Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/BsY-pR7KQysu8dD7CMhPlp80gU0.roa
File: BsY-pR7KQysu8dD7CMhPlp80gU0.roa (raw, json)
Hash identifier: eT3yAEG4rJslJk60K95h27fdSF+K8JeVQmWwDikGcM8=
Subject key identifier: 06:C6:3E:A5:1E:CA:43:2B:2E:F1:D0:FB:08:C8:4F:96:9F:34:81:4D
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F901E6ED8B7D20789FD9FC514BA70BA5D
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/BsY-pR7KQysu8dD7CMhPlp80gU0.roa
Signing time: Sun 19 May 2024 09:11:04 +0000
ROA not before: Sun 19 May 2024 09:11:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:90:1e:6e:d8:b7:d2:07:89:fd:9f:c5:14:ba:70:ba:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 19 09:11:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=06c63ea51eca432b2ef1d0fb08c84f969f34814d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:4a:8a:f1:47:e7:ed:61:0e:ab:5f:48:36:c3:
75:8c:6b:8b:d9:6c:87:f1:de:8a:ef:87:75:54:45:
9d:77:51:fb:d3:9e:10:0b:70:36:e0:87:ff:76:fa:
9e:12:77:54:79:dd:31:e3:af:53:c9:28:29:51:d1:
a6:ee:1d:38:e4:48:27:e9:8d:fc:68:ed:92:af:f7:
9f:90:ed:34:23:f4:99:e4:0c:01:d0:35:2c:0b:4b:
fc:b1:00:9b:b1:05:60:a5:bb:6f:a5:1e:03:e6:8a:
18:8e:6c:9c:1c:b3:bc:a3:e9:ac:a4:b8:8b:35:13:
4b:f2:a9:ab:0a:fb:b9:8e:a6:e3:1b:e8:55:dc:61:
a7:9a:ba:d8:55:2a:8e:17:bb:3b:2f:6b:e0:8a:32:
6b:b8:9d:66:bc:8b:33:27:cb:ec:e6:6f:83:0e:69:
2f:87:46:08:3a:52:96:ff:90:31:34:e7:e7:4c:4c:
53:98:07:f1:91:5d:e8:d9:ea:43:06:c3:be:7e:da:
f7:2b:a9:ab:b2:1b:8e:34:69:fe:73:37:c9:f2:1d:
87:24:22:0e:4c:2c:95:88:da:d0:aa:37:e3:0b:fe:
81:89:ad:86:cd:4b:92:1a:a6:d6:81:ad:2a:b7:32:
3a:43:4b:13:3e:d0:02:b6:5e:c7:b4:6a:6d:88:fa:
f5:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:C6:3E:A5:1E:CA:43:2B:2E:F1:D0:FB:08:C8:4F:96:9F:34:81:4D
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/BsY-pR7KQysu8dD7CMhPlp80gU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
02:3c:f8:5f:df:ad:d4:c3:0a:55:01:f6:a5:5b:0c:ad:5b:6f:
27:c2:26:3b:76:5f:7e:13:68:20:f9:43:e9:d6:27:70:93:f7:
f5:cd:04:f2:2b:82:c5:e9:f2:52:1c:99:96:db:ad:cc:0c:83:
38:34:4c:2d:3c:6a:39:a2:20:8c:01:dd:75:f1:38:c8:ec:47:
29:f9:3e:9f:42:83:3f:79:7d:7b:52:67:86:06:c4:86:f0:12:
ee:f3:63:cb:a4:84:30:a9:40:6d:f5:c8:03:c3:df:42:97:b6:
91:88:fb:fb:4f:ff:71:6c:08:c3:08:7f:57:5e:79:15:cd:ba:
a5:f9:ce:d6:64:85:11:28:e4:d0:24:7d:bf:cb:27:26:e1:1a:
f6:a4:a9:05:fc:63:39:e8:7d:26:9c:5a:55:14:1b:c7:6d:78:
84:32:3c:1c:33:bb:05:aa:95:0f:52:12:d9:3f:fc:b6:ef:12:
75:df:e5:62:f8:56:8e:ee:58:24:4a:96:db:74:57:75:6f:d2:
37:62:5a:1b:49:44:bf:ba:6f:b6:69:96:f2:6e:73:33:cb:65:
be:3c:2f:c4:9f:bc:90:1e:ef:2e:ce:ad:57:66:e8:3f:9e:55:
d7:ed:92:24:d0:1c:3b:47:fb:00:a1:70:26:4f:0a:3f:7f:37:
c9:2e:dc:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:59 2024 by rpki-client on console-ams.rpki-client.org