Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/GVU0CxKvtDXaeXOK3fME0DV6VyQ.roa
File: GVU0CxKvtDXaeXOK3fME0DV6VyQ.roa (raw, json)
Hash identifier: 83SvwiM56Iis9/ZoGkPJocNJDYpn0yC3/BkEMxZ09mY=
Subject key identifier: 19:55:34:0B:12:AF:B4:35:DA:79:73:8A:DD:F3:04:D0:35:7A:57:24
Certificate issuer: /CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Certificate serial: 018A500CB473DCDA6129978E206007334774
Authority key identifier: AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/GVU0CxKvtDXaeXOK3fME0DV6VyQ.roa
Signing time: Fri 01 Sep 2023 09:22:04 +0000
ROA not before: Fri 01 Sep 2023 09:22:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:50:0c:b4:73:dc:da:61:29:97:8e:20:60:07:33:47:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Validity
Not Before: Sep 1 09:22:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1955340b12afb435da79738addf304d0357a5724
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b4:63:12:bb:55:3a:e1:5b:0d:31:0b:f6:57:
25:6f:56:7f:3f:49:ca:1e:40:c0:9e:2d:52:5a:9f:
5f:d0:b4:18:52:29:82:2e:a7:86:3c:df:30:de:d7:
5b:7f:79:ab:4c:0b:fb:bd:cb:30:f6:59:1d:a2:86:
f1:4f:1c:84:7d:80:fe:0c:f2:b9:10:f5:c9:0f:37:
11:cb:71:d9:d5:9d:0d:10:8b:f9:f3:7a:5a:60:d7:
a3:1b:db:cd:25:d1:a0:39:1f:f1:13:4d:fb:ab:42:
69:d2:38:98:5f:6f:d5:0d:10:1b:e5:ab:35:23:d5:
f9:d9:82:14:e1:55:21:9d:84:a1:de:2c:5b:01:ae:
4a:b8:94:db:57:8e:98:99:61:5f:97:ce:2e:46:2f:
03:cf:14:36:18:ba:dc:de:49:91:39:10:d2:90:cd:
d4:28:95:82:9d:0f:da:cb:b4:cf:91:4d:11:db:69:
86:f8:4d:f5:f9:b6:23:85:e3:28:53:05:81:f3:fc:
09:b4:41:31:73:5f:56:e0:a6:ae:c3:6b:54:6a:51:
35:78:1e:68:b3:50:22:d7:4a:03:db:10:ec:e9:1b:
ac:df:89:96:47:d2:ee:34:1e:3d:84:c1:27:e4:fb:
2b:3e:ff:e0:bd:3f:2b:69:d3:6d:89:f2:96:aa:8a:
b8:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:55:34:0B:12:AF:B4:35:DA:79:73:8A:DD:F3:04:D0:35:7A:57:24
X509v3 Authority Key Identifier:
keyid:AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/GVU0CxKvtDXaeXOK3fME0DV6VyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/qh8UyFB0WnwxLqLrC-AwUuSWcnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
64:ed:28:09:dc:d9:b7:6d:59:89:7f:64:99:00:c6:85:78:b0:
87:7c:a1:9a:1c:d6:79:72:0b:4f:73:73:5f:b7:77:f3:39:b4:
6e:3b:de:2c:a8:a0:2c:2b:9e:87:59:3a:fd:0f:44:bf:89:29:
12:b0:92:36:12:81:95:41:06:88:de:60:c0:d2:3c:7e:85:bb:
98:ff:05:3e:c4:e6:ad:f2:23:bf:a0:b9:76:5c:94:7f:bc:cb:
ff:e6:f2:6d:e5:3b:32:ee:7c:c8:9d:3c:3d:0b:ab:99:3d:f7:
30:bd:b2:61:84:f1:58:f1:88:45:43:fc:1f:fe:48:43:22:c5:
03:d6:6d:d3:9b:7c:c0:c3:d2:13:37:4c:4d:5e:83:79:fe:29:
c6:ef:98:81:52:5c:0a:a0:22:71:a6:39:bb:1b:54:7e:c6:4a:
8b:44:50:09:1e:98:7b:2f:ce:b5:ea:a9:8d:af:64:ab:a5:6a:
98:62:88:03:43:4d:9c:2a:b0:d9:d6:28:0c:b0:0a:82:f0:86:
23:20:0f:27:e0:aa:e7:0d:a6:cd:5f:ad:94:f3:9c:2f:32:dc:
8c:07:ec:2d:23:4e:92:f0:77:1a:4b:4e:c3:44:4a:33:5e:e8:
7e:a2:fc:94:d7:1f:0c:6e:e4:d0:81:14:96:5c:03:35:28:96:
16:52:6d:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:00 2024 by rpki-client on console-ams.rpki-client.org