Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/1Vd5j91ogp3t2Bd4Sta5SYzTrUA.roa
File: 1Vd5j91ogp3t2Bd4Sta5SYzTrUA.roa (raw, json)
Hash identifier: 9qCcM5dUdAco4krnZcVheO6uWDMAja/5Y2VCFWZzTK0=
Subject key identifier: D5:57:79:8F:DD:68:82:9D:ED:D8:17:78:4A:D6:B9:49:8C:D3:AD:40
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F0E83C83DB9348155EE9771E1138CEC4A
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/1Vd5j91ogp3t2Bd4Sta5SYzTrUA.roa
Signing time: Wed 24 Apr 2024 05:11:08 +0000
ROA not before: Wed 24 Apr 2024 05:11:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:18f:543:9e41/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:0e:83:c8:3d:b9:34:81:55:ee:97:71:e1:13:8c:ec:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: Apr 24 05:11:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d557798fdd68829dedd817784ad6b9498cd3ad40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:a5:28:8e:fc:58:d9:87:df:ec:07:48:b3:33:
6f:2b:f5:94:81:39:65:fa:96:32:77:42:82:f2:17:
92:93:f6:6b:47:ef:d5:49:a8:49:52:b8:e2:2a:ab:
af:ed:6c:07:56:39:fb:b2:df:47:4d:4e:89:6d:69:
68:4f:02:01:23:2b:85:58:fe:c9:9c:6f:ed:4c:96:
19:b9:eb:32:6f:4a:5e:06:ee:c6:a8:c3:fc:97:47:
81:d8:40:4d:08:bb:23:fd:89:95:00:04:12:48:9a:
ee:9a:07:3a:77:63:e6:10:8d:ea:15:45:c9:53:20:
b4:e5:4a:2b:b9:2d:2d:2f:ed:bf:da:9a:1a:8a:04:
1f:84:7d:a7:4d:d1:8a:0e:ec:d5:de:90:0f:16:78:
3e:81:c1:39:d7:f6:40:51:55:58:9d:de:c6:f4:de:
e2:25:4c:18:ae:05:f6:1b:0c:92:f5:05:5d:24:7a:
9b:c1:27:ef:26:9e:d1:c1:64:f4:9e:1e:2d:0a:0d:
58:7b:9b:cc:31:49:1b:5e:48:05:7e:f3:98:e6:a4:
ea:e2:a6:ce:ad:02:cc:93:a1:48:6d:eb:f3:f8:69:
f7:10:f8:23:9f:fb:94:6a:54:4f:0d:d1:73:d3:f6:
50:7e:2f:c0:b0:4f:58:96:a4:21:27:4c:5d:45:e9:
4d:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:57:79:8F:DD:68:82:9D:ED:D8:17:78:4A:D6:B9:49:8C:D3:AD:40
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/1Vd5j91ogp3t2Bd4Sta5SYzTrUA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64:ffff:0:18f:543:9e41/128
Signature Algorithm: sha256WithRSAEncryption
ce:59:d0:3c:54:51:68:1c:d1:5b:02:8c:90:bb:e0:d0:36:07:
95:47:19:ae:4e:94:59:43:04:d0:75:89:0e:d9:75:e5:00:b7:
8c:02:06:96:6b:3f:16:ef:1f:02:34:3d:bc:b9:79:31:79:2f:
17:31:11:41:0d:b8:be:a9:03:e3:1b:a9:37:26:be:d5:b8:cd:
53:f5:08:9f:cd:c1:88:15:83:16:09:b3:9e:d8:a4:f0:a7:f7:
fd:c7:f3:18:b7:85:13:cc:fe:c1:f1:21:fb:fc:23:08:df:0c:
4e:1a:59:57:97:56:80:f4:7d:15:f7:ec:fd:b0:09:b2:50:1b:
e6:40:5a:e7:a1:7b:d9:af:00:9d:b0:f0:7c:02:c6:2c:87:d8:
d6:9d:f1:07:5b:17:8c:f6:f4:ca:26:db:85:e3:75:6c:e5:3f:
79:95:41:41:da:81:12:42:da:b5:96:62:d5:82:0d:39:65:74:
32:b6:6b:9d:61:c3:43:15:a1:a6:9f:cd:eb:ef:2b:56:c9:23:
27:e1:a4:24:42:29:1e:07:9d:f7:93:5d:0e:28:bd:bf:3f:6f:
36:5d:17:0f:d0:c7:ec:fc:31:6d:19:5c:e5:cb:6d:42:1f:fa:
b8:aa:75:66:16:fd:cd:fa:89:c9:19:e4:42:44:ae:28:b0:10:
85:d2:c3:43
-----BEGIN CERTIFICATE-----
MIIFGDCCBACgAwIBAgISAY8Og8g9uTSBVe6XceETjOxKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyYmVjNDFiZDJmM2IxNzlkZTA5NTE0MzA2NTMwYmQzZmJh
YzcwN2IwHhcNMjQwNDI0MDUxMTA4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNTU3Nzk4ZmRkNjg4MjlkZWRkODE3Nzg0YWQ2Yjk0OThjZDNhZDQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi6UojvxY2Yff7AdIszNvK/WUgTll
+pYyd0KC8heSk/ZrR+/VSahJUrjiKquv7WwHVjn7st9HTU6JbWloTwIBIyuFWP7J
nG/tTJYZuesyb0peBu7GqMP8l0eB2EBNCLsj/YmVAAQSSJrumgc6d2PmEI3qFUXJ
UyC05UoruS0tL+2/2poaigQfhH2nTdGKDuzV3pAPFng+gcE51/ZAUVVYnd7G9N7i
JUwYrgX2GwyS9QVdJHqbwSfvJp7RwWT0nh4tCg1Ye5vMMUkbXkgFfvOY5qTq4qbO
rQLMk6FIbevz+Gn3EPgjn/uUalRPDdFz0/ZQfi/AsE9YlqQhJ0xdRelNiQIDAQAB
o4ICJDCCAiAwHQYDVR0OBBYEFNVXeY/daIKd7dgXeErWuUmM061AMB8GA1UdIwQY
MBaAFLK+xBvS87F53glRQwZTC9P7rHB7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYt
ZDEyZjAzOWRiMmM5LzEvMVZkNWo5MW9ncDN0MkJkNFN0YTVTWXpUclVBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYtZDEyZjAzOWRiMmM5
LzEvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAMBAIAATAGAwQDwQAYMBkE
AgACMBMDEQAgAQZ8AGT//wAAAY8FQ55BMA0GCSqGSIb3DQEBCwUAA4IBAQDOWdA8
VFFoHNFbAoyQu+DQNgeVRxmuTpRZQwTQdYkO2XXlALeMAgaWaz8W7x8CND28uXkx
eS8XMRFBDbi+qQPjG6k3Jr7VuM1T9QifzcGIFYMWCbOe2KTwp/f9x/MYt4UTzP7B
8SH7/CMI3wxOGllXl1aA9H0V9+z9sAmyUBvmQFrnoXvZrwCdsPB8AsYsh9jWnfEH
WxeM9vTKJtuF43Vs5T95lUFB2oESQtq1lmLVgg05ZXQytmudYcNDFaGmn83r7ytW
ySMn4aQkQikeB533k10OKL2/P282XRcP0Mfs/DFtGVzly21CH/q4qnVmFv3N+onJ
GeRCRK4osBCF0sND
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:58 2024 by rpki-client on console-ams.rpki-client.org