Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/Xyu9UODpp4WkWo3A-eJQyVfYdRg.roa
File: Xyu9UODpp4WkWo3A-eJQyVfYdRg.roa (raw, json)
Hash identifier: 6MREAA6hZbn7J6WKeB1dMoaOJ2pcF11EXaQuOLDgS5U=
Subject key identifier: 5F:2B:BD:50:E0:E9:A7:85:A4:5A:8D:C0:F9:E2:50:C9:57:D8:75:18
Certificate issuer: /CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Certificate serial: 018A78CA34A2724BC813E9702F48AC396F3B
Authority key identifier: AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/Xyu9UODpp4WkWo3A-eJQyVfYdRg.roa
Signing time: Sat 09 Sep 2023 07:13:52 +0000
ROA not before: Sat 09 Sep 2023 07:13:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:78:ca:34:a2:72:4b:c8:13:e9:70:2f:48:ac:39:6f:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Validity
Not Before: Sep 9 07:13:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f2bbd50e0e9a785a45a8dc0f9e250c957d87518
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:87:15:4b:a7:42:d2:13:40:dd:40:04:6f:57:
5d:ad:fa:ad:79:77:b9:e8:59:f5:cc:f2:44:fd:1d:
31:91:37:57:ad:b1:08:d9:17:c8:83:0d:c1:31:c9:
f4:23:69:cc:c6:cf:27:d7:b6:e9:98:50:24:1c:e8:
cb:0f:e2:74:73:07:36:b4:c4:c3:2a:f5:3b:60:2b:
ff:af:6a:69:cf:aa:fa:40:02:e6:f3:ad:54:00:d7:
dd:f3:11:d5:80:e7:84:77:ef:24:dc:3d:da:96:8a:
c1:be:34:a2:8c:ff:c9:4a:53:1e:d0:c3:8a:5d:e3:
2a:a4:8f:88:25:5d:81:e5:8e:2b:62:1a:af:aa:c3:
e2:98:70:c9:bd:f5:d0:a2:6e:f3:a4:84:97:b4:96:
8c:41:67:7e:ff:ad:61:73:94:fc:d2:2d:02:9a:21:
75:94:89:7e:1c:c1:a7:23:5c:2e:0d:4b:41:ab:d7:
9b:ec:55:48:30:b2:64:f7:53:64:6e:a7:c0:4b:71:
a8:a4:36:06:88:4c:3e:8d:83:16:e8:7c:48:48:82:
db:65:90:35:6d:bc:6e:78:b3:f9:b3:b7:db:df:b9:
a9:94:84:55:4d:6f:9d:aa:b7:55:09:cc:14:a7:1c:
5c:67:b9:16:5f:d8:53:a2:3b:0c:92:ba:99:ae:fd:
b1:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:2B:BD:50:E0:E9:A7:85:A4:5A:8D:C0:F9:E2:50:C9:57:D8:75:18
X509v3 Authority Key Identifier:
keyid:AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/Xyu9UODpp4WkWo3A-eJQyVfYdRg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/qh8UyFB0WnwxLqLrC-AwUuSWcnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
09:a3:3b:f8:48:3a:1f:44:32:5e:c8:2a:f6:2d:c8:9a:3d:6c:
c9:d2:82:b1:ce:34:70:e6:f0:64:24:6b:66:bf:85:a0:a0:3e:
cc:2d:16:bf:b0:a4:86:f4:42:cf:2e:56:b0:39:8c:93:f3:81:
06:eb:23:20:f4:20:05:d8:0e:b7:48:36:37:13:17:26:a5:e9:
a7:d3:bf:20:ba:ca:43:09:72:e9:e8:f3:2c:a4:e4:13:37:89:
73:04:9d:94:bb:a3:b5:3f:9d:30:4e:8c:0d:bd:4d:99:b4:6b:
c1:d3:f9:9e:c4:f0:fe:98:b5:27:b3:0a:af:b2:c5:3e:1b:6f:
5b:f0:b0:7a:d0:94:7d:a7:a5:69:84:ec:04:f2:ea:31:f5:3b:
1b:f8:e0:a4:3c:73:0c:e2:fe:76:c8:24:98:a3:eb:ab:a9:3b:
e2:36:06:e4:d3:05:43:ac:7e:fa:b4:41:29:a6:40:79:d7:fa:
be:24:bb:12:14:f6:fc:17:0c:42:8e:ed:30:7c:9d:49:40:fe:
4e:7a:8a:18:f5:59:98:52:ba:cd:1e:09:27:23:3f:c9:c2:36:
d5:13:c0:a6:1e:b9:ca:33:ea:75:00:87:59:45:4d:f3:c0:9f:
7e:72:73:a5:1d:f2:08:84:d0:bb:90:80:ad:87:65:94:ad:93:
cd:f8:4a:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:57 2024 by rpki-client on console-fra.rpki-client.org