Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/97WqzGr8lpIS_ExcRnABK75R_mo.roa
File: 97WqzGr8lpIS_ExcRnABK75R_mo.roa (raw, json)
Hash identifier: gcLsnAgceb6oY3GOuY9A7KsqlNs9s1/gZ6pdCfEt7cE=
Subject key identifier: F7:B5:AA:CC:6A:FC:96:92:12:FC:4C:5C:46:70:01:2B:BE:51:FE:6A
Certificate issuer: /CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Certificate serial: 018A6EE8A286B88C130511E6D570D6E51A07
Authority key identifier: AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/97WqzGr8lpIS_ExcRnABK75R_mo.roa
Signing time: Thu 07 Sep 2023 09:10:54 +0000
ROA not before: Thu 07 Sep 2023 09:10:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6e:e8:a2:86:b8:8c:13:05:11:e6:d5:70:d6:e5:1a:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Validity
Not Before: Sep 7 09:10:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f7b5aacc6afc969212fc4c5c4670012bbe51fe6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c5:77:e4:fd:fa:5a:c4:b3:75:3b:b3:be:f4:
99:5c:d4:83:ea:38:8b:8e:19:36:61:da:3e:da:8a:
bd:97:e7:17:bd:7b:0d:e6:db:b3:55:9c:df:41:cf:
81:7b:01:18:d7:3b:a5:dc:86:1b:cc:c2:7b:02:09:
8c:39:ca:14:55:d0:8f:8e:9a:3e:5d:c1:f9:1b:d8:
62:25:52:69:19:f9:cf:ff:23:8b:44:89:2a:d9:91:
97:e1:21:ff:81:14:d2:02:3b:1e:a9:d7:08:5c:05:
c0:9a:f0:c5:25:c2:46:2d:1c:25:31:5e:4f:e5:38:
ad:5e:25:04:71:e0:9c:c3:ff:55:c2:de:43:0c:62:
3d:f5:dc:18:54:b6:c9:9d:56:08:ac:8e:e5:10:77:
6f:9d:d8:84:47:b6:e0:52:26:65:39:99:ed:82:1a:
7a:90:2f:8a:b0:b4:af:96:ae:ad:1d:8d:ec:2d:50:
3d:aa:e1:3c:ed:56:bf:c8:e9:84:bd:07:ee:2f:7a:
80:91:99:92:30:38:9e:7b:d4:b5:d4:a4:69:c4:b8:
49:b8:c2:e0:58:af:5b:b4:fe:0c:3b:8f:35:ba:d1:
14:72:10:58:9c:99:eb:bd:3a:11:be:7c:a8:8b:b6:
45:84:09:93:89:32:27:7f:e6:44:4f:b3:4c:df:98:
d5:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:B5:AA:CC:6A:FC:96:92:12:FC:4C:5C:46:70:01:2B:BE:51:FE:6A
X509v3 Authority Key Identifier:
keyid:AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/97WqzGr8lpIS_ExcRnABK75R_mo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/qh8UyFB0WnwxLqLrC-AwUuSWcnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
2c:81:61:95:9a:86:77:94:0d:60:1b:95:c8:1c:5a:52:b9:38:
42:21:39:23:2b:14:ab:d2:22:0e:62:94:48:0e:0a:5b:76:e0:
07:65:75:03:bf:32:91:3a:d0:bd:95:7f:01:db:86:e9:60:3a:
c0:c1:39:88:34:0c:e1:dc:53:21:4e:32:4d:87:f5:8d:0b:55:
fd:e5:48:2e:cf:6e:da:26:58:8e:63:1b:97:19:b8:bf:69:b4:
d0:d5:56:11:82:79:40:2a:b8:1a:bd:43:dc:58:8f:8f:76:fa:
6e:f1:0d:d4:bf:c8:ec:76:c5:63:ab:2c:cf:0a:15:84:1d:d7:
51:a6:89:0a:b5:d3:57:89:10:00:5b:3b:3c:a9:d8:12:b6:59:
8b:8e:9b:7b:87:46:00:ae:bc:83:3f:66:b4:2d:d0:a6:68:98:
41:55:b6:2f:68:5e:c9:36:a0:ad:ba:11:50:c8:21:d2:e7:b3:
5c:e3:77:8d:8e:db:ac:c3:6a:b7:27:e6:e6:bb:8e:d1:c4:7c:
49:65:77:1f:25:06:fb:67:25:4b:d9:ff:d5:c5:1e:a8:1f:8a:
31:06:53:16:86:29:e3:ab:7c:57:26:68:a5:39:aa:39:bf:ec:
a1:e2:ec:a3:82:cb:a4:9d:9c:78:58:9e:9d:d9:c8:a4:0d:f1:
1c:fe:2a:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:55 2024 by rpki-client on console-fra.rpki-client.org