Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/gsMvXFWozk27HCDNi0t6M7GYClk.roa
File: gsMvXFWozk27HCDNi0t6M7GYClk.roa (raw, json)
Hash identifier: yUvfIaBLcZVIPWsE0oa8/GG8mkQhWquzTOhQRC1tt4E=
Subject key identifier: 82:C3:2F:5C:55:A8:CE:4D:BB:1C:20:CD:8B:4B:7A:33:B1:98:0A:59
Certificate issuer: /CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Certificate serial: 018A4704C0D420EB898D5C6472AA2595B993
Authority key identifier: AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/gsMvXFWozk27HCDNi0t6M7GYClk.roa
Signing time: Wed 30 Aug 2023 15:16:48 +0000
ROA not before: Wed 30 Aug 2023 15:16:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:47:04:c0:d4:20:eb:89:8d:5c:64:72:aa:25:95:b9:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Validity
Not Before: Aug 30 15:16:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=82c32f5c55a8ce4dbb1c20cd8b4b7a33b1980a59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:f7:08:2d:89:a9:f9:9a:2d:3d:b1:a5:37:5d:
f9:93:5b:a0:f0:2f:bd:45:be:3c:49:5e:79:d4:20:
96:fa:7a:38:e0:18:a8:aa:a8:fb:37:49:91:25:26:
7e:5c:d4:3e:b3:51:aa:87:f9:97:46:75:31:98:62:
fa:1f:87:f6:a5:25:b3:ee:a5:2d:fe:8a:94:32:44:
f9:03:34:25:56:61:92:f5:17:e1:2e:4d:69:72:38:
a8:04:7d:ce:59:36:db:59:dc:f1:a6:5b:42:76:2e:
f2:ac:95:1e:80:8e:25:b9:49:8f:6c:e0:4c:15:8e:
53:8d:34:a0:e1:cf:f2:48:56:cf:be:37:27:c0:aa:
93:5c:f8:90:db:ae:e9:e7:24:b0:9b:0a:77:51:31:
c0:e2:34:13:8a:0c:2c:1c:bd:4c:f2:c5:8c:1a:88:
9b:43:1b:60:43:f7:8b:80:56:32:b4:d0:a0:84:59:
ea:a6:ce:b8:53:1c:c5:6c:67:88:83:0a:7e:61:6d:
1a:3e:c8:ec:e7:61:77:68:0b:bf:94:fe:bc:23:5c:
ee:fd:a0:7f:df:a2:39:b0:fb:42:4c:c3:d1:ec:e2:
0a:ca:7e:77:c8:8e:7e:39:74:68:1d:50:e7:83:99:
96:82:a0:b0:ca:81:31:10:b3:04:98:93:85:fc:fa:
da:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:C3:2F:5C:55:A8:CE:4D:BB:1C:20:CD:8B:4B:7A:33:B1:98:0A:59
X509v3 Authority Key Identifier:
keyid:AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/gsMvXFWozk27HCDNi0t6M7GYClk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/qh8UyFB0WnwxLqLrC-AwUuSWcnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
a3:d8:e6:cf:b8:be:b0:92:55:53:df:83:9d:5b:f7:a6:5c:fc:
5e:32:15:50:b7:3e:ca:a1:79:a6:e5:0e:84:2d:8c:f3:ec:86:
69:90:19:cc:96:10:68:cb:2d:76:46:84:c7:44:d6:fd:02:f0:
c7:4b:62:f5:45:de:9d:d8:98:08:b8:0c:6b:47:4f:87:06:73:
d6:0b:70:24:15:b7:d6:f3:f3:22:17:50:12:15:ce:03:55:2e:
94:2b:d1:80:28:d0:cd:c3:43:2e:c1:f8:ec:80:c3:c8:d8:6a:
b0:6e:10:33:66:76:38:4e:0e:7e:e7:44:92:00:e1:b8:13:7f:
98:ba:bf:8f:a3:78:68:78:72:fd:51:32:0c:00:f9:37:a1:09:
b4:41:52:c3:1b:ac:1b:9f:b0:53:90:a2:33:20:b3:63:64:97:
b7:9f:84:05:0f:a5:2c:1d:34:1d:91:9c:57:e5:5d:61:b6:25:
e3:0e:71:af:73:1d:2b:ee:b4:99:0f:c9:79:4d:1d:2a:56:ed:
6c:f6:b8:96:7e:35:3b:b9:d8:ac:ef:7c:fa:af:6f:fe:37:75:
c2:ca:4a:6f:41:23:97:cd:42:05:90:67:e3:a0:a0:87:60:2f:
06:3a:5a:e7:75:20:7e:f9:bd:1a:44:99:74:4d:d9:1c:e4:26:
89:c2:7a:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:00 2024 by rpki-client on console-ams.rpki-client.org