Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/3zRdSK3XUCpbWEYIGqVqWSnppsc.roa
File: 3zRdSK3XUCpbWEYIGqVqWSnppsc.roa (raw, json)
Hash identifier: FVHMMMe3WAp3BZqt9DcSWlSJuXp4TXYPtqdKIRLGXq0=
Subject key identifier: DF:34:5D:48:AD:D7:50:2A:5B:58:46:08:1A:A5:6A:59:29:E9:A6:C7
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F20F9191975B42F8BB82934F7FBC411D2
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/3zRdSK3XUCpbWEYIGqVqWSnppsc.roa
Signing time: Sat 27 Apr 2024 19:12:26 +0000
ROA not before: Sat 27 Apr 2024 19:12:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:18f:543:9e41/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:20:f9:19:19:75:b4:2f:8b:b8:29:34:f7:fb:c4:11:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: Apr 27 19:12:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=df345d48add7502a5b5846081aa56a5929e9a6c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:03:4c:53:b5:94:45:64:e2:f0:fe:9c:ee:57:
e5:cb:18:f1:0f:b2:1e:74:ef:cb:bc:c6:3f:a5:08:
cb:98:fb:76:2f:94:00:a1:8e:82:86:1f:5c:32:d8:
05:86:b2:b4:2f:8b:d4:e4:48:0a:19:ce:94:58:a7:
76:0c:4b:70:03:85:46:da:8c:de:5c:46:37:ce:0b:
5d:96:ed:17:23:70:db:08:e6:36:a8:63:6e:8f:ee:
27:c4:32:4d:95:45:c2:44:53:8a:62:77:ad:64:4c:
6a:c1:d0:fc:63:de:8f:b8:d5:5a:dd:37:26:a0:df:
b5:99:15:0a:f5:80:ac:0d:4b:2c:0e:8d:02:60:cc:
1c:d8:62:4b:95:16:d6:f0:db:53:25:2e:7a:dc:d4:
c3:9d:7e:35:bd:c3:d6:b0:e2:3f:76:79:00:d0:e0:
a7:64:e1:9c:82:e1:be:9b:59:2d:48:51:2a:25:a5:
29:e5:1f:81:a7:36:2e:4d:41:12:cb:49:5d:7b:a4:
52:03:38:9e:87:21:46:80:e2:e3:97:bf:61:4e:d1:
d9:ee:02:5b:58:12:4c:c2:f3:47:91:d4:a0:72:c3:
95:61:b9:e8:ee:45:c7:94:af:e4:b0:5f:79:53:e7:
25:7b:27:2a:e1:e3:99:59:e1:4a:17:fd:dd:7d:d1:
c8:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:34:5D:48:AD:D7:50:2A:5B:58:46:08:1A:A5:6A:59:29:E9:A6:C7
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/3zRdSK3XUCpbWEYIGqVqWSnppsc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64:ffff:0:18f:543:9e41/128
Signature Algorithm: sha256WithRSAEncryption
77:5a:07:90:12:6d:ef:af:99:7a:04:77:21:73:30:ff:6e:b4:
a1:fe:db:25:78:d5:f2:7f:10:b8:e9:ae:af:c1:18:a7:1f:26:
ba:b0:0e:a0:5c:80:40:82:36:f2:68:f0:b2:72:c5:01:2d:b8:
4e:b9:4d:a0:21:8a:e5:07:62:2e:f5:0c:25:01:9d:5e:1d:4b:
8f:49:1e:e6:39:1c:73:c9:16:3d:e9:99:26:69:f3:8b:da:9a:
11:b9:c7:07:57:1c:27:e8:56:57:17:bd:a1:02:fa:e3:c8:d7:
da:ad:cb:cd:8e:d3:3b:2f:68:01:0f:2b:9d:0f:61:27:4d:42:
15:37:a1:2e:e4:95:72:0d:03:da:df:fa:5d:3f:0e:f2:3c:97:
00:1e:1c:f3:84:2e:e3:2e:9a:2b:ad:81:39:de:db:bf:52:fb:
bf:98:1d:63:d4:5b:66:a7:63:31:2c:9e:61:86:31:00:d5:84:
bd:72:64:d7:b4:36:27:87:80:90:a2:b4:e9:b7:13:c9:df:3e:
22:4b:04:1a:47:13:cb:e3:c6:70:2b:06:b0:cf:67:92:86:26:
11:aa:29:bd:10:03:9a:05:78:1b:fe:76:ca:4d:c9:df:c6:de:
0f:24:af:b8:ca:e7:9f:52:98:28:72:91:2b:29:84:b4:e7:01:
ed:f0:fd:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:58 2024 by rpki-client on console-ams.rpki-client.org