Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/uFRwpLy9WCV5NxDn1RprlUoYfto.roa
File: uFRwpLy9WCV5NxDn1RprlUoYfto.roa (raw, json)
Hash identifier: 2dAv64GzY50wFlJ3VWKXXuAMEF9wEKpuO59tMgbGyuk=
Subject key identifier: B8:54:70:A4:BC:BD:58:25:79:37:10:E7:D5:1A:6B:95:4A:18:7E:DA
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018E946B52BD91A0922D8A6EE7DD5096224A
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/uFRwpLy9WCV5NxDn1RprlUoYfto.roa
Signing time: Sun 31 Mar 2024 12:10:44 +0000
ROA not before: Sun 31 Mar 2024 12:10:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:c109:b478/128 maxlen: 128
2001:67c:64:ffff:0:18d:e84f:370a/128 maxlen: 128
2001:67c:64:ffff:0:18e:76c8:d5da/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:94:6b:52:bd:91:a0:92:2d:8a:6e:e7:dd:50:96:22:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Mar 31 12:10:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b85470a4bcbd5825793710e7d51a6b954a187eda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:fc:92:aa:74:5b:c0:95:bc:3e:ae:1e:98:a0:
9c:15:4d:3b:13:be:8f:33:d9:07:19:33:a5:98:95:
3e:ca:ec:0a:db:24:8c:51:c2:55:fa:96:57:10:d9:
33:9d:dc:c8:5d:f4:7f:51:bb:20:7a:8a:c0:1d:60:
1f:5c:b1:8c:29:13:93:e7:7b:dc:ea:3d:c5:94:d4:
2a:23:76:52:9d:36:ec:5d:80:7d:14:56:fa:87:3e:
b5:7e:8e:93:7e:bd:2d:13:19:2a:e2:64:13:59:9b:
f7:6e:45:87:af:97:f6:ff:85:69:2f:a9:82:50:9b:
06:c0:0a:3f:07:06:21:23:f8:63:c7:73:24:a4:4c:
6c:f3:44:26:8f:69:e1:90:42:d6:86:a0:ae:0d:c7:
aa:1a:c7:02:2b:1f:af:78:3d:a1:0f:51:c6:11:1f:
e0:b8:45:aa:32:4b:44:70:4f:7c:1e:28:50:76:7c:
1a:a5:ca:0b:6c:8d:b2:94:46:2b:c7:ee:28:f4:fb:
56:ab:e7:70:55:e8:b9:b9:ff:f8:55:54:74:66:ab:
f9:5c:8c:a8:58:a9:2f:a4:b5:a1:7d:8d:b7:99:f6:
33:72:e3:0a:98:30:7d:6e:04:57:4c:ba:ae:be:ba:
0b:69:a3:ce:71:17:96:2f:6f:78:00:1d:aa:67:84:
df:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:54:70:A4:BC:BD:58:25:79:37:10:E7:D5:1A:6B:95:4A:18:7E:DA
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/uFRwpLy9WCV5NxDn1RprlUoYfto.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
47:98:fd:7a:de:74:a8:b0:66:7b:10:67:5b:72:c9:d3:3a:2e:
06:f7:59:d8:fd:73:6d:a1:8b:51:cc:4f:ed:5b:c6:78:b6:7c:
42:81:46:96:d4:c7:2e:1e:37:fc:86:7d:ab:5d:08:70:cb:af:
3b:ca:77:cf:8d:d1:b6:50:6a:02:a6:4c:61:5a:9f:25:b4:36:
c7:8d:d2:78:d6:42:6f:09:21:69:7c:38:94:41:3e:1c:80:90:
b0:b1:cf:35:6d:09:69:bd:5f:71:ae:dd:f2:4e:c6:c1:c7:cf:
33:45:3a:72:d7:6e:e8:b9:15:c2:04:62:e0:78:44:d3:f2:49:
d6:91:a9:dc:dc:18:0d:24:bb:a0:2f:70:c2:cc:0c:e3:51:1c:
4a:22:9b:8d:30:89:f3:83:a4:54:40:f3:5a:af:4b:a2:11:09:
63:5b:10:29:d4:5f:d8:13:2e:50:c6:fa:50:4d:0e:ac:9f:a8:
d8:98:16:96:12:ab:bf:43:ed:c3:35:08:c8:54:32:46:97:de:
b6:38:70:a5:c6:80:80:d4:8b:c1:d0:a7:15:57:78:0b:17:e3:
d8:3b:a2:b1:72:50:8e:c4:f3:ca:13:05:ed:5d:4f:53:a8:63:
a2:38:53:73:38:99:c2:b3:e8:63:ad:16:9f:e9:98:5f:3e:db:
5b:96:a0:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:52 2024 by rpki-client on console-ams.rpki-client.org