Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/pyoj-LVE3uik5f__2WRm87fAElw.roa
File: pyoj-LVE3uik5f__2WRm87fAElw.roa (raw, json)
Hash identifier: J6UMtm1UJuz2S54CnFXpV3lVJ7/wJwnnHtF4tkYCrwY=
Subject key identifier: A7:2A:23:F8:B5:44:DE:E8:A4:E5:FF:FF:D9:64:66:F3:B7:C0:12:5C
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CF26F2A5975A01DF96502CA7090DFCA16
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/pyoj-LVE3uik5f__2WRm87fAElw.roa
Signing time: Wed 10 Jan 2024 08:13:40 +0000
ROA not before: Wed 10 Jan 2024 08:13:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f2:6f:2a:59:75:a0:1d:f9:65:02:ca:70:90:df:ca:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 10 08:13:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a72a23f8b544dee8a4e5ffffd96466f3b7c0125c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:b9:d6:1d:eb:a7:45:9d:fa:33:14:1a:38:b6:
b1:d4:1b:dd:15:e4:1d:2d:31:b8:b2:1f:cd:6c:13:
7c:bf:57:e3:f3:80:19:7a:7d:4b:cb:a1:4f:6a:c6:
a6:e3:8f:64:72:eb:d9:c9:6e:5a:83:fc:f6:9a:b8:
c8:40:88:ae:fd:bb:bd:e1:f5:0f:47:8e:e5:1f:db:
b9:5f:d9:ea:51:b0:5b:41:c2:7d:0f:28:a9:73:e5:
8b:52:02:4f:6b:80:59:2f:b0:16:8d:1f:59:d9:67:
16:a7:09:56:4c:0f:9e:af:cd:17:2d:fb:98:c8:e2:
b4:45:ce:67:f7:cc:ad:3e:1e:84:c6:95:fa:a5:42:
bd:50:31:07:76:55:6e:79:88:a5:c4:9a:93:35:16:
7d:b7:b4:b5:95:c3:82:8c:fb:ae:e8:40:d0:20:b9:
42:7c:05:40:55:a3:26:eb:a0:7d:7d:21:6e:11:79:
a8:cf:ea:0d:72:66:64:40:0c:13:3a:07:7b:58:f3:
70:c8:4b:6c:03:c1:2f:bb:c0:76:a5:cf:b8:e9:68:
00:82:b2:d0:ce:82:89:73:2b:2b:38:93:e6:ea:c7:
ba:60:f5:f0:12:20:d8:88:ae:e9:98:96:51:18:af:
61:21:10:4b:ca:ea:cc:63:90:c5:64:ef:d3:d6:9c:
e3:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:2A:23:F8:B5:44:DE:E8:A4:E5:FF:FF:D9:64:66:F3:B7:C0:12:5C
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/pyoj-LVE3uik5f__2WRm87fAElw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
8e:87:68:7b:f5:db:26:22:03:73:07:c4:dc:07:42:ae:a6:b6:
4a:c6:1b:df:4e:d2:16:03:63:88:e6:10:93:05:3f:12:c0:85:
c1:ba:0f:f9:96:71:49:d9:3a:b8:2b:8c:e7:a3:8f:87:98:8f:
25:eb:d4:f6:87:57:2d:65:d1:7b:9c:63:2c:d5:cb:22:1d:fd:
db:ed:47:34:23:de:4f:ff:95:d7:68:cf:2a:1e:18:5e:b2:35:
4d:f3:4d:f6:24:3a:dc:c7:7d:65:6d:cf:9c:30:0a:ee:1e:57:
68:23:bf:dd:a0:29:5c:e3:bf:8c:7f:f4:f6:f9:f6:fd:52:68:
16:37:21:02:2f:08:d3:06:53:5f:7e:81:20:f7:13:cf:7e:06:
52:ae:18:4d:06:1b:1b:6b:4e:5b:e2:5e:00:87:81:79:a2:fb:
fb:13:e2:c6:e8:76:ad:70:7d:df:d0:1b:fb:87:ec:0e:3f:1e:
51:76:60:2b:b6:4f:fd:23:f4:84:2f:23:3a:46:6c:dc:26:c9:
4c:7a:55:2c:4b:90:ca:f6:3c:56:95:7f:64:d2:8f:b9:ba:ae:
4d:5c:01:f1:8b:59:c8:52:d9:ee:0a:0d:91:17:77:26:31:5e:
71:bd:f5:dd:a0:f4:bf:28:85:4c:94:eb:66:c4:5f:0b:05:46:
b2:70:6b:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:52 2024 by rpki-client on console-ams.rpki-client.org