Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/wvhVbJ0pMNCFu_vNWWSgnYNMSCU.roa
File: wvhVbJ0pMNCFu_vNWWSgnYNMSCU.roa (raw, json)
Hash identifier: riwWMABTiFpxksyd1wi7I24+HNIFu/X1FJCY8+l17m0=
Subject key identifier: C2:F8:55:6C:9D:29:30:D0:85:BB:FB:CD:59:64:A0:9D:83:4C:48:25
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018EDEAA0020454761023EB16903C37DF71D
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/wvhVbJ0pMNCFu_vNWWSgnYNMSCU.roa
Signing time: Sun 14 Apr 2024 22:11:06 +0000
ROA not before: Sun 14 Apr 2024 22:11:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:de:aa:00:20:45:47:61:02:3e:b1:69:03:c3:7d:f7:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 14 22:11:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c2f8556c9d2930d085bbfbcd5964a09d834c4825
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:83:57:3b:37:7e:2e:66:d5:d2:3f:b3:f7:f8:
69:9c:44:e0:dc:1a:db:dc:2a:a2:e6:42:69:c0:32:
7a:88:41:69:5d:f1:2f:2b:a7:07:ee:d0:ac:d9:1d:
ae:1c:65:7b:10:45:43:d4:43:48:d7:e0:32:ad:cf:
2e:04:c0:45:c1:4b:b0:92:86:f6:0f:15:d9:94:b9:
91:33:96:31:d6:5d:98:7e:80:d5:3d:aa:2a:da:8e:
85:72:06:b6:3a:cb:70:7a:fa:35:23:72:6a:06:73:
16:00:39:84:67:ac:44:16:dd:07:15:1e:9a:cf:57:
2c:ba:c1:f6:f5:d9:4a:6a:29:9b:69:af:0b:3e:52:
8a:38:7d:68:59:e8:d7:1a:86:09:4c:47:fc:88:6e:
cd:3f:bb:c0:17:b8:c5:cf:25:26:57:ee:10:fd:9c:
06:09:4d:e7:03:7c:ff:52:96:78:6c:ea:19:8d:b5:
3b:e3:95:04:c7:94:4f:f0:20:28:6c:51:ca:84:88:
63:3d:e3:c0:d3:9d:f4:28:61:90:ab:5d:08:10:d3:
ec:94:2e:f9:a5:b2:16:1e:95:24:d8:e7:bf:78:c6:
01:59:5b:0f:32:cc:39:cf:ee:14:95:ac:a4:45:0b:
7b:7b:52:54:7e:45:82:19:c1:7d:78:48:e1:1a:9c:
97:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:F8:55:6C:9D:29:30:D0:85:BB:FB:CD:59:64:A0:9D:83:4C:48:25
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/wvhVbJ0pMNCFu_vNWWSgnYNMSCU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
23:bf:10:0b:be:57:90:38:69:1a:e8:7c:c8:f7:be:f1:32:31:
39:1e:a3:2a:9d:47:06:c2:b3:a5:14:af:ee:11:4f:aa:94:5f:
c0:83:36:bd:e7:36:44:65:93:f1:7c:b5:45:b4:5e:d5:05:c7:
d8:54:52:c2:ba:2b:fb:4b:93:d1:6e:f6:85:fb:d7:a4:28:eb:
44:42:20:fd:a4:19:01:96:17:b0:90:38:5d:89:2a:f9:bc:85:
06:bf:03:b1:2f:53:93:7d:fb:80:85:ba:02:e6:b2:24:25:f2:
cb:3c:c8:f8:49:34:17:62:c4:88:9b:b3:67:31:f8:b9:33:fe:
8d:09:d9:64:f2:88:75:ca:61:5d:ea:4a:55:9d:4f:81:85:dc:
cf:68:69:8e:c6:e9:eb:bf:cf:99:46:ac:4a:11:f0:02:90:d5:
de:9e:d7:64:6c:76:7b:44:96:cf:9e:72:02:91:45:b8:64:56:
e9:5c:8c:a7:fe:44:7c:19:2b:c7:d6:0a:c7:36:2c:7c:de:67:
2b:6b:6c:13:f0:40:8a:1e:2a:07:8a:f0:b4:a8:b1:77:96:e2:
ab:1f:47:d7:a3:26:b7:72:9c:83:05:d6:6c:9c:2e:df:33:76:
7b:9c:76:08:b6:50:2d:7c:6f:2e:88:7f:62:99:20:e6:08:bb:
de:c3:c2:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:32 2024 by rpki-client on console-fra.rpki-client.org