Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/saiptbUtFpuor_av4rYAMXMaOy4.roa
File: saiptbUtFpuor_av4rYAMXMaOy4.roa (raw, json)
Hash identifier: Xo7XvXggohruqcHh7R1lj5BfDXuAXx0B87ehHgcCojw=
Subject key identifier: B1:A8:A9:B5:B5:2D:16:9B:A8:AF:F6:AF:E2:B6:00:31:73:1A:3B:2E
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018EA26AB21DC06C90ABB9B0AF7533F3F375
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/saiptbUtFpuor_av4rYAMXMaOy4.roa
Signing time: Wed 03 Apr 2024 05:24:45 +0000
ROA not before: Wed 03 Apr 2024 05:24:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:c109:b478/128 maxlen: 128
2001:67c:64:ffff:0:18d:e84f:370a/128 maxlen: 128
2001:67c:64:ffff:0:18e:76c8:d5da/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:a2:6a:b2:1d:c0:6c:90:ab:b9:b0:af:75:33:f3:f3:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 3 05:24:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b1a8a9b5b52d169ba8aff6afe2b60031731a3b2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:9f:43:43:75:a1:85:75:9a:43:25:6a:ee:7f:
d9:bf:e8:30:60:d2:00:82:b2:28:dd:87:2c:58:1a:
b5:cb:5e:e5:9b:ef:9b:12:a5:06:0a:9d:01:74:51:
cc:4e:ee:8f:1b:7d:6f:62:1d:2b:90:3f:2e:74:cf:
51:3b:59:fa:94:07:f9:05:0f:db:cd:e2:ca:d3:8a:
d9:6b:be:73:27:be:0c:fb:2f:e7:cf:ac:65:82:49:
77:18:55:da:ef:04:43:67:5c:51:42:71:da:62:c9:
c1:f1:65:20:ac:f7:e8:25:73:b2:81:e2:4c:e7:e4:
1b:98:0a:49:99:1f:6c:08:6d:56:22:4b:6b:9c:d5:
6a:ee:65:b8:d7:2b:ae:b1:7f:e2:1b:17:28:86:e6:
8c:25:ec:b8:3c:dc:f3:e0:da:03:1e:91:1d:e6:53:
02:28:41:01:be:54:e2:f1:80:26:b7:c6:d0:c0:79:
a0:1a:bf:58:1c:f9:52:9d:a6:5c:8c:e8:d1:0e:1b:
ee:8b:ee:96:be:73:73:d1:e4:e6:8d:7f:48:6e:85:
2c:52:86:fe:7e:c5:f5:66:cd:06:aa:e2:28:27:ff:
b4:3f:14:3c:58:95:f9:a3:4e:d8:16:43:20:55:ff:
6d:49:39:cb:37:a3:af:e3:5e:59:ca:7e:cf:5c:27:
57:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:A8:A9:B5:B5:2D:16:9B:A8:AF:F6:AF:E2:B6:00:31:73:1A:3B:2E
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/saiptbUtFpuor_av4rYAMXMaOy4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
1d:73:f4:1c:42:6a:b5:94:82:10:5b:4c:bc:59:c7:31:d6:dc:
bf:35:9f:7d:7f:a5:6e:8e:0e:e5:74:75:aa:19:72:2b:18:e2:
94:1e:5f:4f:0b:2e:6c:85:f5:40:ff:99:d7:35:ee:26:ea:21:
9f:02:00:b7:14:6b:30:b9:b7:aa:f7:da:ec:eb:4a:ae:7e:e1:
d8:4c:59:9e:50:e7:2e:97:c6:95:6f:5f:bf:64:42:46:e1:ef:
67:dc:ee:12:79:f9:bb:01:67:98:92:a4:76:4a:25:0c:bb:f2:
c3:1d:30:fc:cb:44:e3:b0:9b:de:e0:e8:0c:99:7c:da:f7:d5:
e6:cb:27:60:9e:07:f5:15:06:48:4b:7a:6d:4a:7b:b3:69:45:
43:d8:77:89:e4:2f:af:41:47:38:6b:b4:df:e4:f9:ce:b2:ea:
20:b9:a6:5d:d3:ac:73:57:31:bd:0b:ea:d8:c9:b7:27:39:d1:
31:6c:b3:c4:4a:7a:62:b9:1a:e9:60:d4:df:eb:82:9f:f6:b0:
9e:da:58:d4:29:63:30:65:71:44:a2:07:4d:ab:ac:cd:c7:2f:
28:af:54:85:58:ff:96:1e:88:54:97:7e:dd:8b:0d:9b:71:a1:
65:19:57:a7:c9:06:e0:ad:f5:1a:ad:04:cf:18:e4:98:66:7a:
d4:ed:b4:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:34 2025 by rpki-client