Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/7j34xUHsAOkjzNhaRko8nO1tz5A.roa
File: 7j34xUHsAOkjzNhaRko8nO1tz5A.roa (raw, json)
Hash identifier: p1Ku8bTpNdXhPaCZH0TLBBDsi3OhDXSKaiD8MG28Hd0=
Subject key identifier: EE:3D:F8:C5:41:EC:00:E9:23:CC:D8:5A:46:4A:3C:9C:ED:6D:CF:90
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018EFC478235E0FB6D900A817D83A23A212A
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/7j34xUHsAOkjzNhaRko8nO1tz5A.roa
Signing time: Sat 20 Apr 2024 16:12:08 +0000
ROA not before: Sat 20 Apr 2024 16:12:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:fc:47:82:35:e0:fb:6d:90:0a:81:7d:83:a2:3a:21:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: Apr 20 16:12:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ee3df8c541ec00e923ccd85a464a3c9ced6dcf90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:03:9e:13:96:91:64:58:dd:21:80:47:49:60:
7d:7b:b9:a1:f5:43:93:22:96:7e:b2:4b:10:b3:48:
86:14:71:8f:60:74:f3:f3:01:6a:ef:d4:f5:3e:78:
47:22:fc:1a:e3:ff:e0:87:ff:ef:00:c2:84:78:39:
53:9e:b6:09:3e:d8:8d:a3:af:0d:c4:59:37:3a:93:
7d:bc:13:90:1b:b1:7b:e6:5e:85:96:63:f9:ff:bc:
97:de:02:53:88:87:4f:34:f0:f5:78:7c:f0:76:91:
51:e9:1a:53:d8:29:cf:84:04:2e:88:31:cf:21:b3:
5f:fe:6e:5f:f2:48:46:62:70:77:f6:37:a2:30:99:
81:d4:c5:b6:d9:16:77:c9:c1:50:b6:e8:78:ea:3e:
f3:01:e9:04:b8:09:c0:b0:d3:30:ee:9c:c7:fd:41:
ae:f6:d5:7a:f2:70:65:e8:06:08:11:b9:2d:95:c6:
c3:61:73:41:0b:15:72:19:18:ef:5a:2d:bf:16:63:
f8:3a:a4:11:2a:90:b6:56:40:a4:91:39:f7:f4:b4:
52:14:f2:64:da:d1:f5:ef:c7:4c:37:73:82:3c:32:
6a:c9:65:d2:57:51:26:52:40:95:1f:a2:19:b9:ed:
a1:68:9a:47:7d:7f:fc:59:11:e3:4c:de:e6:31:b3:
aa:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:3D:F8:C5:41:EC:00:E9:23:CC:D8:5A:46:4A:3C:9C:ED:6D:CF:90
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/7j34xUHsAOkjzNhaRko8nO1tz5A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
Signature Algorithm: sha256WithRSAEncryption
38:dd:36:08:09:08:94:5e:a2:f6:7e:da:a0:f4:bb:de:d2:c2:
fb:85:0f:ea:2e:a2:bf:d9:39:b2:fd:28:02:ea:d1:a3:0f:c4:
7c:5f:c5:d5:7d:c0:84:0c:78:4b:b5:b8:67:6c:14:c6:5a:ca:
d6:ce:8f:89:73:cc:82:99:5c:93:b1:92:69:50:6d:6d:78:93:
a9:32:3f:8d:97:4c:22:b1:07:24:c7:55:de:10:0c:05:a5:a8:
d6:3c:dc:aa:6b:68:cd:9d:40:d5:b0:79:fd:86:c0:a4:e2:d1:
61:01:77:ff:9d:30:15:77:d1:99:07:39:36:82:d3:6a:04:b7:
93:ea:66:35:ea:8f:79:f0:91:68:2b:10:2b:a1:f0:44:66:74:
cc:b5:67:2e:d3:ed:0f:ed:71:e7:7d:98:69:5c:c0:80:f4:30:
c4:8c:7f:aa:f5:ed:d8:3e:b5:89:4a:dc:fc:8f:a9:b2:50:89:
bf:06:0d:09:c1:28:a0:98:14:35:fd:99:62:c2:31:34:18:1a:
c2:f3:95:4f:dd:92:ab:cf:9f:21:f2:19:35:16:07:ca:36:15:
d1:3b:b7:a9:d0:3b:40:e5:30:bd:ae:f0:66:d7:5a:f6:1d:aa:
48:a3:e8:21:b1:13:e1:9c:1d:c4:1a:d5:eb:fa:2f:df:8d:cd:
f0:9c:1f:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:58 2024 by rpki-client on console-ams.rpki-client.org