Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/58AuZZ4jcRTTlWeumeZioYgZ5c8.roa
File: 58AuZZ4jcRTTlWeumeZioYgZ5c8.roa (raw, json)
Hash identifier: lfK6BEZlM7FKhCf5Su4Ntl375h7Qdo/7w0CTzp7iesU=
Subject key identifier: E7:C0:2E:65:9E:23:71:14:D3:95:67:AE:99:E6:62:A1:88:19:E5:CF
Certificate issuer: /CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Certificate serial: 018A820359B9C9641CD5B29C438181F918D0
Authority key identifier: AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/58AuZZ4jcRTTlWeumeZioYgZ5c8.roa
Signing time: Mon 11 Sep 2023 02:12:52 +0000
ROA not before: Mon 11 Sep 2023 02:12:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:82:03:59:b9:c9:64:1c:d5:b2:9c:43:81:81:f9:18:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Validity
Not Before: Sep 11 02:12:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7c02e659e237114d39567ae99e662a18819e5cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:a4:cd:2d:55:18:1a:68:ea:84:d6:77:f0:14:
d3:ee:f5:4a:ad:46:63:86:35:5c:47:da:c6:3c:07:
65:9e:10:af:07:f4:e7:58:8b:4d:28:68:88:5e:fb:
20:2d:e6:de:34:04:bb:dd:49:2c:7b:51:a8:c6:00:
2f:de:9b:36:02:b4:93:2f:93:62:79:cc:60:f4:31:
a7:14:67:18:6c:23:26:d7:89:b9:4e:9c:ef:ca:b5:
69:4a:de:6c:5c:d9:c2:a9:57:d5:11:21:19:5a:98:
03:3f:94:18:a0:4b:46:f7:54:ec:01:3b:be:9d:0e:
5f:dd:98:bf:48:5f:fe:71:37:12:18:3a:09:22:0a:
ec:ce:b4:13:8b:56:19:f7:17:19:86:f8:1d:d0:b6:
bb:85:86:16:e3:77:21:48:18:df:42:9c:b8:ad:50:
97:1c:90:1b:95:13:ec:78:25:7f:4b:cf:37:6d:3d:
f9:76:6a:f1:d7:84:1b:52:eb:6a:da:3a:47:29:7e:
3f:bc:a6:40:54:75:4b:26:2d:c6:e2:a3:8d:d7:6a:
8f:33:82:ff:fa:c9:5f:2f:16:54:ab:0f:e9:8f:84:
7b:06:bb:b7:ef:80:9b:25:dd:4d:24:21:ca:07:c7:
a2:bf:25:16:15:4b:71:cf:33:e4:21:2e:3b:5b:94:
67:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:C0:2E:65:9E:23:71:14:D3:95:67:AE:99:E6:62:A1:88:19:E5:CF
X509v3 Authority Key Identifier:
keyid:AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/58AuZZ4jcRTTlWeumeZioYgZ5c8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/qh8UyFB0WnwxLqLrC-AwUuSWcnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
44:20:80:7d:aa:e8:ba:6a:16:8c:01:f9:7e:f6:bc:2f:d3:80:
10:68:72:84:f6:22:71:d6:a6:e7:93:a6:0f:c2:45:67:92:6d:
c6:8e:06:66:a2:3c:ad:79:95:74:ad:5d:4d:38:4f:c2:96:77:
60:f9:5f:a8:01:6a:21:63:f5:b7:a0:61:81:4d:b0:75:f9:02:
39:65:fa:a5:90:88:b4:12:37:58:69:f1:6b:d1:22:63:64:d3:
ff:39:47:1f:3a:fe:e5:c0:93:98:8b:7d:00:e8:20:ad:2d:40:
8d:cb:8a:d4:a7:c1:93:dc:9a:ef:e6:60:fb:dc:0e:8c:f0:aa:
f9:3c:18:2e:f3:fa:f8:79:85:1c:00:23:8a:da:57:5a:5a:f7:
ae:d4:0e:70:f0:b6:b9:20:32:78:48:24:d5:c1:00:07:0d:b2:
d7:c3:5e:d5:4e:78:0f:30:82:01:13:a7:93:72:76:e5:9d:94:
9d:7e:24:29:f7:08:6d:14:0e:ab:06:36:1d:ce:81:d5:5f:7a:
58:12:89:ba:f7:09:6f:f5:f1:0c:ff:c1:44:42:eb:ec:dd:c9:
6a:12:a9:18:6b:36:02:85:d6:9e:74:01:a4:11:c2:dd:f6:b2:
10:82:05:72:4e:de:bf:d2:ee:87:0d:df:c1:26:a5:c4:16:bb:
e9:10:7a:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:55 2024 by rpki-client on console-fra.rpki-client.org