Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/uOvAhdfbx096ynAKvP9vaCVS48Q.roa
File: uOvAhdfbx096ynAKvP9vaCVS48Q.roa (raw, json)
Hash identifier: zq9/mk7fdBF09iLM9DoTNW4xegMZafQyC68F8JL85Uo=
Subject key identifier: B8:EB:C0:85:D7:DB:C7:4F:7A:CA:70:0A:BC:FF:6F:68:25:52:E3:C4
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CB7DB183B644E4BF082CBE2BC286764C7
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/uOvAhdfbx096ynAKvP9vaCVS48Q.roa
Signing time: Fri 29 Dec 2023 23:13:58 +0000
ROA not before: Fri 29 Dec 2023 23:13:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b7:db:18:3b:64:4e:4b:f0:82:cb:e2:bc:28:67:64:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 29 23:13:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b8ebc085d7dbc74f7aca700abcff6f682552e3c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:2b:b2:52:57:c9:4a:fe:49:8e:4c:ba:81:5c:
3e:b6:0f:11:1c:a8:5a:fe:1c:49:b2:7b:0c:c5:90:
29:9a:8c:2a:00:ed:cc:7b:c3:07:20:d3:ce:9b:da:
57:20:6d:25:3d:c3:82:85:70:d0:7b:a8:6b:29:da:
98:c8:3b:a8:80:81:f0:16:73:78:f9:78:d9:dd:7b:
4a:83:74:be:db:0d:68:56:6a:d2:7e:7c:e9:25:63:
03:d7:fb:00:85:57:d2:ac:99:23:71:d9:cd:08:c3:
2b:e0:82:c3:12:0b:95:68:5b:64:42:e1:ff:0e:e2:
3b:78:9f:7d:e1:70:b6:92:3c:3e:9a:ce:1f:83:ec:
d6:a2:3b:0d:60:75:22:06:25:86:12:64:4f:2c:bf:
c6:db:c4:d9:3d:ed:7e:a3:dd:c3:b9:52:8b:0e:e7:
98:87:fe:63:f5:34:d2:64:dd:01:a1:8a:14:ab:fe:
da:8b:4a:9a:ff:c8:44:4a:58:bb:36:4d:34:f1:da:
c3:cd:a8:4a:98:0f:9d:a2:1e:f8:df:06:58:19:b0:
41:d4:ad:15:f8:f8:39:0c:55:6f:82:c7:af:14:d7:
99:73:29:75:9e:72:9b:20:e3:f5:28:03:1a:d9:77:
98:c2:11:a3:09:32:d1:73:ad:a7:5e:aa:09:e0:0f:
a4:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:EB:C0:85:D7:DB:C7:4F:7A:CA:70:0A:BC:FF:6F:68:25:52:E3:C4
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/uOvAhdfbx096ynAKvP9vaCVS48Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
9f:a6:f0:dc:a0:48:56:36:c8:2d:62:e6:1a:55:a3:7d:ea:38:
36:2e:75:0d:11:df:b6:9e:db:a3:18:ce:a7:42:3c:4b:9f:2e:
4b:78:68:96:41:98:08:23:7c:82:8c:b3:a6:79:16:97:83:c7:
38:64:36:38:b1:bc:e3:4f:de:f1:b6:fc:e5:f8:a0:98:a7:fb:
ec:f5:c7:ff:80:3a:f3:14:11:0e:c9:60:89:3f:68:5b:8c:44:
6d:f3:d4:f8:49:ac:99:29:1e:e0:ce:78:a4:da:10:49:96:63:
4d:58:38:bc:ca:d9:b2:1b:2a:8b:c1:b9:15:1b:98:b2:d8:52:
5d:dd:0e:62:5a:a2:9a:1b:18:a4:d9:08:c0:ee:f2:1f:f6:64:
b5:6a:70:f9:c0:45:ac:76:cc:b8:ba:d8:59:5a:be:58:29:0e:
30:f7:b8:06:4b:a6:9b:21:1f:ef:a5:52:2e:7b:8c:a0:e1:9c:
81:ff:c2:83:45:9a:59:dc:5a:19:7f:62:19:5a:74:b2:88:0f:
92:d0:ae:52:8f:4f:ac:39:8a:0e:b2:b2:d1:ab:23:43:0c:f4:
0a:6e:c3:3b:44:f7:6e:33:8b:1b:5e:e7:b3:cd:97:8b:89:6e:
77:3b:de:d2:42:eb:c8:da:8b:f6:67:2c:00:d3:3c:5e:14:72:
18:5e:6d:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:32 2024 by rpki-client on console-fra.rpki-client.org