Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/7x9W3o_St2P0MowHDPDLJ911SnI.roa
File: 7x9W3o_St2P0MowHDPDLJ911SnI.roa (raw, json)
Hash identifier: B5oq8LDDYeWlta7KOrK3ePopUaOxI+qXiOr8EeEFQRo=
Subject key identifier: EF:1F:56:DE:8F:D2:B7:63:F4:32:8C:07:0C:F0:CB:27:DD:75:4A:72
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F329099D393125089FCFEDE1F72BA8ED3
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/7x9W3o_St2P0MowHDPDLJ911SnI.roa
Signing time: Wed 01 May 2024 05:11:28 +0000
ROA not before: Wed 01 May 2024 05:11:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18f:543:9e41/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:32:90:99:d3:93:12:50:89:fc:fe:de:1f:72:ba:8e:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 1 05:11:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ef1f56de8fd2b763f4328c070cf0cb27dd754a72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:0e:d3:0a:c9:fc:37:c9:db:3e:20:31:a9:40:
48:9d:85:44:1a:bb:ed:90:fb:69:d2:57:81:78:f0:
2d:7f:76:bb:f0:8f:ec:33:05:b9:3b:8f:a7:31:bb:
b6:37:16:3e:f0:d0:ad:4c:c1:55:8e:55:d9:5e:39:
48:e9:dc:ae:97:9d:ac:21:7e:25:98:a7:c3:bf:64:
15:3f:c0:92:f1:ae:e8:58:17:ca:28:d9:82:8a:bf:
8a:7e:bc:9e:ec:f6:0e:dd:b9:53:e4:08:2d:c7:e8:
60:2b:7e:56:98:a8:2c:6e:41:25:e5:84:90:02:16:
88:13:70:83:79:b6:f1:8c:b2:af:db:78:e0:44:d1:
84:cf:ab:be:5d:d9:2b:8c:1f:34:0c:a2:a5:1c:0c:
f1:50:dd:7d:d0:c2:91:85:42:a9:8b:6e:83:ef:90:
04:0b:20:3a:a0:13:c2:fb:2d:eb:a9:88:97:e4:0c:
b2:14:4e:e3:df:43:9a:6e:c7:3a:c6:48:f7:4f:44:
84:51:9a:c4:c0:5b:7e:cd:f6:23:9c:08:31:6c:83:
b2:4f:4f:b5:b7:b3:14:d7:f6:f4:d0:9b:40:77:16:
50:da:ac:a8:09:87:f5:80:40:b0:27:f9:69:99:4b:
dc:23:88:4b:1b:67:43:43:e8:0e:c2:92:68:cf:59:
69:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:1F:56:DE:8F:D2:B7:63:F4:32:8C:07:0C:F0:CB:27:DD:75:4A:72
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/7x9W3o_St2P0MowHDPDLJ911SnI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
0a:9c:94:a2:c8:b2:36:eb:ff:f3:50:c8:a2:31:d3:ed:85:79:
fe:e4:4a:9c:cd:5e:77:60:87:ec:f9:fd:1e:17:22:df:9c:64:
1f:2a:bc:f5:07:ef:80:39:b6:83:88:f5:92:54:f8:1a:f2:77:
3a:60:7e:12:17:9e:d1:c7:ae:77:81:14:29:ac:32:0c:5a:ff:
b0:81:2b:0e:2c:82:7f:a9:dd:83:63:1c:e4:4e:58:25:36:3e:
a2:71:b6:d7:10:e3:1b:30:8f:99:a6:df:bd:55:1e:4c:14:a6:
f4:32:12:cf:e4:c1:d3:2d:82:a5:7e:48:39:a2:67:79:16:ef:
6e:62:55:bf:bf:9c:b5:1c:58:c8:09:86:75:ab:18:90:02:0e:
ce:0e:6e:d2:ea:03:9c:78:16:cb:50:af:a4:70:57:71:70:1f:
b1:18:47:7f:5c:d4:75:b1:00:3b:b5:a8:72:7d:6f:27:41:ef:
35:40:97:3b:75:59:b8:1f:21:16:49:12:56:5e:42:de:ae:54:
50:4a:56:ad:7c:a3:28:86:5f:c9:6c:57:5e:8a:3f:01:95:ad:
3f:f6:f1:82:2a:81:97:d3:fb:52:19:d0:d0:c8:51:23:b3:a4:
a1:69:2a:b8:2f:d9:4e:71:39:2c:79:8d:a0:fc:e8:04:85:0d:
95:be:26:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:04 2024 by rpki-client on console-fra.rpki-client.org