Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/AJEgkIAB3xylD9AgMKaORvi3Um4.roa
File: AJEgkIAB3xylD9AgMKaORvi3Um4.roa (raw, json)
Hash identifier: eqFCpr1RHvnoJzqIBG4sHYTAd6+dL8+rMvJnl665IMw=
Subject key identifier: 00:91:20:90:80:01:DF:1C:A5:0F:D0:20:30:A6:8E:46:F8:B7:52:6E
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F7326FBD7BB8A2A22F38112FED629971C
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/AJEgkIAB3xylD9AgMKaORvi3Um4.roa
Signing time: Mon 13 May 2024 18:11:25 +0000
ROA not before: Mon 13 May 2024 18:11:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:73:26:fb:d7:bb:8a:2a:22:f3:81:12:fe:d6:29:97:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 13 18:11:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=009120908001df1ca50fd02030a68e46f8b7526e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ad:48:c6:fb:63:3e:a5:35:49:71:ed:cb:34:
99:e4:5b:61:a1:be:05:85:87:b7:4e:4f:f9:0e:64:
15:b8:82:44:af:be:0e:d8:3a:ae:83:64:fc:56:d8:
ae:8b:4d:b1:d7:26:29:3e:a2:05:4b:17:42:0b:40:
0e:c3:bd:2a:a9:bf:66:83:ad:06:8a:f1:e3:b3:f4:
f7:b3:79:fa:2a:8c:b0:72:27:85:88:cb:83:36:cf:
87:d3:0c:d6:47:3b:b4:68:52:73:7c:42:2d:4b:99:
4d:ce:12:4e:0d:9f:1c:db:61:51:aa:56:03:57:94:
da:c5:f4:31:e6:fc:e2:c3:f0:2d:1d:33:e8:bc:30:
a7:7a:8e:37:2b:79:2e:aa:ed:f0:58:cb:ce:37:9e:
ee:a0:45:05:9f:a3:87:8f:98:2c:b0:fb:42:93:c8:
77:ca:52:fa:3b:2a:c2:4c:89:24:1d:36:d2:2d:0f:
41:94:63:69:b2:06:76:c8:2d:40:8f:af:b6:1d:06:
ba:f9:1b:6e:06:3d:6b:33:e8:7f:b4:06:82:de:6e:
57:25:9b:59:80:b3:3e:0e:ce:dd:32:5f:36:64:2f:
a9:10:32:c0:04:19:e1:3d:11:36:66:7f:1c:98:08:
0d:a3:7d:66:00:64:b5:8a:39:0b:69:0d:85:64:97:
a6:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:91:20:90:80:01:DF:1C:A5:0F:D0:20:30:A6:8E:46:F8:B7:52:6E
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/AJEgkIAB3xylD9AgMKaORvi3Um4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
93:5b:02:2e:aa:11:a1:b8:53:47:d6:33:89:0a:a7:86:d8:eb:
5a:05:7d:0f:d6:a9:42:c0:71:c8:c3:c6:b3:10:11:f0:65:f4:
48:b8:36:71:1e:b5:3a:69:2c:55:a2:37:1e:92:ae:34:e6:3c:
8a:d4:43:f3:8a:ae:31:93:19:99:75:03:d7:b8:4e:5a:3a:17:
a2:cc:57:ee:66:c1:34:9c:c6:36:ac:c5:ef:62:db:3b:9b:6d:
42:10:9f:12:52:23:d3:32:4d:36:06:c3:95:e8:8b:f9:53:b7:
e8:51:cd:48:5e:29:db:a5:7a:5d:7b:22:2a:35:41:9f:ca:6c:
07:fb:0f:e0:c2:23:74:35:65:51:a4:eb:94:04:c7:6a:8f:7b:
f5:f7:48:de:ca:e1:c6:3a:44:55:74:bc:9d:8c:0b:c0:d8:f8:
b5:f9:14:5a:4e:98:b6:07:75:b5:f7:b2:d3:9d:15:4d:a3:fe:
ac:c5:6e:23:81:9a:e4:49:4b:d9:3b:d6:bd:86:12:f5:36:e5:
21:0e:02:f1:2b:e0:d4:89:66:3d:88:7c:7c:ac:bf:63:f8:b3:
3c:38:a4:26:c2:01:40:43:d9:d5:49:24:4b:d8:b2:bb:8a:75:
86:90:03:5d:12:42:7f:e0:49:3d:b4:ff:29:fc:dd:c4:d4:64:
91:98:d5:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:59 2024 by rpki-client on console-ams.rpki-client.org