Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/EJ0zC8PVkr9n1fLfbyIBUSbAfq8.roa
File: EJ0zC8PVkr9n1fLfbyIBUSbAfq8.roa (raw, json)
Hash identifier: DdjuecpvtXPapuwR/zf/RYOjgnRFbpyVOnbNblp27iw=
Subject key identifier: 10:9D:33:0B:C3:D5:92:BF:67:D5:F2:DF:6F:22:01:51:26:C0:7E:AF
Certificate issuer: /CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Certificate serial: 018A7CA6FA2CD9A01248B2FE68A7058D1E4E
Authority key identifier: AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/EJ0zC8PVkr9n1fLfbyIBUSbAfq8.roa
Signing time: Sun 10 Sep 2023 01:13:52 +0000
ROA not before: Sun 10 Sep 2023 01:13:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:7c:a6:fa:2c:d9:a0:12:48:b2:fe:68:a7:05:8d:1e:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa1f14c850745a7c312ea2eb0be03052e4967275
Validity
Not Before: Sep 10 01:13:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=109d330bc3d592bf67d5f2df6f22015126c07eaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:26:d1:6c:17:0e:7c:63:32:c3:53:83:89:f1:
9c:6f:30:32:54:7d:92:88:e7:d4:b8:e7:2a:02:3f:
cf:b1:d4:cd:81:55:22:cf:25:c2:67:55:f8:cd:72:
59:48:de:15:57:8d:05:02:5c:04:09:d1:4a:9e:b1:
74:e9:df:cd:5a:43:d6:5c:2e:90:03:80:8c:f1:86:
d2:8e:93:3e:17:23:0c:a2:c0:a0:22:1d:f6:b4:eb:
04:5c:ca:8f:8a:d8:8c:43:22:8c:55:8a:c9:28:0d:
75:56:da:27:02:42:e0:a1:f0:71:11:fd:59:ce:13:
6f:fe:22:18:95:9a:73:f5:48:0e:6f:88:c0:2d:f0:
6f:a2:32:55:ce:a9:09:08:be:1e:68:f7:a2:9b:bb:
ff:a5:2a:16:15:97:7e:44:57:9b:05:c6:f8:98:01:
9c:74:bb:34:e3:86:1b:e1:02:73:3f:28:25:66:02:
67:2a:e8:9b:77:dc:23:84:ea:bb:3f:8e:d5:1f:ef:
d5:62:c1:1b:92:ba:b5:eb:8c:49:08:d3:1f:1d:90:
a4:36:51:e8:5b:e1:31:8a:0b:7b:58:3c:dd:38:b9:
09:06:ee:84:aa:3a:11:dd:8e:b5:f5:4e:be:f5:5d:
7b:7f:e6:ee:9a:9e:56:46:b0:a5:48:17:1c:67:5a:
49:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:9D:33:0B:C3:D5:92:BF:67:D5:F2:DF:6F:22:01:51:26:C0:7E:AF
X509v3 Authority Key Identifier:
keyid:AA:1F:14:C8:50:74:5A:7C:31:2E:A2:EB:0B:E0:30:52:E4:96:72:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qh8UyFB0WnwxLqLrC-AwUuSWcnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/EJ0zC8PVkr9n1fLfbyIBUSbAfq8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8bf9c5-1d22-439e-b0bd-83fcd225482a/1/qh8UyFB0WnwxLqLrC-AwUuSWcnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
04:c0:db:6c:96:d1:45:ee:15:42:0f:2e:d8:c9:56:70:13:e1:
41:99:20:b0:b0:63:37:20:c2:9c:d7:cc:01:89:2a:78:9b:99:
