Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/0s-O0QGhyoTK0MPAhV6DVzvO83s.roa
File: 0s-O0QGhyoTK0MPAhV6DVzvO83s.roa (raw, json)
Hash identifier: TSWlOxm2uazDrvEMJ7X4yZ5MnXs/o/y/IdB+hTw/bcM=
Subject key identifier: D2:CF:8E:D1:01:A1:CA:84:CA:D0:C3:C0:85:5E:83:57:3B:CE:F3:7B
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F7EBD4B40783F9E01CAF4DF9F6DD11FE2
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/0s-O0QGhyoTK0MPAhV6DVzvO83s.roa
Signing time: Thu 16 May 2024 00:11:25 +0000
ROA not before: Thu 16 May 2024 00:11:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:7e:bd:4b:40:78:3f:9e:01:ca:f4:df:9f:6d:d1:1f:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 16 00:11:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d2cf8ed101a1ca84cad0c3c0855e83573bcef37b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:67:31:30:df:e8:49:5c:eb:12:d7:13:f3:9f:
0d:0f:a2:4a:c1:f4:54:44:43:fb:19:03:c7:06:5e:
12:07:37:d7:ec:31:84:9c:78:68:49:f4:19:be:5c:
7a:8c:78:19:a3:66:ed:f7:3c:ba:16:e3:1b:73:47:
8e:c2:93:3f:cc:12:91:0c:1a:c0:60:d5:8a:77:8d:
11:8d:9a:62:da:14:91:37:44:2e:d8:1e:02:e8:8c:
6d:6c:15:e4:e2:23:82:c5:38:4d:e3:ba:49:78:dc:
6a:26:70:60:f9:8b:5b:d3:6a:17:61:9f:92:11:49:
31:98:c5:6f:95:ff:a8:1b:b4:ce:d0:e6:3e:69:37:
93:ee:a0:0c:1e:5c:68:09:49:14:9e:48:45:5e:ca:
f6:9e:0b:65:65:73:e6:19:2d:94:59:ca:bc:2d:39:
57:66:c7:2b:08:a0:da:6e:86:70:4b:6a:53:fe:53:
2d:3a:3c:79:14:c1:8d:4a:0b:e7:11:3b:70:56:32:
3f:fd:d0:09:88:fb:1d:7c:6d:8a:1b:47:f9:83:67:
88:53:ee:80:23:7f:68:29:da:e1:a2:1c:8e:cf:f4:
66:5c:f7:e1:29:65:3f:a0:a2:dd:5b:61:98:81:7e:
20:04:53:30:79:bd:a0:be:1e:a5:a5:3b:ad:b9:80:
27:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:CF:8E:D1:01:A1:CA:84:CA:D0:C3:C0:85:5E:83:57:3B:CE:F3:7B
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/0s-O0QGhyoTK0MPAhV6DVzvO83s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
4f:a7:eb:d3:4a:a1:f6:5b:73:9c:88:2c:39:8e:64:ca:99:9d:
09:5e:44:cc:c4:aa:21:16:7f:c3:7a:9d:4f:ae:00:eb:b5:7c:
88:25:07:ae:f8:7c:a6:63:51:f2:53:63:24:3e:4b:b5:c1:db:
85:c8:63:b4:2f:bd:2e:7a:e8:9b:00:4e:fd:25:55:a3:dd:00:
0f:14:87:ce:73:61:3b:f9:bf:ed:9d:86:b3:a8:ad:7a:54:60:
fc:14:a7:ac:43:f4:6d:b2:09:2e:d4:b0:88:04:19:bd:99:c9:
0b:03:49:df:cb:83:77:a1:1d:3f:2a:3f:f8:64:44:fe:9d:5f:
31:2c:8d:b0:e0:d1:dc:16:b6:e5:8c:af:63:5f:44:06:7a:15:
9f:e7:c4:11:e4:49:b9:24:45:8a:d9:cb:20:7c:b2:2e:41:86:
4d:a4:45:59:02:49:a4:cb:16:c4:db:df:bb:0b:3c:50:90:74:
0d:79:fb:4b:8e:c3:51:ec:af:6d:71:8c:90:63:c9:3e:2a:23:
2c:4a:2a:59:e2:41:54:df:16:7c:da:79:d7:61:48:24:5d:15:
5c:6e:45:8d:33:04:0b:b4:03:6d:dc:91:e0:99:a6:26:bc:5c:
be:92:de:f7:04:9f:d9:9d:0e:1d:8d:d3:b5:32:a9:81:22:a1:
b6:0f:cc:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:58 2024 by rpki-client on console-ams.rpki-client.org