Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/r4y0V7ylFeuhVUqaFhnnxefzQxM.roa
File: r4y0V7ylFeuhVUqaFhnnxefzQxM.roa (raw, json)
Hash identifier: 4H2b32kTlG/5IZ6OKV6+vjXxtodfKWRbNEAMnDpQGcc=
Subject key identifier: AF:8C:B4:57:BC:A5:15:EB:A1:55:4A:9A:16:19:E7:C5:E7:F3:43:13
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018E1E61CE7A6953E9A3655AA47A8FED16C9
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/r4y0V7ylFeuhVUqaFhnnxefzQxM.roa
Signing time: Fri 08 Mar 2024 14:05:10 +0000
ROA not before: Fri 08 Mar 2024 14:05:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:c109:b478/128 maxlen: 128
2001:67c:64:ffff:0:18d:e84f:370a/128 maxlen: 128
2001:67c:64:ffff:0:18e:1e61:827/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:1e:61:ce:7a:69:53:e9:a3:65:5a:a4:7a:8f:ed:16:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Mar 8 14:05:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=af8cb457bca515eba1554a9a1619e7c5e7f34313
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:33:2d:ac:c0:1e:f2:b0:51:93:3d:98:f2:b9:
1d:1f:4a:fb:29:cc:a5:34:e5:0c:ef:84:64:80:ba:
b6:d8:35:dc:d0:f1:51:5a:94:ef:1e:55:49:32:7d:
1d:89:d1:b7:c1:ed:07:ad:07:e5:24:54:1c:44:1b:
f4:bf:ae:57:5b:6d:fe:7a:39:ea:ea:af:86:87:9f:
d1:bb:8d:9f:2c:5f:d8:60:95:8b:0c:2c:b3:65:6d:
49:00:97:9a:7e:b8:b2:4d:25:75:50:a4:d8:25:8d:
16:4d:e9:d7:3a:15:17:f5:91:26:74:97:b8:ca:91:
cb:d6:d7:98:b0:5a:7b:b8:d9:96:cc:a8:a3:94:ff:
db:16:be:7b:22:8d:7a:81:0a:b4:38:1b:cd:d2:4c:
de:98:df:e0:01:22:8c:85:ce:31:08:f4:9b:f5:89:
06:97:56:22:f9:a9:05:bd:59:59:8a:13:26:2f:ec:
5c:9d:f0:98:f2:8a:2b:6b:d4:28:81:55:b7:0c:88:
5d:40:e5:37:bc:7f:ca:d8:6c:c5:e9:a7:40:a1:7a:
d1:6c:65:66:f4:ba:66:8f:ea:ac:f5:93:a2:6a:47:
24:23:62:7f:f6:17:aa:e1:b6:59:b9:fa:3d:2e:56:
c2:9d:9d:87:15:57:c6:81:b6:f1:ff:0b:08:5d:11:
02:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:8C:B4:57:BC:A5:15:EB:A1:55:4A:9A:16:19:E7:C5:E7:F3:43:13
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/r4y0V7ylFeuhVUqaFhnnxefzQxM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
78:d6:ab:54:1e:fc:94:06:12:3e:86:f2:bf:9e:80:30:d2:54:
93:e0:35:3d:d0:98:19:ea:6c:3d:6d:96:6b:48:9a:db:c0:e3:
cb:6c:1d:57:db:a3:61:89:2e:58:a9:83:e3:de:f0:6b:0b:d1:
6a:13:a8:2a:61:b4:69:0f:79:28:1e:27:78:b3:0f:d5:ce:fa:
7c:92:74:9b:d2:9b:31:8e:8a:89:99:3f:a3:73:31:0d:29:3c:
b0:91:bc:ef:a7:76:c3:92:ba:b2:e1:e0:7e:29:4b:51:d0:ae:
a9:08:b5:bb:7f:73:55:ef:a3:b2:8e:03:8a:c6:ff:4c:8b:9d:
a5:a3:bc:a7:a6:2e:7e:51:f9:3b:8e:68:05:98:ec:2f:af:7c:
17:27:a9:a2:8e:9e:90:a2:51:a2:75:de:01:28:eb:b8:77:f1:
17:13:fe:57:04:40:09:e0:a8:66:00:f0:8e:5d:e4:b9:ab:95:
a3:ee:4e:76:ec:39:a1:9d:a3:25:c9:b3:2c:1e:2e:fb:e6:7f:
fd:f8:fb:3f:c7:a7:6e:e8:90:6b:46:92:c6:45:ae:12:30:fa:
44:bd:9f:b0:14:00:27:ae:3e:9f:9f:26:d5:37:a3:38:1c:9b:
75:ac:32:53:4f:ec:c6:c6:b2:7b:4c:33:57:9e:87:fe:e4:27:
c0:d8:7e:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:52 2024 by rpki-client on console-ams.rpki-client.org