fa:32:a1:f7:e3:41:f6:ce:36:69:f7:6e:7b:89:0b:1f:8e:72:
b0:34:b5:63:e4:27:ec:bf:f0:fd:cc:96:d3:21:1a:1a:49:ac:
f2:39:45:81:fd:18:d7:c0:b5:dc:da:6e:de:c7:63:8a:48:1d:
1e:96:b1:78:8b:05:cd:f1:ac:fd:f8:03:cd:c1:89:20:71:59:
dd:21:d1:ae:db:3a:7f:3c:14:0b:31:2d:06:b8:ff:f0:dd:51:
f2:27:3e:25:a1:75:21:c4:28:bd:1d:1c:ac:c5:d0:9b:d8:b1:
b6:8f:df:21:9a:a2:a6:30:35:3f:36:dd:02:b1:7d:64:5e:a1:
69:e3:ac:19:45:3f:25:92:b2:c1:36:59:dd:5d:1b:cd:e7:60:
3b:56:f6:91:37:b6:0b:94:77:19:2f:85:d8:ae:da:99:02:42:
f9:c3:d7:76:f7:7a:50:df:72:7d:df:d7:c9:30:f8:ad:33:25:
e7:0c:43:ae:4d:f5:af:9c:ef:3e:fc:04:72:b4:bc:7d:19:c5:
5c:95:04:d3:72:ec:5c:0d:fa:33:b1:aa:d1:70:67:b8:86:bb:
36:25:01:98
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYp8pvos2aASSLL+aKcFjR5OMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhMWYxNGM4NTA3NDVhN2MzMTJlYTJlYjBiZTAzMDUyZTQ5
NjcyNzUwHhcNMjMwOTEwMDExMzUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMDlkMzMwYmMzZDU5MmJmNjdkNWYyZGY2ZjIyMDE1MTI2YzA3ZWFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArSbRbBcOfGMyw1ODifGcbzAyVH2S
iOfUuOcqAj/PsdTNgVUizyXCZ1X4zXJZSN4VV40FAlwECdFKnrF06d/NWkPWXC6Q
A4CM8YbSjpM+FyMMosCgIh32tOsEXMqPitiMQyKMVYrJKA11VtonAkLgofBxEf1Z
zhNv/iIYlZpz9UgOb4jALfBvojJVzqkJCL4eaPeim7v/pSoWFZd+RFebBcb4mAGc
dLs044Yb4QJzPyglZgJnKuibd9wjhOq7P47VH+/VYsEbkrq164xJCNMfHZCkNlHo
W+Exigt7WDzdOLkJBu6EqjoR3Y619U6+9V17f+bump5WRrClSBccZ1pJnQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFBCdMwvD1ZK/Z9Xy328iAVEmwH6vMB8GA1UdIwQY
MBaAFKofFMhQdFp8MS6i6wvgMFLklnJ1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcWg4VXlGQjBXbnd4THFMckMtQXdVdVNXY25VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi84YmY5YzUtMWQyMi00MzllLWIwYmQt
ODNmY2QyMjU0ODJhLzEvRUowekM4UFZrcjluMWZMZmJ5SUJVU2JBZnE4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi84YmY5YzUtMWQyMi00MzllLWIwYmQtODNmY2QyMjU0ODJh
LzEvcWg4VXlGQjBXbnd4THFMckMtQXdVdVNXY25VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAATA22yW0UXuFUIPLtjJ
VnAT4UGZILCwYzcgwpzXzAGJKnibmfoyoffjQfbONmn3bnuJCx+OcrA0tWPkJ+y/
8P3MltMhGhpJrPI5RYH9GNfAtdzabt7HY4pIHR6WsXiLBc3xrP34A83BiSBxWd0h
0a7bOn88FAsxLQa4//DdUfInPiWhdSHEKL0dHKzF0JvYsbaP3yGaoqYwNT823QKx
fWReoWnjrBlFPyWSssE2Wd1dG83nYDtW9pE3tguUdxkvhdiu2pkCQvnD13b3elDf
cn3f18kw+K0zJecMQ65N9a+c7z78BHK0vH0ZxVyVBNNy7FwN+jOxqtFwZ7iGuzYl
AZg=
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:46 2023 by rpki-client on console.sobornost.net