Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/pIBrEl9Pi-rNrQYrGaJwMiMbQC4.roa
File: pIBrEl9Pi-rNrQYrGaJwMiMbQC4.roa (raw, json)
Hash identifier: ehsWCCk9TYR18UZVHHUqZNkwzAa2lNfU0tnE/q2E72c=
Subject key identifier: A4:80:6B:12:5F:4F:8B:EA:CD:AD:06:2B:19:A2:70:32:23:1B:40:2E
Certificate issuer: /CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Certificate serial: 018A81CE40841A873097F0B8C1811E08FF42
Authority key identifier: AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/pIBrEl9Pi-rNrQYrGaJwMiMbQC4.roa
Signing time: Mon 11 Sep 2023 01:14:52 +0000
ROA not before: Mon 11 Sep 2023 01:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:81:ce:40:84:1a:87:30:97:f0:b8:c1:81:1e:08:ff:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Validity
Not Before: Sep 11 01:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a4806b125f4f8beacdad062b19a27032231b402e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:96:c6:03:de:58:01:17:9f:d6:d5:f0:6b:bb:
15:aa:4b:16:e5:51:31:04:99:4f:67:eb:8d:0c:82:
94:02:65:4d:e3:53:62:6e:9d:79:8e:42:8e:b0:03:
98:c9:2e:72:92:a6:d4:44:ee:e1:2c:b3:91:29:a1:
e9:89:49:ae:ea:62:54:b5:03:a8:2a:1e:73:96:95:
ae:9e:09:c3:d0:6e:01:8c:34:99:8c:c5:89:ef:72:
2b:e4:b8:05:d3:99:38:3c:0e:86:9f:1c:27:23:83:
98:38:19:f4:0f:3f:b8:d1:f5:c1:3a:54:58:e9:7a:
8f:6d:14:23:65:aa:c9:98:98:4a:f9:ee:f0:62:6f:
9c:6e:4a:19:34:b6:74:23:4e:32:9a:b1:fb:9c:2e:
ed:0a:42:05:4c:1d:86:bd:eb:21:57:35:ec:42:4f:
79:44:97:4e:5c:fb:2b:3b:6b:f3:fc:24:6b:b2:d0:
b8:4a:d1:f1:81:3a:6f:34:e4:c7:4c:86:44:aa:68:
7b:95:25:dc:2f:9d:d3:e6:09:12:95:89:3a:c1:28:
40:16:52:f7:c7:08:e4:42:b0:ed:c8:38:fd:9a:64:
51:92:b2:94:41:ab:be:d6:c3:68:ae:0f:b6:06:bd:
e8:93:2b:54:7d:f9:2a:b9:64:e1:49:2d:56:50:a5:
05:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:80:6B:12:5F:4F:8B:EA:CD:AD:06:2B:19:A2:70:32:23:1B:40:2E
X509v3 Authority Key Identifier:
keyid:AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/pIBrEl9Pi-rNrQYrGaJwMiMbQC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/qh8UyFB0WnwxLqLrC-AwUuSWcnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
a1:df:cb:b1:3f:86:ca:85:08:ba:04:be:9e:40:53:f3:0f:78:
20:c6:af:38:96:47:48:76:39:76:fb:69:20:69:51:54:fd:51:
ee:43:62:80:ac:8b:a7:ef:6b:8e:51:ae:be:53:ad:46:b5:ec:
56:29:47:4f:e1:03:08:30:5c:58:ad:60:c2:d5:6a:52:89:3b:
75:3d:1f:9e:ad:78:85:1c:77:d2:9d:98:e5:f8:c2:01:f8:9a:
59:37:79:ab:c0:99:6a:d1:14:51:9c:1f:22:98:80:32:cf:0b:
ab:14:0a:12:69:bf:9a:2a:14:de:4b:02:d3:94:e8:13:df:63:
6c:65:05:44:5c:39:e2:b6:de:79:a7:73:a1:e3:c9:a2:e0:44:
5d:5b:83:f7:82:fa:c0:66:dc:9f:94:59:ff:6c:33:ed:2c:72:
f1:17:81:13:af:8e:73:ac:52:11:c2:95:9d:70:54:7e:a5:ef:
34:3b:0f:7a:7d:21:6c:66:80:e7:44:a1:15:33:68:75:1e:b0:
53:8d:ac:1b:98:e9:41:23:cd:36:e9:c2:86:07:cf:ad:7b:44:
bd:8e:49:08:e5:06:aa:5c:f7:11:6a:dc:0b:46:37:0b:9d:5f:
bf:f6:66:cb:b8:45:97:27:a8:9b:d4:eb:f8:52:8a:a2:54:61:
37:6c:f7:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:58 2024 by rpki-client on console-fra.rpki-client.org