Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/b4de9c_st9_m3KN5hj84Dj2vwEk.roa
File: b4de9c_st9_m3KN5hj84Dj2vwEk.roa (raw, json)
Hash identifier: Thk7KHzxSI8HahmV3ZNM7mJv4DhgZay1BH0LuL0xUJo=
Subject key identifier: 6F:87:5E:F5:CF:EC:B7:DF:E6:DC:A3:79:86:3F:38:0E:3D:AF:C0:49
Certificate issuer: /CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Certificate serial: 018A834DDB75A7CFC7454E6D4F1C1BE5CF8E
Authority key identifier: AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/b4de9c_st9_m3KN5hj84Dj2vwEk.roa
Signing time: Mon 11 Sep 2023 08:13:52 +0000
ROA not before: Mon 11 Sep 2023 08:13:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:83:4d:db:75:a7:cf:c7:45:4e:6d:4f:1c:1b:e5:cf:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Validity
Not Before: Sep 11 08:13:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f875ef5cfecb7dfe6dca379863f380e3dafc049
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:88:8a:aa:3f:82:1e:5d:42:35:c0:d0:b2:0c:
bc:c2:13:31:d4:34:21:d2:24:ea:e1:91:dd:62:bc:
1a:4a:ab:18:d0:59:13:f6:ce:bd:c2:6c:68:6c:7f:
ba:f2:a5:8f:2d:da:e4:c2:ea:b8:46:39:68:16:14:
89:0c:73:01:35:97:49:09:0a:df:02:2e:8b:68:c2:
14:5a:7d:91:cf:78:7a:34:3b:e4:ba:cf:12:84:aa:
66:90:44:e1:1e:c8:d5:5a:2f:21:43:a0:ae:a5:fe:
c5:51:34:b1:a1:82:91:f3:b0:39:23:f8:2b:54:ff:
ab:a5:13:33:82:a7:34:4a:1a:23:5f:13:18:36:1a:
14:43:a4:ee:d4:02:53:b1:5b:b8:63:b9:a0:b7:60:
45:7c:84:c6:b7:ba:91:17:11:cd:a9:32:50:42:df:
3d:40:b6:16:72:47:3f:7e:48:9e:b3:03:b9:62:e5:
99:b1:ea:54:95:f0:26:f6:7c:8e:43:6d:f2:28:eb:
ce:05:c0:a1:75:4c:4c:76:dd:81:53:11:67:f0:aa:
92:bb:89:48:be:b5:2f:d5:57:93:84:4b:47:20:ad:
ab:01:97:39:f7:f0:a2:29:6a:cd:7d:39:29:82:bb:
e9:e7:ad:00:ac:75:19:a6:f0:d4:84:84:8e:01:ca:
7f:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:87:5E:F5:CF:EC:B7:DF:E6:DC:A3:79:86:3F:38:0E:3D:AF:C0:49
X509v3 Authority Key Identifier:
keyid:AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/b4de9c_st9_m3KN5hj84Dj2vwEk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/qh8UyFB0WnwxLqLrC-AwUuSWcnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
94:99:74:aa:2e:46:bf:b6:49:e6:ae:d8:73:d0:fd:50:d1:c9:
9e:b9:53:77:d7:b0:5d:91:4f:e0:19:d6:bf:46:a0:5f:94:2d:
cb:df:85:0f:80:30:58:e1:a9:d6:51:d9:d3:ee:ab:42:66:3b:
33:00:94:77:b9:ab:58:8f:86:27:c0:38:63:ff:8f:46:5c:97:
46:ce:68:76:d9:55:f3:28:e5:b2:d6:17:39:13:73:1b:fc:33:
a8:8e:10:78:a7:82:63:59:b2:69:5e:19:de:44:e0:9e:3b:bf:
b7:8b:f9:34:7c:4e:79:90:63:22:62:28:b3:eb:6b:d1:05:4a:
e9:89:a3:ab:e5:6a:22:ae:df:75:4c:df:8a:de:f5:3d:a1:3d:
2a:ab:e0:9b:2c:8b:c7:54:f2:13:52:cd:6f:9c:b5:c1:09:2a:
c6:72:4b:49:db:10:1f:3d:19:b6:c5:77:74:47:43:02:dc:3c:
f4:70:b9:09:c1:1b:09:8a:4d:b0:05:ee:55:89:cb:5a:34:31:
9a:23:b8:ae:88:8f:ea:41:65:72:15:fe:c3:3c:53:9f:98:13:
6d:e4:33:18:36:aa:a2:1f:03:c3:47:81:4f:d4:94:bd:d1:71:
41:39:2e:4d:7d:fa:90:b5:69:7b:8e:ae:bf:6f:b0:7a:fa:2d:
85:d8:ab:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:57 2024 by rpki-client on console-fra.rpki-client.org