Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/172Vn7sjd6gsI_nG5TARUXPSLks.roa
File: 172Vn7sjd6gsI_nG5TARUXPSLks.roa (raw, json)
Hash identifier: T1zbuh28tynAe56i3AzDgjwUm7uIUXOSYeQP01cy9Y0=
Subject key identifier: D7:BD:95:9F:BB:23:77:A8:2C:23:F9:C6:E5:30:11:51:73:D2:2E:4B
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F43F0AB16136D095F352418705A345767
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/172Vn7sjd6gsI_nG5TARUXPSLks.roa
Signing time: Sat 04 May 2024 14:09:56 +0000
ROA not before: Sat 04 May 2024 14:09:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18f:543:9e41/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:43:f0:ab:16:13:6d:09:5f:35:24:18:70:5a:34:57:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 4 14:09:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d7bd959fbb2377a82c23f9c6e530115173d22e4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b5:fa:fb:17:5d:ca:e9:d3:79:4e:dc:78:09:
6f:7e:0a:79:3d:96:02:ea:e3:c9:97:6e:95:7f:41:
c9:6c:3b:5e:61:1b:f8:dd:ff:b2:8a:12:45:19:4c:
55:d1:ff:2d:8d:51:2c:61:92:35:ea:ed:6b:32:40:
0b:8c:79:47:0b:35:de:c7:45:93:8e:cf:74:11:1e:
df:f4:93:38:66:12:d1:9f:9c:0a:f7:7c:8f:d7:57:
0e:95:aa:19:58:e1:14:20:38:c7:52:87:10:0b:39:
86:67:84:0b:8d:10:e2:2b:99:06:37:70:6d:35:7d:
cf:36:da:79:56:fa:ba:eb:e2:01:f1:0c:bc:8b:ba:
cb:69:05:e4:c0:74:65:2a:c9:64:08:a1:0e:86:e6:
b3:96:13:48:22:10:a3:85:f1:68:d2:f8:59:18:87:
e5:f7:1a:43:b3:44:be:0c:76:0a:0d:22:f4:00:71:
4f:e7:30:e3:5f:93:27:3e:ce:89:64:bb:cb:75:4f:
ec:12:9f:ca:71:3d:50:ad:b0:a9:a9:03:f5:07:d6:
11:b9:08:b2:36:3f:4f:f9:3c:37:87:0d:50:8a:ee:
4e:6c:cd:bc:a6:65:3b:33:fe:96:8a:fc:2b:bc:c9:
b9:dc:82:22:b1:97:92:d1:31:3e:4f:5c:c9:95:24:
f3:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:BD:95:9F:BB:23:77:A8:2C:23:F9:C6:E5:30:11:51:73:D2:2E:4B
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/172Vn7sjd6gsI_nG5TARUXPSLks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
4a:10:13:e1:e1:7e:c1:0e:10:e2:2d:44:27:63:23:1b:4b:e6:
7b:d1:a9:93:2e:00:6d:61:27:86:0b:74:47:be:f6:85:d5:cd:
89:1e:ba:59:54:cb:8e:88:0e:f4:fc:8a:22:a3:47:1f:b5:51:
ea:d4:d9:d3:13:d8:29:ae:26:46:51:be:4b:79:f7:a8:b9:e8:
95:45:e6:97:a3:44:b6:3b:11:fa:ff:a4:7e:e3:09:31:3b:c9:
91:d1:52:7f:9f:f5:f1:5e:a9:e1:14:85:ce:7e:5c:11:c2:3f:
60:a7:fd:77:b9:b6:c2:28:9e:b4:b5:98:ec:5d:bf:79:76:3f:
0c:15:41:e0:44:0b:b3:33:48:35:5f:ae:2f:20:0b:4b:d0:d2:
8f:60:bd:91:8b:56:c6:54:0b:28:fb:61:c0:2f:49:35:22:2f:
43:c3:e3:6d:1a:17:ed:89:4a:ec:3d:2f:b9:8f:f5:d2:4a:40:
ff:2f:85:21:d2:af:17:ee:00:7e:4d:95:58:22:d6:8d:e9:71:
31:1e:dd:99:41:68:90:56:7c:87:75:16:c1:8b:04:e8:56:fc:
21:6c:39:61:64:d9:d3:37:94:be:1c:15:f1:1b:54:0b:a7:85:
ce:cb:39:f5:c6:2f:a0:a9:0c:b3:2e:e5:33:68:78:80:85:13:
59:db:00:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:58 2024 by rpki-client on console-ams.rpki-client.org