Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/VSH2N0vAZ1VpOm5LyTt_TQkeHQc.roa
File: VSH2N0vAZ1VpOm5LyTt_TQkeHQc.roa (raw, json)
Hash identifier: /KLGWtrd3kr/7DB0xLc5obj3iKWPkFduv9tmrxcasgU=
Subject key identifier: 55:21:F6:37:4B:C0:67:55:69:3A:6E:4B:C9:3B:7F:4D:09:1E:1D:07
Certificate issuer: /CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Certificate serial: 018A64D2C053779C417718647153684CC4AA
Authority key identifier: AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/VSH2N0vAZ1VpOm5LyTt_TQkeHQc.roa
Signing time: Tue 05 Sep 2023 10:10:47 +0000
ROA not before: Tue 05 Sep 2023 10:10:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:64:d2:c0:53:77:9c:41:77:18:64:71:53:68:4c:c4:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Validity
Not Before: Sep 5 10:10:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5521f6374bc06755693a6e4bc93b7f4d091e1d07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:7d:1f:6b:fb:36:ee:a3:8f:42:0f:e0:b3:3b:
3d:11:44:0f:36:b4:15:47:ca:c4:17:a7:f2:03:b5:
cc:88:11:00:26:01:83:1d:c2:7e:68:2d:f9:39:83:
a6:28:98:f5:99:e4:2d:a5:0b:6e:cd:d5:1d:47:04:
78:c8:27:aa:cb:b8:d3:97:e4:24:75:3c:17:f1:d3:
03:07:af:ac:88:69:6e:f7:5b:ec:34:7d:0e:40:09:
22:54:8b:70:84:1f:3c:6a:06:ba:cb:c6:67:19:2f:
49:52:52:d8:0c:5a:c1:d0:91:91:b7:97:ec:0d:44:
24:98:07:3d:0c:10:79:90:47:80:d1:2e:3d:9d:bc:
d3:13:a2:03:df:a5:57:c5:e2:04:8f:ef:05:1e:6e:
d0:96:bb:6b:d6:f4:fe:5d:46:48:94:a2:56:03:c6:
36:2a:f4:09:5c:55:7b:cf:7b:45:99:db:7f:97:fa:
2d:e2:c8:2f:82:32:f0:3a:a2:09:ea:c3:a1:e6:63:
c6:88:b6:44:a1:0d:ea:a7:18:d6:32:2e:ea:18:df:
58:8c:a5:a7:23:39:eb:2e:51:23:28:9d:0d:86:74:
d2:84:86:e2:21:a3:fa:97:40:2d:f8:3d:96:22:2d:
b3:0a:73:cf:2c:ee:b5:47:39:67:ae:a6:48:f8:4a:
40:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:21:F6:37:4B:C0:67:55:69:3A:6E:4B:C9:3B:7F:4D:09:1E:1D:07
X509v3 Authority Key Identifier:
keyid:AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/VSH2N0vAZ1VpOm5LyTt_TQkeHQc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/qh8UyFB0WnwxLqLrC-AwUuSWcnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
7d:a8:4c:76:51:f6:c0:c2:e3:8c:2b:8e:92:a8:4a:ca:de:fd:
b5:db:54:67:57:b0:4d:bb:72:39:3e:ca:cb:58:5d:28:13:f5:
c0:7c:28:45:67:b0:aa:22:1a:0e:8d:81:71:c1:78:c3:57:f5:
48:14:09:47:72:7a:58:57:22:a2:52:47:c0:f9:1e:de:9a:01:
fc:5b:28:3b:76:36:9a:95:38:f8:20:f6:c8:12:6e:28:66:c1:
65:f4:aa:77:92:1a:01:05:99:8c:cc:76:77:2c:cb:48:ab:a2:
bf:7f:fe:b0:d0:2f:69:c4:b0:4c:d3:05:43:94:5b:1b:41:29:
11:65:d9:11:69:5d:81:66:ca:ea:47:64:5a:85:b3:83:84:e2:
54:a0:ec:a5:b9:5a:92:ef:d7:1e:2f:43:2a:bf:68:9c:48:14:
ce:df:40:b1:41:54:99:5f:20:4b:d7:20:81:14:12:77:22:6d:
b4:4c:d3:93:07:92:2d:23:3b:ad:24:ec:59:d5:c4:d2:61:8a:
93:5c:21:1f:7e:12:23:65:ec:fa:8b:57:bd:4d:6e:d9:89:2d:
f9:12:7b:52:5d:af:8f:0a:9f:62:40:0d:3b:dc:c5:7d:4e:31:
e6:57:69:5a:45:d4:4a:55:1b:96:5b:ed:0f:1c:42:46:20:8a:
8f:cb:33:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:00 2024 by rpki-client on console-ams.rpki-client.org