Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/qQ59Oer3BvZzXYvHu0X0gVvZeS4.roa
File: qQ59Oer3BvZzXYvHu0X0gVvZeS4.roa (raw, json)
Hash identifier: LmFhBhRUd4hJ6tg7mm3TXCMqfop4ClMYSVyVZFStiXg=
Subject key identifier: A9:0E:7D:39:EA:F7:06:F6:73:5D:8B:C7:BB:45:F4:81:5B:D9:79:2E
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018EE3627FF03DF9F80E92724582644F8C3C
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/qQ59Oer3BvZzXYvHu0X0gVvZeS4.roa
Signing time: Mon 15 Apr 2024 20:11:07 +0000
ROA not before: Mon 15 Apr 2024 20:11:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e3:62:7f:f0:3d:f9:f8:0e:92:72:45:82:64:4f:8c:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 15 20:11:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a90e7d39eaf706f6735d8bc7bb45f4815bd9792e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:a1:ec:ab:9b:d1:5a:35:fb:ff:32:6d:63:6d:
99:5c:01:27:02:a3:14:ab:3b:37:35:d6:73:a1:7f:
15:a1:18:78:5c:86:07:d3:db:70:7c:bf:d8:14:a9:
b1:91:35:96:bb:1a:f6:a4:40:20:83:34:ff:f4:91:
f7:9d:0f:44:7b:fb:9f:9a:ac:31:0a:ad:ba:98:6b:
f0:19:b0:3e:e4:c0:3b:ae:99:dc:74:fb:05:97:e7:
a3:a2:e2:8c:8c:8d:3c:4f:1c:ee:19:e8:97:8d:31:
a1:31:f1:54:90:f0:98:43:ad:66:cf:83:90:d3:3a:
f6:d7:a7:b7:47:20:4d:97:e6:a8:e1:d2:12:3a:a5:
5a:e3:8c:14:3e:f2:b4:4d:8d:e4:7f:2b:a4:f1:6f:
75:ac:7a:ec:c6:95:6c:f2:10:37:30:28:e8:c7:2b:
0d:0f:31:84:af:66:be:1d:6a:53:fa:ed:4e:28:5c:
46:a2:35:f1:74:ad:de:74:71:36:07:58:30:fb:c3:
44:8d:c0:ba:82:3f:b9:29:a1:21:fe:fe:32:2a:3a:
e8:5d:5a:08:e4:a4:58:bb:5f:b6:38:1b:b6:a6:5b:
f1:85:82:ba:87:cc:66:50:20:73:6f:e9:06:b8:db:
4e:dd:b4:dc:36:04:17:e7:a4:d9:ef:ea:7c:f7:01:
ee:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:0E:7D:39:EA:F7:06:F6:73:5D:8B:C7:BB:45:F4:81:5B:D9:79:2E
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/qQ59Oer3BvZzXYvHu0X0gVvZeS4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
7b:8d:9a:98:2b:e7:1f:85:14:be:a6:59:6e:f6:86:64:4b:93:
ca:67:5e:44:e8:7d:98:00:97:b3:87:73:6d:bc:77:3d:32:97:
44:33:51:9a:92:40:76:3d:74:c6:15:cd:c7:25:54:bb:d4:ba:
d7:54:6d:ac:14:d3:27:69:4c:9a:53:41:61:a8:6f:ba:32:68:
c3:c5:53:af:bf:4b:e9:44:d1:85:a0:29:23:cc:87:04:00:09:
2f:e2:40:76:4c:96:38:83:73:11:fe:5a:23:84:93:fd:34:60:
1f:af:f8:22:7d:e5:6e:89:db:2a:12:7f:1c:1e:ea:ee:e0:a4:
0c:8e:fd:2a:13:8e:5e:25:91:01:8a:04:a8:82:32:ec:cb:ca:
88:89:c6:6b:f0:16:77:3e:6e:7d:6a:e2:3e:6c:2b:09:20:92:
6a:33:8b:e5:f1:72:0d:5b:ba:65:9a:4a:8c:b7:5e:89:71:36:
da:24:ce:5d:e9:3b:4e:96:55:08:c4:4e:ee:f1:4e:ef:1c:a8:
cc:2b:40:bd:f4:0c:fc:c1:d9:44:a8:5f:bd:bb:8f:52:0c:8a:
c6:0e:09:25:c4:60:12:58:66:99:50:e2:df:c6:cf:9e:c0:f6:
53:89:db:f7:95:2e:8e:18:e8:8c:5a:f5:da:cc:2f:46:97:4c:
33:05:c3:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:52 2024 by rpki-client on console-ams.rpki-client.org