Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/9gl43qWD2bHJHXp2YyJ-UIFYi5Y.roa
File: 9gl43qWD2bHJHXp2YyJ-UIFYi5Y.roa (raw, json)
Hash identifier: lA5sK4Jd56RnL2hZegbJYFx6c3C2ov9UQLOh+psXTEI=
Subject key identifier: F6:09:78:DE:A5:83:D9:B1:C9:1D:7A:76:63:22:7E:50:81:58:8B:96
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F882DF5BB162B157D66A3A4AC7C697510
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/9gl43qWD2bHJHXp2YyJ-UIFYi5Y.roa
Signing time: Fri 17 May 2024 20:11:04 +0000
ROA not before: Fri 17 May 2024 20:11:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:2d:f5:bb:16:2b:15:7d:66:a3:a4:ac:7c:69:75:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 17 20:11:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f60978dea583d9b1c91d7a7663227e5081588b96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:cd:18:81:48:ab:f7:8e:1b:c1:53:8b:30:d7:
00:37:d7:a9:28:52:8f:9d:88:44:1e:c7:bd:26:be:
6d:46:1b:0b:67:b2:e7:3c:8c:32:21:58:21:f8:17:
88:56:9e:22:3e:cf:2c:d8:26:00:e1:6f:79:aa:a0:
95:68:00:28:e3:db:47:87:da:35:97:71:fd:b4:9f:
e4:0a:eb:2a:3f:d9:e0:74:90:2d:6e:00:47:23:6c:
62:f0:33:50:0d:f4:56:fc:11:68:a7:4b:8e:f9:b3:
e8:62:ba:05:c0:0b:c3:43:a6:a9:f0:2a:67:48:66:
e3:2a:2b:c1:dd:b9:60:a1:1f:7b:45:6b:98:54:7f:
4a:74:42:3f:b0:59:9a:71:ab:79:c0:12:c2:a7:4d:
98:ae:92:7e:ba:52:99:6b:cf:dd:5a:c1:51:45:3d:
44:78:89:38:60:a1:57:d0:78:8b:e6:0a:c6:79:a1:
1f:42:cb:80:45:2f:97:ea:45:df:77:b8:c0:72:6b:
9b:50:79:89:a1:5e:e8:42:7a:dc:1f:0f:e2:ea:a1:
be:27:47:77:56:6b:61:f4:45:cc:80:2e:e2:4a:ed:
92:a6:cd:a5:96:df:30:d0:4b:a3:22:98:42:68:07:
ef:7a:5a:ed:51:6c:7a:3b:26:fb:1d:21:6b:b7:ff:
92:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:09:78:DE:A5:83:D9:B1:C9:1D:7A:76:63:22:7E:50:81:58:8B:96
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/9gl43qWD2bHJHXp2YyJ-UIFYi5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
97:7a:b7:26:36:fc:8e:dd:d1:22:9c:38:1b:6c:28:76:53:95:
96:68:f0:42:df:14:61:13:39:5d:73:47:aa:9f:e0:d1:c0:ae:
df:17:04:ea:dc:51:52:b7:89:b6:6b:f6:99:3d:a1:d6:2b:22:
c3:60:ef:1a:91:f2:05:cb:ed:ee:77:a9:d4:63:57:78:06:70:
55:c5:32:c7:63:cb:a4:76:eb:34:06:24:db:5b:47:42:61:38:
fc:0c:e4:b7:59:4a:6d:90:35:59:9c:3c:e1:03:21:b2:a4:79:
de:ec:56:18:69:e8:c5:02:55:18:22:ad:88:d3:81:dd:04:e4:
90:8a:bc:64:7a:42:be:92:cc:1b:a7:12:bd:4c:67:0f:ca:f3:
41:8d:05:df:3f:c3:69:35:f0:af:89:ee:53:c3:a3:da:a4:93:
9c:91:a3:c4:f2:6a:3f:6a:35:38:ec:62:26:af:a0:2c:71:4e:
5e:5c:39:9a:6a:fc:a2:f7:3c:b3:be:28:e2:9e:c3:6a:72:d2:
6e:44:01:60:7a:16:9c:c2:31:5b:fe:25:ed:2a:67:fd:40:db:
bf:38:92:f4:77:74:1e:e6:4b:fd:ea:50:d5:f6:86:7a:ab:86:
64:8b:a9:12:b1:6b:f9:e2:33:ba:28:c2:b2:36:f3:3e:0f:f7:
c9:2e:0e:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:04 2024 by rpki-client on console-fra.rpki-client.org