Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/uqWzd-hCIelc2QjiWxnVLeZzW-o.roa
File: uqWzd-hCIelc2QjiWxnVLeZzW-o.roa (raw, json)
Hash identifier: p2ueA0R9K0y3MaNhUlhlljVoP5ygyiQbiDhvjdy7OaI=
Subject key identifier: BA:A5:B3:77:E8:42:21:E9:5C:D9:08:E2:5B:19:D5:2D:E6:73:5B:EA
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CFFC180DA537658B7EF17EFD77B814D1D
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/uqWzd-hCIelc2QjiWxnVLeZzW-o.roa
Signing time: Fri 12 Jan 2024 22:18:40 +0000
ROA not before: Fri 12 Jan 2024 22:18:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ff:c1:80:da:53:76:58:b7:ef:17:ef:d7:7b:81:4d:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 12 22:18:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=baa5b377e84221e95cd908e25b19d52de6735bea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:70:01:75:6a:e2:57:57:18:dc:cd:97:34:19:
bc:fe:49:1c:7a:18:8e:1d:bf:b4:8e:98:f7:f9:c1:
ba:1c:ea:19:79:25:44:bc:1a:4f:c8:92:ad:dd:dc:
b3:1e:cc:1d:c6:dd:0d:37:8f:8c:ea:3a:ef:31:14:
5f:e9:13:48:99:b7:0f:a1:7b:97:6c:5f:35:6f:3d:
5a:a5:da:ce:b7:0c:d1:59:40:d5:33:0c:4e:9d:41:
6c:d0:6d:40:8c:61:db:bc:3d:3b:6f:5d:9e:f2:2f:
cb:f5:25:7a:81:a9:df:1c:83:50:9e:db:91:5b:65:
eb:68:a8:ab:bd:c4:11:49:5f:58:9e:4a:03:2e:89:
3e:7c:52:34:0d:46:31:69:d5:c0:72:41:4c:eb:19:
f7:7e:41:c1:c4:ae:54:51:74:dc:16:7b:89:fa:b4:
ee:c3:1c:ef:49:ae:67:67:9f:4f:6f:9f:f5:21:7f:
1d:50:ca:73:3d:ee:29:64:25:dc:dc:d9:66:93:69:
04:c3:ac:64:55:14:e2:b0:fb:e0:32:a5:c2:da:a2:
e3:84:b9:54:27:ff:76:a9:cd:2d:85:c2:35:d3:5b:
dd:9a:64:74:46:a8:e8:26:54:07:87:97:b0:be:49:
ea:97:9e:a8:84:e4:d0:5e:09:53:ae:c6:a0:8d:cd:
da:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:A5:B3:77:E8:42:21:E9:5C:D9:08:E2:5B:19:D5:2D:E6:73:5B:EA
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/uqWzd-hCIelc2QjiWxnVLeZzW-o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
61:bd:bc:ff:9c:0f:b6:f9:a6:54:d5:40:1f:16:a1:2d:bc:e3:
b9:20:f4:f8:7f:ad:76:1a:49:de:5a:0d:fd:a1:d3:dd:f0:27:
ae:d3:42:fc:8b:77:bc:53:af:dd:0c:52:82:63:62:87:f3:fc:
20:f2:35:e8:4e:43:cf:0a:2f:41:73:34:94:5e:b7:e5:ab:67:
14:74:54:8e:35:af:aa:13:11:5c:16:c4:e2:e6:6f:48:85:58:
09:64:1f:45:22:b6:17:87:b9:f3:e8:b4:d3:bc:9a:6c:95:95:
c4:07:6d:8f:5d:2d:73:24:b9:02:14:f5:4e:d2:a7:78:f2:e4:
57:b3:5d:31:57:81:46:9f:a0:c0:9a:05:98:50:83:1f:eb:db:
57:f2:06:31:45:54:e8:05:45:db:c8:5a:38:5a:99:08:bc:2c:
b6:41:e1:60:12:c6:67:58:7d:9d:0a:33:87:ea:e1:41:cf:29:
a5:a3:70:41:5b:34:21:d8:0a:64:af:15:17:80:ec:ba:44:71:
d1:2e:5e:28:86:ab:6e:ed:f3:2b:fe:7d:8f:d3:ef:2b:35:63:
76:a9:42:9f:96:b9:c9:e8:ae:12:33:03:ea:6e:4a:e8:89:f7:
54:14:63:b1:da:f6:39:a3:dc:57:dc:ec:dc:26:7d:ba:5f:1a:
e9:98:d9:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:32 2024 by rpki-client on console-fra.rpki-client.org