Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/zSVgeaGr5iYvB9LC3SKA9orom5k.roa
File: zSVgeaGr5iYvB9LC3SKA9orom5k.roa (raw, json)
Hash identifier: MxsSNP+huVuQEu8PBfckN5Loq2G129qUyNJ0kopzcpw=
Subject key identifier: CD:25:60:79:A1:AB:E6:26:2F:07:D2:C2:DD:22:80:F6:8A:E8:9B:99
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018D051862A3F6DAFAFBB5289FA485305F76
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/zSVgeaGr5iYvB9LC3SKA9orom5k.roa
Signing time: Sat 13 Jan 2024 23:11:40 +0000
ROA not before: Sat 13 Jan 2024 23:11:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:05:18:62:a3:f6:da:fa:fb:b5:28:9f:a4:85:30:5f:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 13 23:11:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cd256079a1abe6262f07d2c2dd2280f68ae89b99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d3:b1:a0:cd:42:74:22:58:e9:12:1d:ce:a8:
a5:5b:87:06:22:b3:6b:78:ea:23:66:bc:23:3c:68:
d5:e5:d5:ea:ef:a1:d2:4a:85:f5:fe:b6:49:ee:49:
10:ac:75:31:bb:22:11:87:09:5c:c1:85:f4:1b:65:
6d:ca:80:07:e2:b8:10:e1:1c:1c:49:2f:da:30:90:
53:b3:f6:33:d3:7b:ac:46:72:88:08:d4:7c:19:77:
d4:39:fc:12:0b:b9:aa:8c:66:17:51:39:35:b3:ae:
8e:dd:0a:e0:2d:6e:91:2a:a1:f7:9e:02:96:17:32:
6c:21:54:52:78:5a:49:3f:a0:bb:ff:12:f6:3d:96:
f0:b5:89:4b:f8:8a:c0:20:0e:12:1e:1b:71:7f:c4:
68:fd:e5:9e:fb:98:fb:03:c3:85:99:6c:ee:6a:ef:
49:bf:20:bc:6a:7c:72:85:fe:e8:d4:07:2a:96:a0:
c5:8e:34:4d:97:51:37:16:5d:04:38:b0:0e:d6:44:
3d:15:08:f7:65:c3:d3:f9:d5:cc:1d:92:28:b4:64:
49:18:65:43:46:33:16:6e:46:4d:45:1a:3e:b4:81:
9d:06:3e:53:f3:f4:d0:bb:75:bf:43:28:00:3d:5b:
1a:55:9e:f4:ab:69:2f:83:b2:ac:7e:bb:f9:57:4f:
29:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:25:60:79:A1:AB:E6:26:2F:07:D2:C2:DD:22:80:F6:8A:E8:9B:99
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/zSVgeaGr5iYvB9LC3SKA9orom5k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
56:59:d1:df:51:c0:ae:fe:42:51:c7:83:63:b0:2d:9e:11:df:
4f:ff:09:4b:cb:c2:1e:f9:ee:38:1b:4d:bb:0d:9d:6f:aa:51:
92:88:bb:86:d6:6d:42:01:e4:ab:d9:e0:f5:45:f2:e6:85:60:
8a:38:1d:ca:fe:f2:32:3a:5d:71:92:74:1f:e9:cf:1a:0b:29:
68:22:06:88:4e:ef:b1:d0:28:80:90:10:a4:17:79:76:32:bf:
e3:31:a6:96:53:bf:5e:c3:0c:66:f9:36:44:0a:38:cb:d9:c4:
97:ea:93:83:b8:c0:77:a1:49:7d:69:3e:d1:b5:e9:03:b1:dd:
84:5c:a4:c4:c6:67:51:e1:c1:d1:59:71:0d:50:65:46:99:be:
2c:d8:bb:de:d1:96:c0:26:01:78:a3:68:dd:13:d8:5f:5f:97:
9e:d4:f3:8a:d6:6e:e1:50:6c:99:47:b5:70:47:bd:46:fc:78:
04:7c:07:14:74:48:1e:9c:06:7d:05:28:ef:85:2a:7e:69:3e:
e2:54:fd:bd:b8:df:17:a3:f0:b5:92:17:4d:ea:39:4c:bb:aa:
e7:b0:4d:ae:22:01:00:48:d5:5a:0f:5c:86:e2:45:3d:76:90:
54:42:17:5f:36:57:2d:09:16:36:a5:89:64:ac:e4:f0:86:e5:
12:e9:96:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:27:45 2025 by rpki-client