Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/2EHYBS7tLsEKSfGh4nbMciYnu-8.roa
File: 2EHYBS7tLsEKSfGh4nbMciYnu-8.roa (raw, json)
Hash identifier: DkelSKaxtHhac8kxTk5DzSi6V+Zxczt5XTSnkg0DOFI=
Subject key identifier: D8:41:D8:05:2E:ED:2E:C1:0A:49:F1:A1:E2:76:CC:72:26:27:BB:EF
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F8005F727EE568415AC92670BD083E2C6
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/2EHYBS7tLsEKSfGh4nbMciYnu-8.roa
Signing time: Thu 16 May 2024 06:10:25 +0000
ROA not before: Thu 16 May 2024 06:10:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:80:05:f7:27:ee:56:84:15:ac:92:67:0b:d0:83:e2:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 16 06:10:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d841d8052eed2ec10a49f1a1e276cc722627bbef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:7a:b0:80:b5:d9:21:72:2b:62:d2:f9:d8:25:
a2:8d:57:76:c9:a3:2c:6c:c6:88:92:f1:99:ab:35:
ad:95:9e:66:4a:43:ea:26:d1:ec:99:62:d6:24:f5:
d4:38:ed:4a:88:ea:45:23:45:7e:67:1a:93:f2:80:
09:6b:5d:02:2e:83:96:5b:6a:b2:1e:b1:ea:e4:c9:
42:fa:e3:cc:7d:1e:65:75:c9:69:d8:f5:a5:f0:87:
92:0a:80:89:bd:07:b5:de:17:75:4a:42:f6:71:92:
f3:1e:aa:7e:36:8c:f4:ec:bc:fb:43:f8:24:53:7a:
1b:e7:10:87:bc:78:77:e0:17:1c:8d:23:7d:11:42:
45:67:40:fe:0e:5e:4b:ef:fd:e0:6d:50:68:15:3d:
39:e3:fe:6e:b4:14:83:85:7e:ee:4d:1a:49:e7:e6:
0f:8e:5a:64:2d:2a:e0:15:38:2e:57:d9:14:57:35:
e9:2b:4c:9e:f6:b4:33:06:7a:42:ca:db:d3:e8:99:
b7:67:9d:5e:99:7a:72:2b:ed:d3:43:3d:6f:da:7d:
9d:08:af:cc:9c:a4:3b:93:7a:4d:6c:e6:ec:87:65:
aa:00:7e:01:1a:b4:d6:34:09:68:e8:e4:ea:b4:ae:
85:e8:a1:d4:b0:e5:43:1a:bb:0e:4d:b8:4f:33:0b:
26:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:41:D8:05:2E:ED:2E:C1:0A:49:F1:A1:E2:76:CC:72:26:27:BB:EF
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/2EHYBS7tLsEKSfGh4nbMciYnu-8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
34:77:92:a4:bf:5b:62:e8:e7:57:46:e0:89:28:20:e7:fd:a6:
56:81:1e:22:77:f7:c1:75:4d:47:95:d4:bb:e4:18:26:4d:67:
3c:5b:0a:9f:42:10:79:49:4f:88:31:b2:cb:d0:98:9b:40:11:
1c:8f:1b:5b:57:b9:70:e9:17:30:3c:77:08:bd:00:33:9b:04:
99:37:07:af:dc:36:95:e5:1c:fe:cd:72:c4:2a:3e:5c:50:3e:
58:3b:1f:fd:23:98:79:a5:b3:a4:ef:e9:b4:52:cc:ce:d5:cc:
a6:81:e2:34:3c:40:89:bf:c6:4f:8a:55:57:9b:37:75:6a:ff:
7d:2c:e4:52:b3:87:b7:ab:f9:2a:32:a6:c8:11:a5:79:f9:ab:
16:57:ed:7c:22:f7:b7:00:09:7b:1f:21:55:f6:c3:2e:51:de:
af:bb:ab:05:cc:b3:7b:9a:2d:32:96:9c:a4:e1:97:a8:1b:f7:
3f:ae:07:f2:a6:52:c5:43:68:2c:e6:f4:81:d0:c5:43:3a:11:
a1:eb:aa:bb:a2:9d:64:c5:19:af:6d:96:45:d1:ee:0f:e5:67:
f8:ea:60:69:55:41:11:64:d2:f3:98:ba:88:62:b7:38:a9:41:
84:23:97:77:76:5d:cb:bc:57:a6:d1:b0:be:05:b5:80:3f:ef:
93:b9:f8:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:58 2024 by rpki-client on console-ams.rpki-client.org