Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/re-em5ZIf-uJ-XjQu9BIpUojtAQ.roa
File: re-em5ZIf-uJ-XjQu9BIpUojtAQ.roa (raw, json)
Hash identifier: l7Y0otJkjayC2hWFRG+Ia2J7M6h0+XqDROYF8mlivvg=
Subject key identifier: AD:EF:9E:9B:96:48:7F:EB:89:F9:78:D0:BB:D0:48:A5:4A:23:B4:04
Certificate issuer: /CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Certificate serial: 018A586A1FC766B89393C64AE271AFBC50E5
Authority key identifier: AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/re-em5ZIf-uJ-XjQu9BIpUojtAQ.roa
Signing time: Sun 03 Sep 2023 00:21:04 +0000
ROA not before: Sun 03 Sep 2023 00:21:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:58:6a:1f:c7:66:b8:93:93:c6:4a:e2:71:af:bc:50:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Validity
Not Before: Sep 3 00:21:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=adef9e9b96487feb89f978d0bbd048a54a23b404
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:0c:ba:0f:20:91:28:7f:48:90:21:73:9b:c5:
f8:84:e9:bd:c7:c4:4a:13:2a:da:b9:44:29:4b:c5:
92:51:86:95:e9:9f:48:8f:6e:0a:25:95:ed:c2:6c:
9b:a3:bf:01:ee:71:67:cc:a2:08:73:38:09:50:3f:
ef:12:09:30:16:f4:cd:e6:7f:35:a6:76:88:9d:27:
2e:b4:26:d5:cf:b9:17:fd:f9:d3:d3:45:c1:ff:68:
30:1b:e3:b2:59:e3:03:cf:73:c4:de:13:f6:8e:a9:
a8:a4:1c:4d:8d:ca:3e:ea:30:5e:98:17:f6:33:e4:
c0:7b:35:e3:ea:80:3b:be:19:27:69:50:e2:80:69:
52:99:ad:50:0b:b9:cb:8c:94:25:b9:4f:a9:b5:00:
15:24:00:fd:6f:56:d0:f1:0a:67:47:53:b9:7a:9d:
d1:f6:f0:24:e3:e9:53:67:55:97:87:f5:6a:d7:87:
a4:28:3f:aa:9c:8b:50:4e:3a:c9:b8:08:4a:f4:31:
fd:24:61:94:34:1f:50:f9:55:74:b2:35:1d:33:82:
89:61:ca:71:33:c6:9d:ce:4f:36:c5:14:3a:3f:a0:
a2:e8:77:85:6a:f5:df:c6:f2:f9:cd:e4:f3:58:ba:
ad:55:4e:98:c2:5f:84:9e:c4:22:d5:3e:9e:c2:96:
56:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:EF:9E:9B:96:48:7F:EB:89:F9:78:D0:BB:D0:48:A5:4A:23:B4:04
X509v3 Authority Key Identifier:
keyid:AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/re-em5ZIf-uJ-XjQu9BIpUojtAQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/qh8UyFB0WnwxLqLrC-AwUuSWcnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
7b:67:50:41:1f:82:4b:fc:71:e0:34:20:a5:20:a8:2c:04:3b:
0c:8e:dd:4c:bd:48:04:cb:e9:79:ac:40:42:14:be:e1:3a:47:
21:06:27:55:8c:c2:ad:b4:8a:9c:86:c5:ce:20:63:47:af:43:
63:5d:ce:68:6e:31:68:84:54:04:64:0a:be:99:48:2a:71:75:
3b:91:e6:4b:eb:bb:8c:1e:8c:f5:0e:8e:0b:63:11:43:23:1d:
f4:2c:74:81:3d:20:2f:86:5a:fa:87:9b:7f:ef:6d:68:1e:7a:
c2:49:2b:65:2b:9d:55:e5:d8:3b:57:43:93:2e:b6:24:5f:c4:
13:83:0f:ff:27:30:d6:4b:b8:9f:1c:d6:79:df:75:29:43:b9:
bd:b9:91:00:ef:ae:dd:28:17:b5:12:66:7e:19:0a:cb:aa:b8:
cd:cb:ae:b7:2f:77:7c:51:0a:84:a8:11:80:bf:9e:04:03:55:
54:d8:b8:17:b2:3d:6d:1c:91:08:b1:39:e2:f7:28:83:bf:5c:
af:ae:f4:0b:5f:24:e1:27:77:2c:d8:f5:e2:29:b2:b1:a8:7c:
7f:cf:04:5b:1f:24:81:79:1a:d9:bb:22:29:30:65:cb:42:29:
1e:77:c2:f7:85:50:3e:5e:7a:48:79:b9:f2:82:0c:c8:28:ca:
a4:c1:9c:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:01 2024 by rpki-client on console-ams.rpki-client.org