Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/qPKGux2Gxcpob38sTKQz1F9gK-8.roa
File: qPKGux2Gxcpob38sTKQz1F9gK-8.roa (raw, json)
Hash identifier: sa2wmmbf/vE2irn1tiw2DIfLsxD/pp9B4yLvIaUFCN0=
Subject key identifier: A8:F2:86:BB:1D:86:C5:CA:68:6F:7F:2C:4C:A4:33:D4:5F:60:2B:EF
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CD38835B41864CC90E6CA8DC198D97C62
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/qPKGux2Gxcpob38sTKQz1F9gK-8.roa
Signing time: Thu 04 Jan 2024 08:12:48 +0000
ROA not before: Thu 04 Jan 2024 08:12:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d3:88:35:b4:18:64:cc:90:e6:ca:8d:c1:98:d9:7c:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 4 08:12:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a8f286bb1d86c5ca686f7f2c4ca433d45f602bef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:23:97:12:21:e3:6f:1c:7f:d4:8f:cc:8e:41:
f8:33:86:ae:aa:3a:63:de:2e:88:8e:62:82:b1:46:
a4:c0:3d:18:7a:44:f6:bc:b6:f1:3e:ad:c1:57:0c:
0d:07:08:6c:34:5c:3b:da:eb:29:f0:7f:ed:9c:db:
ac:61:b1:dd:45:bd:65:7a:01:a9:d7:f1:96:1c:23:
ae:e5:56:b1:c7:cc:17:7a:49:4b:d1:6c:26:1b:67:
29:7b:55:b5:f6:c7:4d:71:84:22:26:99:e3:6b:fb:
ce:de:47:69:2e:2b:fc:1f:7a:d5:0e:41:1f:2d:fc:
96:68:31:0e:f0:e8:2c:16:b7:e0:9b:c2:14:8e:46:
1b:18:42:9f:0b:f1:0d:25:d0:46:a9:23:5e:ed:d3:
5e:70:dc:e0:42:2d:ac:5b:a1:7c:63:29:dc:23:c2:
bc:8b:24:a8:51:3f:1b:bd:4e:5a:b9:e1:2a:8c:ac:
2f:f5:13:67:67:04:44:d3:74:3b:2f:5e:3c:3f:b3:
fe:3b:cb:0a:2f:d1:27:ac:1c:5c:af:17:a3:be:d7:
31:a9:e2:37:dc:5e:e3:17:b1:1b:51:4d:a6:25:98:
2e:72:f4:7f:8a:23:b4:7f:33:c0:26:82:e9:1c:01:
82:b5:32:4e:7d:d9:e4:4e:7b:a7:cf:b2:b8:01:da:
ed:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:F2:86:BB:1D:86:C5:CA:68:6F:7F:2C:4C:A4:33:D4:5F:60:2B:EF
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/qPKGux2Gxcpob38sTKQz1F9gK-8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
0e:fc:af:28:93:02:d6:3a:4f:b2:8e:fa:bd:1f:d6:b9:0a:38:
63:0c:61:d1:74:aa:bf:89:42:d4:60:c0:85:26:64:92:0b:e7:
1c:22:3d:a9:7b:89:a5:2b:2d:ca:06:03:f6:f2:fc:aa:fd:83:
96:a5:34:47:b9:7b:5b:a6:a8:91:43:39:d6:c9:67:70:93:5b:
f6:f0:8e:83:d8:44:f4:f4:b7:87:8d:85:0a:31:00:20:30:ee:
27:d9:21:2c:d0:66:27:63:e5:d8:78:33:1a:ad:06:59:23:ab:
18:58:f2:a5:30:fb:c6:68:09:20:0d:73:b1:30:1c:24:83:94:
31:b1:d3:fe:6e:ae:2f:a4:36:8f:9e:83:ab:55:ce:9e:d4:89:
39:fc:31:f7:28:66:0e:58:9f:d0:12:01:7e:b5:fe:6a:81:4c:
db:8b:b8:74:06:b2:22:aa:24:29:0f:a2:14:7e:f0:66:2c:d4:
5b:cf:52:7f:97:ff:5a:08:5c:34:a9:88:08:02:d2:87:67:f5:
32:9f:27:eb:9e:e8:24:45:02:82:e0:98:61:04:87:48:48:5c:
48:55:bb:14:b9:e3:86:8d:4f:d0:d4:4a:ef:62:21:e4:07:5e:
2e:4c:33:c3:15:1d:13:b6:2a:73:91:21:6f:e6:4a:8c:d8:4e:
9f:29:b4:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:52 2024 by rpki-client on console-ams.rpki-client.org