Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/zbgpySV2-BlNpBRlQYJ1oPNR7vU.roa
File: zbgpySV2-BlNpBRlQYJ1oPNR7vU.roa (raw, json)
Hash identifier: 7Pp9D2Je2J9uSklmpVrRni6u7DqAUkbo8Fs+wOhOBuU=
Subject key identifier: CD:B8:29:C9:25:76:F8:19:4D:A4:14:65:41:82:75:A0:F3:51:EE:F5
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CE52443A989B2FEC33F56B8A92F320AE0
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/zbgpySV2-BlNpBRlQYJ1oPNR7vU.roa
Signing time: Sun 07 Jan 2024 18:16:48 +0000
ROA not before: Sun 07 Jan 2024 18:16:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:e5:24:43:a9:89:b2:fe:c3:3f:56:b8:a9:2f:32:0a:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 7 18:16:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cdb829c92576f8194da41465418275a0f351eef5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:11:70:6e:d4:3b:35:bd:fd:5a:ff:70:34:24:
b2:ff:fc:ca:bc:47:ac:63:e6:13:2e:8e:cd:b1:91:
1b:55:6c:e0:9e:ae:77:62:59:4a:2c:db:e0:0c:be:
f9:46:54:42:c0:40:b8:92:41:30:60:cd:84:53:e5:
11:23:5f:3e:a7:73:fd:cb:5e:c9:0a:bd:46:09:d4:
60:ff:a0:fe:b4:23:e0:94:ea:a6:ee:4a:93:45:10:
79:69:3b:71:9a:7b:fd:d6:0d:4b:f4:20:cf:47:1c:
3a:a5:cf:48:ba:42:c5:b1:3a:58:17:75:69:f9:36:
82:84:63:83:ed:42:a9:fc:1a:26:9e:b1:52:2b:f9:
a8:5c:7d:cc:0d:94:4d:cd:df:11:c7:6a:6e:42:aa:
34:f0:08:5c:0b:0c:ef:40:dc:a9:56:d6:d2:6c:ef:
53:14:cf:a0:09:ad:3b:89:f5:12:26:76:6d:7e:8b:
46:ea:92:cb:5c:ae:2c:ce:4b:23:61:56:15:a3:f1:
44:02:db:7d:63:fd:8e:e1:71:d0:12:f7:c7:d8:ab:
41:fa:da:68:7e:96:97:d7:70:03:02:4d:f3:26:3c:
18:af:68:a0:a7:5e:f6:13:f5:da:d7:bb:25:e6:a7:
25:e0:82:60:dd:07:1f:db:a6:c5:97:21:45:37:49:
71:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:B8:29:C9:25:76:F8:19:4D:A4:14:65:41:82:75:A0:F3:51:EE:F5
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/zbgpySV2-BlNpBRlQYJ1oPNR7vU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
3c:c5:73:5c:f2:b2:17:10:fa:33:a0:1b:79:7a:ba:a6:42:64:
a5:33:ab:31:05:52:0d:a1:0d:b0:dd:e8:74:9e:f2:55:be:6f:
09:8f:db:e8:8d:65:51:c2:c5:9a:d1:3a:95:47:9f:69:17:2d:
0d:e1:b3:c8:6a:a2:10:98:9c:5a:23:0f:67:12:2b:7c:9a:86:
4e:8e:f7:92:c3:1b:b7:98:04:66:8f:e6:56:58:ab:b7:a1:0e:
f9:f5:15:45:ef:14:01:45:20:4d:03:2f:9c:d2:ce:8e:17:3d:
c6:1e:da:12:11:55:79:ee:3b:39:cc:36:8f:9c:52:2f:53:f1:
e9:18:6d:03:ef:b3:2d:b2:be:d0:3d:84:8d:90:7c:80:bb:e1:
4c:74:5e:c2:ec:80:88:9b:d5:7f:73:06:a8:2e:09:59:48:97:
f8:b1:dc:e7:ab:7c:26:58:f1:69:4b:7f:88:a3:0f:46:16:bb:
34:08:dd:ae:41:1b:40:4b:db:da:8b:b2:d4:22:71:11:95:08:
0e:b9:1e:10:2c:30:88:23:6e:30:79:21:15:80:c7:50:a3:6d:
df:a9:c8:5c:cd:13:df:c0:9c:aa:c6:30:a9:c2:02:b2:a4:64:
08:ba:67:96:40:b3:ea:d9:9f:75:6f:81:40:4d:24:9b:ac:42:
bb:8f:36:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:52 2024 by rpki-client on console-ams.rpki-client.org