Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/18sir1QLtM7eFqOZpGkjpz7RHrY.roa
File: 18sir1QLtM7eFqOZpGkjpz7RHrY.roa (raw, json)
Hash identifier: jrEfmSCCUMpWGbLmOm4QwdFYUs0gAdOjk08m218a9pY=
Subject key identifier: D7:CB:22:AF:54:0B:B4:CE:DE:16:A3:99:A4:69:23:A7:3E:D1:1E:B6
Certificate issuer: /CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Certificate serial: 018A910972A37F9D8608F65A1F1732388526
Authority key identifier: AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/18sir1QLtM7eFqOZpGkjpz7RHrY.roa
Signing time: Thu 14 Sep 2023 00:13:50 +0000
ROA not before: Thu 14 Sep 2023 00:13:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:18a:837b:f9c7/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:91:09:72:a3:7f:9d:86:08:f6:5a:1f:17:32:38:85:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Validity
Not Before: Sep 14 00:13:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d7cb22af540bb4cede16a399a46923a73ed11eb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:cd:11:ec:7a:9f:6c:1c:42:0f:b9:28:a7:9b:
b9:6a:9a:32:00:d7:81:8c:ba:66:b8:cc:46:7b:d8:
c3:1f:ca:85:80:1d:a8:4f:d2:a2:ce:97:5a:e0:d1:
0d:ac:e4:eb:21:cb:53:5b:0a:22:ec:86:2c:6e:da:
e2:e7:c9:e5:2f:b3:17:0a:d8:7d:8f:92:5d:24:55:
05:8c:7f:43:4e:4e:54:13:5d:aa:34:9c:89:58:ef:
9f:e9:ba:10:ae:37:b3:df:99:2e:5a:f2:8e:53:e2:
e2:e2:18:e2:e5:1b:ac:76:35:0f:90:80:ba:db:5b:
0b:6c:8f:8f:bd:0d:ad:c4:35:af:24:15:1e:fd:36:
18:e1:c8:c0:e4:19:0d:16:3b:73:11:fb:12:55:8c:
36:e6:68:ac:16:82:10:58:e4:d6:97:0e:0f:58:bf:
95:5e:b9:4f:4c:ba:15:f0:6f:fb:f5:b8:81:19:ce:
58:5f:a3:74:92:f3:35:42:87:63:cf:28:74:3b:e0:
34:66:86:ed:41:42:9b:81:b7:1f:13:67:09:4b:46:
01:ef:ee:f8:5b:09:53:f2:f1:71:16:0a:6f:66:c8:
cc:be:0d:0b:e9:d7:77:5b:b6:fe:f0:5e:f6:a2:35:
2c:f5:6c:8b:d1:2b:4d:ca:3c:2a:6b:79:f5:83:b6:
5f:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:CB:22:AF:54:0B:B4:CE:DE:16:A3:99:A4:69:23:A7:3E:D1:1E:B6
X509v3 Authority Key Identifier:
keyid:AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/18sir1QLtM7eFqOZpGkjpz7RHrY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/qh8UyFB0WnwxLqLrC-AwUuSWcnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
2c:02:59:5d:fe:8b:70:7b:c9:6a:8e:66:e7:bf:8d:0f:3e:50:
52:67:97:a8:b4:7c:2e:0a:8d:36:38:e9:9a:50:6d:16:6f:c8:
db:9c:e2:59:f1:38:8b:1b:d1:8b:09:21:3e:6f:d5:46:41:be:
44:61:db:6e:2d:55:1d:5d:39:19:2e:9b:8e:e5:ce:94:d7:be:
3e:04:6d:ea:4f:23:7d:bd:a3:05:d9:80:9c:85:ce:aa:21:91:
1e:bb:4d:16:55:74:ef:7a:69:90:d7:d7:ab:13:cb:4f:66:a0:
dd:7d:1b:c7:0e:a3:3b:d7:8c:03:28:e1:8c:af:b8:33:8a:a7:
9d:c4:aa:0c:63:00:50:cb:f1:5e:b9:20:73:23:c2:83:11:0f:
59:08:c5:1b:2e:e6:07:95:49:8f:56:e2:f3:76:24:4b:56:27:
98:eb:41:ea:66:15:02:29:42:5f:18:9b:27:10:43:c0:dd:7f:
1f:38:79:62:62:2b:c6:7a:18:14:0d:fd:a4:f4:5e:4e:26:7f:
98:98:9f:3a:20:24:22:ae:e7:1f:a8:e0:3d:44:03:13:57:4c:
a4:ff:9b:d3:61:40:cc:91:8a:4d:b1:09:ca:52:4d:0c:0e:03:
8b:ec:3f:96:2c:94:df:ea:09:3b:c2:53:ce:ec:37:2c:78:9c:
9a:bc:e8:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:59 2024 by rpki-client on console-ams.rpki-client.org