Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/wtnBDi1gz9PLxxsXXmA_8gzjEt4.roa
File: wtnBDi1gz9PLxxsXXmA_8gzjEt4.roa (raw, json)
Hash identifier: 74ufoKAul0IBNrQMX71DTqer+oiugjCfjXq+YiMq3vQ=
Subject key identifier: C2:D9:C1:0E:2D:60:CF:D3:CB:C7:1B:17:5E:60:3F:F2:0C:E3:12:DE
Certificate issuer: /CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Certificate serial: 018A59B1E1ED12FD5E9103B9D0F3EF6C37C2
Authority key identifier: AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/wtnBDi1gz9PLxxsXXmA_8gzjEt4.roa
Signing time: Sun 03 Sep 2023 06:19:04 +0000
ROA not before: Sun 03 Sep 2023 06:19:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:59:b1:e1:ed:12:fd:5e:91:03:b9:d0:f3:ef:6c:37:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Validity
Not Before: Sep 3 06:19:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c2d9c10e2d60cfd3cbc71b175e603ff20ce312de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:2a:fc:86:71:30:d0:78:34:cd:67:b0:c6:cb:
61:fd:15:23:94:68:da:91:63:26:e6:df:f8:1d:a0:
10:95:a4:52:ed:0a:8b:6b:b5:c3:e6:11:9d:85:e1:
60:b0:96:95:c2:3e:da:5c:d1:ec:b3:d4:00:0a:4e:
46:78:d5:87:22:46:23:d8:2d:be:8f:36:84:82:68:
c8:6b:bd:f3:d0:a9:bc:d8:66:ee:ab:c4:fc:e6:d6:
90:60:dd:36:f9:c3:04:68:26:f6:e5:14:3a:cb:06:
74:d7:8f:d3:a3:87:91:6f:c9:41:de:d4:21:31:70:
55:46:f4:14:a7:b1:c2:9f:2a:14:eb:a2:23:c8:c5:
78:b2:e7:48:84:bb:f3:14:9f:b4:08:ef:d4:7e:bb:
40:27:97:35:b0:60:5e:35:a1:fc:36:94:99:cc:8b:
a6:8d:68:a4:f4:0c:c4:4b:10:f7:04:57:22:17:5a:
db:3f:d2:bb:a3:3e:bd:0e:11:49:4d:80:46:6a:a0:
61:d7:52:b5:7a:d8:32:6d:7e:c3:e2:1c:5e:64:a4:
d1:2f:ea:89:5c:0b:7c:66:26:7c:8a:fe:3d:0d:4a:
47:f9:e3:96:af:23:01:84:cb:c0:57:47:2a:f7:1a:
aa:2b:96:35:45:ca:20:46:2f:c5:b1:d4:0a:17:d4:
a2:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:D9:C1:0E:2D:60:CF:D3:CB:C7:1B:17:5E:60:3F:F2:0C:E3:12:DE
X509v3 Authority Key Identifier:
keyid:AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/wtnBDi1gz9PLxxsXXmA_8gzjEt4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/qh8UyFB0WnwxLqLrC-AwUuSWcnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
7a:b9:4c:17:da:11:b8:05:e3:6c:2f:a3:6f:cf:1f:c4:ee:9f:
19:0e:63:e8:95:48:7c:f1:b0:2f:00:0b:dc:ba:fb:b4:f7:e6:
c0:67:44:0f:b3:42:e7:ad:49:0c:04:4d:21:65:55:f9:e7:c0:
00:95:33:15:1d:fd:25:1b:fa:e2:ae:17:02:79:ea:f4:7a:fd:
29:62:6a:04:81:4e:bb:04:03:e6:e8:d9:83:6f:cc:6e:ae:fb:
32:c4:d7:e9:76:16:fe:22:3e:15:30:62:f0:b9:cf:2a:ca:c6:
e5:92:c8:6c:5e:5a:d0:ec:12:91:3d:eb:42:53:0d:88:a0:23:
34:b8:d6:3d:df:f9:1b:5a:b8:d1:be:25:aa:ee:be:7d:4a:a2:
f8:00:53:f1:fa:b1:1b:c5:53:69:cd:15:93:26:20:cd:8a:fa:
61:83:4c:09:00:ac:32:69:33:8d:eb:ae:3c:83:fb:25:14:f1:
ff:13:51:ab:07:8b:e9:2f:5d:58:c3:1b:ae:ec:df:89:ce:8b:
dc:7b:33:25:cf:94:7c:fd:21:db:c4:7d:54:be:7f:ba:67:2d:
be:7e:2b:26:90:b2:f9:d6:55:48:4e:4f:4a:44:ab:4c:b8:c1:
97:d4:32:2e:c1:22:ca:5e:c1:69:77:77:a2:61:3f:42:dd:72:
bc:76:3b:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:50:39 2025 by rpki-client