000
ROA not before: Wed 20 Mar 2024 06:12:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:c109:b478/128 maxlen: 128
2001:67c:64:ffff:0:18d:e84f:370a/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:5a:7d:9c:68:f7:58:fa:52:ba:22:bf:22:48:13:ea:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Mar 20 06:12:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a59bc08bf6b466e9e123704ccff001d97b94f7b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:83:66:57:d5:65:d3:da:af:ed:43:00:26:a0:
3e:9b:67:85:2f:40:14:96:db:6b:57:2b:3e:13:fc:
c0:b0:e4:a3:fb:91:01:79:be:b4:cd:95:95:f2:c1:
63:73:00:2a:91:63:c1:84:7c:44:5f:a4:bc:29:7e:
85:e3:d2:bd:50:d3:18:26:82:89:cd:ba:dc:b7:f4:
c9:c4:a9:70:b2:2e:c0:73:d9:1e:42:0d:f4:00:ad:
89:14:a5:40:c1:20:b3:0d:7f:1b:ab:37:66:2c:1b:
60:f3:91:c5:c9:4b:00:e1:fc:ef:25:2a:55:6b:f2:
5f:9b:87:59:56:9f:7b:02:70:10:b6:7d:17:a6:9d:
d1:d3:d3:93:69:55:76:cc:94:c3:46:8a:a3:1c:9c:
5e:49:e0:c0:3e:68:9b:d3:8a:f4:78:5b:09:53:c7:
da:b6:cc:f9:26:e3:e9:4b:b7:dc:c4:5e:46:ee:73:
18:39:ac:15:b3:54:c2:e4:9d:75:90:8a:03:0d:09:
8c:b1:43:5d:28:59:9b:ae:d8:c7:0e:31:b8:a1:48:
d7:3f:b3:b1:83:f6:f2:5a:0b:eb:8c:fb:11:d1:bb:
b9:22:d6:9a:d6:cb:4b:4c:2d:63:34:42:a1:9f:38:
d0:32:51:cd:ef:cc:72:6c:5b:1d:4f:2c:ff:7b:a8:
8d:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:9B:C0:8B:F6:B4:66:E9:E1:23:70:4C:CF:F0:01:D9:7B:94:F7:B3
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/pZvAi_a0ZunhI3BMz_AB2XuU97M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
88:5f:f4:96:4e:33:4b:e9:e6:e0:9f:63:e7:ed:52:f3:cb:d5:
26:62:df:9c:96:96:cc:11:27:eb:e5:78:27:40:03:60:60:96:
57:ab:76:dd:94:90:5b:cd:3f:04:81:58:07:7f:29:ea:ce:ab:
38:67:1e:03:b6:58:0d:93:0c:a9:c0:14:5f:79:d1:4c:d9:f2:
13:9f:26:e1:8f:fc:d3:7a:33:bd:e0:d5:74:cc:06:2c:a0:86:
a3:96:8d:df:af:22:d3:1d:09:f3:2b:c9:10:da:18:23:09:96:
4d:2c:be:7a:e5:4f:88:77:36:03:9c:f1:d8:98:8b:22:3e:fc:
d6:06:53:30:86:05:27:af:ce:fa:86:2d:8d:b8:46:13:60:64:
24:9e:21:84:f1:9c:ed:32:78:71:87:b1:c1:24:ee:a7:f7:62:
8d:40:e9:68:01:3b:19:a9:03:f9:9e:44:ef:a8:8f:d2:8c:73:
e3:71:95:e1:bf:ac:ab:9d:a4:2c:98:a9:ca:0d:27:c7:26:ca:
e1:55:64:95:9a:b1:bc:f6:4c:d3:cd:33:59:7c:70:11:e4:0d:
a9:db:e9:b3:80:df:49:b8:3e:82:41:f9:ff:62:11:bd:0a:8e:
b0:cf:bb:eb:5a:71:37:f4:55:b5:6b:24:68:4c:f2:52:a1:17:
ae:7d:96:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:19:40 2025 by rpki-client