Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/ZpudkCNVYgzk2AScfTtFNmcWd3c.roa
File: ZpudkCNVYgzk2AScfTtFNmcWd3c.roa (raw, json)
Hash identifier: 06wGYi/vgR+j+GluH97CgRN9SRyxVR3Nqmy3J/Q7j0Q=
Subject key identifier: 66:9B:9D:90:23:55:62:0C:E4:D8:04:9C:7D:3B:45:36:67:16:77:77
Certificate issuer: /CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Certificate serial: 018A66F810EF2293341389A86212FE8AB1D9
Authority key identifier: AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/ZpudkCNVYgzk2AScfTtFNmcWd3c.roa
Signing time: Tue 05 Sep 2023 20:10:47 +0000
ROA not before: Tue 05 Sep 2023 20:10:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:66:f8:10:ef:22:93:34:13:89:a8:62:12:fe:8a:b1:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Validity
Not Before: Sep 5 20:10:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=669b9d902355620ce4d8049c7d3b453667167777
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:d2:a7:1a:9e:0c:12:9f:24:fb:28:4a:6e:ab:
1b:10:6d:4c:ce:b6:25:ec:0b:74:c3:bd:16:02:39:
a2:15:65:07:da:0f:ff:23:6c:4f:2d:b3:18:30:f8:
24:a0:a8:10:26:d5:0e:c8:b9:54:a9:bb:83:94:bd:
04:5b:f6:a0:4b:e2:06:dd:5c:de:10:54:e9:a0:52:
dd:e6:a5:dd:be:75:4c:15:de:c3:b5:15:69:80:a4:
e8:ce:67:a9:cf:66:34:f1:1c:17:a9:2c:95:8b:b3:
4e:89:70:9b:38:4c:13:b5:8d:be:bc:4c:ac:81:3c:
10:31:71:53:8c:19:16:f4:3f:ae:a0:43:87:38:12:
ac:df:8b:ee:64:cb:3b:cd:d6:ba:40:bc:96:bc:8b:
db:b5:e2:f7:33:73:9e:a0:4a:4d:04:6a:b4:64:cd:
94:9e:20:74:13:26:3a:b6:eb:ae:1d:d5:56:15:ef:
b1:94:c5:0c:2c:f6:a3:69:02:af:f3:0f:8f:27:9f:
d4:4c:d7:bb:f7:4d:2d:4d:d7:20:fe:93:64:c2:e0:
b1:1f:4a:5e:cf:76:82:52:03:81:9a:ac:b9:65:bf:
b0:c7:f8:f9:a9:ad:e4:22:b9:f4:18:03:98:d9:d4:
e9:a8:75:00:11:59:b2:a7:49:16:bd:03:cf:4e:7e:
33:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:9B:9D:90:23:55:62:0C:E4:D8:04:9C:7D:3B:45:36:67:16:77:77
X509v3 Authority Key Identifier:
keyid:AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/ZpudkCNVYgzk2AScfTtFNmcWd3c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/qh8UyFB0WnwxLqLrC-AwUuSWcnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
2c:30:6f:6a:be:de:e5:45:52:24:99:a3:7f:16:25:74:25:03:
45:2e:67:49:84:80:34:e3:7e:7f:4d:17:96:bf:fb:7f:1a:56:
c0:4d:31:70:bc:e1:02:44:c0:ae:cb:a1:ee:c2:6c:9c:c3:60:
7c:37:13:ef:e7:e1:7d:a6:52:f3:40:34:58:87:5e:d3:69:99:
eb:34:1a:fe:aa:40:5f:bb:11:7f:a5:15:fc:ea:21:18:72:6e:
16:32:77:f9:77:6c:88:ab:8b:a4:09:dc:3d:5e:84:ef:5e:7a:
bf:d6:ba:72:dd:4a:c2:a8:99:b2:82:95:4a:44:1f:81:e6:bc:
6b:6e:83:04:58:40:f9:6a:60:fa:9f:82:f0:a3:e7:99:5b:f4:
36:1d:89:a7:d7:18:96:e4:88:82:a6:63:6b:2d:8b:83:4f:80:
9d:9b:48:be:c3:aa:71:e1:12:66:c4:42:f5:2f:bb:00:60:72:
37:32:35:71:4d:35:9d:17:f2:c2:6d:70:3e:32:16:3d:6b:e3:
15:12:1f:fc:af:15:5a:21:c0:99:04:45:9e:ee:07:1f:7f:6b:
d0:f3:71:e7:20:cf:19:57:9c:ac:53:4d:7b:5f:b2:e4:c4:a4:
5b:ad:ba:f0:1e:42:13:eb:e7:25:2f:84:68:12:ab:0c:c6:5a:
5b:5c:db:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:52:08 2025 by rpki-client