Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/qeGV1DTAlDZ9VbSb47-RoVA3dfo.roa
File: qeGV1DTAlDZ9VbSb47-RoVA3dfo.roa (raw, json)
Hash identifier: GiXMSVdZcjVxLX5UnIgiqB/nbfc+XQpbY4quhyWeonw=
Subject key identifier: A9:E1:95:D4:34:C0:94:36:7D:55:B4:9B:E3:BF:91:A1:50:37:75:FA
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018D3E656FC71B22A57BB2CC264EDC70085C
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/qeGV1DTAlDZ9VbSb47-RoVA3dfo.roa
Signing time: Thu 25 Jan 2024 02:14:11 +0000
ROA not before: Thu 25 Jan 2024 02:14:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:3e:65:6f:c7:1b:22:a5:7b:b2:cc:26:4e:dc:70:08:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 25 02:14:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a9e195d434c094367d55b49be3bf91a1503775fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a4:a3:22:76:e3:2e:1b:00:e6:5b:7d:6c:81:
88:c7:e6:b9:46:5d:7f:a6:5b:03:ff:0c:30:f9:cc:
bd:41:b6:3e:9e:9a:21:80:a2:dc:b9:f0:3d:02:b2:
5c:b3:4f:f0:8f:34:26:66:bb:04:38:6e:0c:12:8c:
14:fb:7d:87:5e:06:98:eb:de:b0:42:1d:2f:fb:97:
6a:97:c7:6b:00:28:4d:7d:b2:09:94:e1:2b:1b:ca:
08:1d:0b:d6:f9:e5:68:96:c6:04:14:71:d7:84:36:
97:dd:a5:7a:81:f2:a4:6e:75:34:4a:98:1a:db:6a:
dc:86:07:8d:0b:0f:ce:96:e2:dc:f5:ed:3a:56:06:
14:e4:3b:92:63:bd:a3:2e:cc:fb:cb:2c:bd:60:d1:
a2:03:de:65:c7:89:ae:99:11:3b:46:17:33:a4:d8:
41:c1:2e:18:5f:74:03:ba:5b:0c:52:56:00:24:0f:
a5:9b:df:b9:a9:34:df:16:97:74:a7:aa:25:38:be:
05:2b:24:ba:79:3f:b0:b9:f7:aa:6b:4e:c0:87:88:
15:2a:27:84:f1:c2:be:f8:d1:7a:59:6c:53:69:a2:
4c:f7:ef:7f:f2:d0:8a:f9:e5:78:91:63:97:a4:2a:
fe:c8:40:a1:4e:61:f4:a9:26:cc:6a:57:63:89:29:
30:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:E1:95:D4:34:C0:94:36:7D:55:B4:9B:E3:BF:91:A1:50:37:75:FA
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/qeGV1DTAlDZ9VbSb47-RoVA3dfo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
93:be:21:59:32:ab:a3:f3:14:b8:1b:84:19:e4:e9:0c:74:5d:
4f:74:bd:f7:3e:db:d0:47:d0:52:12:34:4c:a6:6d:1d:da:73:
a8:da:00:d1:09:a7:dc:1c:25:47:bb:bd:66:04:ae:90:5c:b1:
be:0b:fc:e0:18:ad:4b:1c:81:2e:13:7f:ee:76:39:d3:2a:9a:
48:53:23:cc:37:7e:fe:5b:2c:18:9d:ce:be:6c:cb:41:bb:e0:
ea:78:2b:8c:57:cc:24:ce:d4:f4:19:e9:4d:fe:77:e0:d6:df:
6d:6f:1f:98:a4:11:d8:bb:87:78:81:8a:aa:64:0a:f7:ac:21:
ad:20:75:b5:e4:e9:ae:1d:bf:81:91:95:da:aa:ff:6e:d5:4e:
a8:c5:51:7d:f0:e6:18:8e:ee:f1:99:92:67:dd:35:c3:72:bd:
3b:e1:05:86:53:ae:8b:3d:74:18:b7:44:e1:6d:5a:46:37:cd:
30:b6:6a:35:f5:1b:1c:38:e6:c8:18:5b:77:62:e7:7f:e9:27:
de:37:9b:2f:d1:84:27:3e:7a:8e:3e:05:2f:a6:58:3b:47:4e:
cd:f4:bf:13:d6:a6:9e:9d:db:e3:46:6e:57:7f:2b:ae:8c:24:
02:87:66:25:1d:4f:ab:60:e9:68:09:bf:52:28:cc:4a:5b:5c:
7d:51:d9:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:32 2024 by rpki-client on console-fra.rpki-client.org