Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/1jrINjjNDSgB5zqPX-gSleR7WSQ.roa
File: 1jrINjjNDSgB5zqPX-gSleR7WSQ.roa (raw, json)
Hash identifier: x46Xrm/5rkCgkjJW1I4ypDUTfCQ/USxBdShW6hpD+/c=
Subject key identifier: D6:3A:C8:36:38:CD:0D:28:01:E7:3A:8F:5F:E8:12:95:E4:7B:59:24
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F415F50FDE14895FEEE587468C184BE38
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/1jrINjjNDSgB5zqPX-gSleR7WSQ.roa
Signing time: Sat 04 May 2024 02:11:56 +0000
ROA not before: Sat 04 May 2024 02:11:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18f:543:9e41/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:41:5f:50:fd:e1:48:95:fe:ee:58:74:68:c1:84:be:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 4 02:11:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d63ac83638cd0d2801e73a8f5fe81295e47b5924
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:28:7f:6b:60:63:ed:4a:30:ec:36:83:8a:60:
e4:35:66:e9:c4:7a:9f:27:77:01:ab:71:26:49:c3:
00:38:bd:ab:91:60:42:5d:70:00:34:61:c1:f0:79:
ac:f9:18:85:38:28:09:df:9c:e1:6c:fd:20:7c:42:
d8:a0:2a:5f:bb:be:15:7c:c2:c1:72:7b:14:e5:b6:
2a:0c:4b:ee:25:32:35:67:ba:ad:08:95:eb:69:d1:
ad:fe:37:fc:af:22:92:70:ca:23:20:aa:c2:d6:fc:
a3:99:e8:99:19:74:2b:d1:e6:8b:f5:34:45:de:ce:
4b:e1:0d:7a:c5:ee:88:e5:8f:4a:35:b3:a9:40:f8:
0c:3c:aa:c8:97:ed:c1:cc:2c:d9:6d:cd:1c:48:66:
e8:54:72:a7:7b:b4:ad:9a:f1:fd:84:39:55:9b:fd:
19:d8:9b:6f:48:0d:1f:eb:67:65:5b:d8:1c:f4:72:
fa:fd:42:a6:28:f1:29:b4:ee:94:a5:6a:ac:24:5b:
00:4a:81:0a:11:18:68:65:00:65:5d:2a:be:a2:fe:
f6:84:eb:4b:04:23:8a:fb:96:b2:30:3f:79:6d:77:
98:44:7f:08:63:51:7f:ad:80:04:eb:27:03:49:c0:
3b:fd:74:b5:7c:5a:ce:0f:6e:52:71:ce:48:59:99:
01:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:3A:C8:36:38:CD:0D:28:01:E7:3A:8F:5F:E8:12:95:E4:7B:59:24
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/1jrINjjNDSgB5zqPX-gSleR7WSQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
be:eb:da:89:55:39:d1:3d:34:05:9d:32:b9:24:2b:23:b8:92:
64:7e:d9:df:37:37:ad:ee:4e:35:b5:97:ce:68:52:21:b5:60:
38:59:fd:43:b6:a3:f0:27:46:ed:7b:a5:f9:fa:6c:26:b9:eb:
20:8c:cd:6a:e1:c4:1c:15:aa:ae:e5:05:b8:95:96:35:f9:4d:
6b:9d:5c:79:02:3f:96:27:1b:79:f3:7f:59:b7:23:0d:d1:ad:
bc:7f:22:20:db:bc:f8:ef:c1:74:8b:4a:1e:bc:c1:8f:00:76:
3a:a8:4f:c5:02:9c:c4:7b:0a:1e:2e:40:61:e8:a8:6e:e0:1e:
83:30:ba:8b:17:55:6d:41:d5:6d:51:02:e1:1d:0e:b6:bc:2d:
8d:f7:bb:5f:16:d6:05:30:8f:21:5a:f9:1a:98:88:12:b4:ab:
a2:b3:e3:82:f2:c3:66:87:ce:ef:3b:60:4c:53:a9:e1:74:1e:
4b:28:9d:05:09:d8:50:3b:2b:47:23:24:c7:f7:9d:90:5b:fd:
9a:f5:4e:15:3c:64:51:4f:b8:40:e5:90:a7:5a:c1:52:72:fa:
ae:c7:12:af:28:a7:d3:6e:a4:52:ef:37:20:88:19:33:2c:78:
54:47:d4:5d:94:6c:64:d6:47:c1:4e:19:fc:5d:a1:50:88:12:
bb:70:d6:01
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY9BX1D94UiV/u5YdGjBhL44MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyYmVjNDFiZDJmM2IxNzlkZTA5NTE0MzA2NTMwYmQzZmJh
YzcwN2IwHhcNMjQwNTA0MDIxMTU2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNjNhYzgzNjM4Y2QwZDI4MDFlNzNhOGY1ZmU4MTI5NWU0N2I1OTI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmih/a2Bj7Uow7DaDimDkNWbpxHqf
J3cBq3EmScMAOL2rkWBCXXAANGHB8Hms+RiFOCgJ35zhbP0gfELYoCpfu74VfMLB
cnsU5bYqDEvuJTI1Z7qtCJXradGt/jf8ryKScMojIKrC1vyjmeiZGXQr0eaL9TRF
3s5L4Q16xe6I5Y9KNbOpQPgMPKrIl+3BzCzZbc0cSGboVHKne7StmvH9hDlVm/0Z
2JtvSA0f62dlW9gc9HL6/UKmKPEptO6UpWqsJFsASoEKERhoZQBlXSq+ov72hOtL
BCOK+5ayMD95bXeYRH8IY1F/rYAE6ycDScA7/XS1fFrOD25Scc5IWZkBJQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFNY6yDY4zQ0oAec6j1/oEpXke1kkMB8GA1UdIwQY
MBaAFLK+xBvS87F53glRQwZTC9P7rHB7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYt
ZDEyZjAzOWRiMmM5LzEvMWpySU5qak5EU2dCNXpxUFgtZ1NsZVI3V1NRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYtZDEyZjAzOWRiMmM5
LzEvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAL7r2olVOdE9NAWdMrkk
KyO4kmR+2d83N63uTjW1l85oUiG1YDhZ/UO2o/AnRu17pfn6bCa56yCMzWrhxBwV
qq7lBbiVljX5TWudXHkCP5YnG3nzf1m3Iw3Rrbx/IiDbvPjvwXSLSh68wY8Adjqo
T8UCnMR7Ch4uQGHoqG7gHoMwuosXVW1B1W1RAuEdDra8LY33u18W1gUwjyFa+RqY
iBK0q6Kz44Lyw2aHzu87YExTqeF0HksonQUJ2FA7K0cjJMf3nZBb/Zr1ThU8ZFFP
uEDlkKdawVJy+q7HEq8op9NupFLvNyCIGTMseFRH1F2UbGTWR8FOGfxdoVCIErtw
1gE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:58 2024 by rpki-client on console-ams.rpki-client.org