Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/C47DolZYaoNm5MceVWfJcT5gKto.roa
File: C47DolZYaoNm5MceVWfJcT5gKto.roa (raw, json)
Hash identifier: W3ojKI5jUvmExdk9PsoaMrrm4KjjIVRK1QCWMa9dpi4=
Subject key identifier: 0B:8E:C3:A2:56:58:6A:83:66:E4:C7:1E:55:67:C9:71:3E:60:2A:DA
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F2089671B09E2F97893A615C092A39629
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/C47DolZYaoNm5MceVWfJcT5gKto.roa
Signing time: Sat 27 Apr 2024 17:10:26 +0000
ROA not before: Sat 27 Apr 2024 17:10:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:18f:543:9e41/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:20:89:67:1b:09:e2:f9:78:93:a6:15:c0:92:a3:96:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: Apr 27 17:10:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0b8ec3a256586a8366e4c71e5567c9713e602ada
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e7:fe:e5:9d:97:cd:95:15:95:e2:b2:ae:1d:
40:6e:95:e9:dd:01:60:5e:ce:2d:3b:8c:e3:bc:b6:
f5:be:86:00:a6:2b:7b:d8:3b:17:7d:c0:27:cd:50:
42:13:7f:71:4d:e9:9c:68:bd:46:4e:1d:7b:96:cf:
f7:45:55:3f:b1:0d:15:5f:bc:b5:ed:84:e0:3f:d2:
79:08:bd:83:9f:7c:00:b0:41:fb:d3:f9:34:a3:e1:
3d:95:f7:02:b2:af:bb:bd:91:a6:1c:35:13:4b:fe:
60:49:ee:d2:9c:a9:fe:87:75:63:1c:c0:85:73:b7:
e0:00:f7:89:9a:1e:3d:b9:07:87:99:08:cb:6c:e6:
0b:7a:bc:3d:61:e6:8d:2d:9f:28:93:9a:f9:1e:94:
aa:2e:8d:48:fa:ec:98:35:6d:12:e6:93:f2:ec:dd:
ba:f9:a9:ec:da:7e:c5:e7:c8:09:2b:87:7e:e6:d9:
8d:28:3a:e5:7e:e5:0d:f9:c3:79:c9:ed:be:e6:28:
59:b1:f2:f5:e7:6b:fd:46:46:3f:ff:e6:8c:be:08:
ac:d9:49:3b:4f:c9:31:fe:a5:b2:2f:43:29:4f:0c:
cf:cd:a7:a8:ac:33:07:a0:04:90:82:37:45:6f:d8:
1e:68:0c:a8:69:7b:90:e9:b7:69:d0:1b:24:93:da:
18:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:8E:C3:A2:56:58:6A:83:66:E4:C7:1E:55:67:C9:71:3E:60:2A:DA
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/C47DolZYaoNm5MceVWfJcT5gKto.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64:ffff:0:18f:543:9e41/128
Signature Algorithm: sha256WithRSAEncryption
b3:ef:00:74:91:ee:67:85:62:e0:69:58:d9:93:fd:4e:32:3c:
ab:b6:59:e0:eb:ab:5f:74:93:2c:82:9e:b2:a9:fe:59:89:af:
31:fc:c4:f7:07:0a:b6:aa:b1:12:dc:9e:ef:ac:d7:a3:87:d3:
30:b8:61:34:41:ca:7c:df:a4:d6:2c:76:fb:fc:3a:e8:52:ac:
a4:90:94:0e:1b:a5:54:1a:f2:3a:0f:e5:8f:da:e8:0c:83:ee:
f9:4c:33:5d:42:4a:b5:09:ff:a2:2f:af:c0:40:5a:ef:6b:59:
fc:ff:de:26:36:9b:bd:e0:52:ba:16:b7:3b:f3:77:ea:07:e3:
2f:7f:d6:b4:3d:e8:f8:a0:e7:a7:fe:52:28:65:4a:ef:49:3f:
a8:78:01:23:a4:72:58:1d:61:a4:b6:4f:e5:b1:67:28:78:58:
f6:00:77:06:08:9e:0f:0d:64:e5:60:ea:3b:4f:86:fe:13:98:
43:3a:02:71:a6:30:9b:0c:83:cb:6c:10:84:26:79:07:a2:65:
49:c6:d4:2c:48:ea:cb:ef:a7:1f:c9:9b:88:56:03:90:f9:d6:
85:8e:ad:5b:4d:b7:4a:24:2d:2b:32:fa:5d:81:ae:db:5a:b5:
4d:84:56:15:43:74:56:b6:d1:98:cc:1a:88:2f:b1:59:13:f4:
16:5b:28:e0
-----BEGIN CERTIFICATE-----
MIIFGDCCBACgAwIBAgISAY8giWcbCeL5eJOmFcCSo5YpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyYmVjNDFiZDJmM2IxNzlkZTA5NTE0MzA2NTMwYmQzZmJh
YzcwN2IwHhcNMjQwNDI3MTcxMDI2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYjhlYzNhMjU2NTg2YTgzNjZlNGM3MWU1NTY3Yzk3MTNlNjAyYWRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsOf+5Z2XzZUVleKyrh1AbpXp3QFg
Xs4tO4zjvLb1voYApit72DsXfcAnzVBCE39xTemcaL1GTh17ls/3RVU/sQ0VX7y1
7YTgP9J5CL2Dn3wAsEH70/k0o+E9lfcCsq+7vZGmHDUTS/5gSe7SnKn+h3VjHMCF
c7fgAPeJmh49uQeHmQjLbOYLerw9YeaNLZ8ok5r5HpSqLo1I+uyYNW0S5pPy7N26
+ans2n7F58gJK4d+5tmNKDrlfuUN+cN5ye2+5ihZsfL152v9RkY//+aMvgis2Uk7
T8kx/qWyL0MpTwzPzaeorDMHoASQgjdFb9geaAyoaXuQ6bdp0Bskk9oYiQIDAQAB
o4ICJDCCAiAwHQYDVR0OBBYEFAuOw6JWWGqDZuTHHlVnyXE+YCraMB8GA1UdIwQY
MBaAFLK+xBvS87F53glRQwZTC9P7rHB7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYt
ZDEyZjAzOWRiMmM5LzEvQzQ3RG9sWllhb05tNU1jZVZXZkpjVDVnS3RvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYtZDEyZjAzOWRiMmM5
LzEvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAMBAIAATAGAwQDwQAYMBkE
AgACMBMDEQAgAQZ8AGT//wAAAY8FQ55BMA0GCSqGSIb3DQEBCwUAA4IBAQCz7wB0
ke5nhWLgaVjZk/1OMjyrtlng66tfdJMsgp6yqf5Zia8x/MT3Bwq2qrES3J7vrNej
h9MwuGE0Qcp836TWLHb7/DroUqykkJQOG6VUGvI6D+WP2ugMg+75TDNdQkq1Cf+i
L6/AQFrva1n8/94mNpu94FK6Frc783fqB+Mvf9a0Pej4oOen/lIoZUrvST+oeAEj
pHJYHWGktk/lsWcoeFj2AHcGCJ4PDWTlYOo7T4b+E5hDOgJxpjCbDIPLbBCEJnkH
omVJxtQsSOrL76cfyZuIVgOQ+daFjq1bTbdKJC0rMvpdga7bWrVNhFYVQ3RWttGY
zBqIL7FZE/QWWyjg
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:59 2024 by rpki-client on console-ams.rpki-client.org