Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/HoxmkYPMJAgD7rbsRq9GcImtSfA.roa
File: HoxmkYPMJAgD7rbsRq9GcImtSfA.roa (raw, json)
Hash identifier: uK6DZET82sz7Tjv2YwWbyiAhctoUGuvBGS17iUo+Ng4=
Subject key identifier: 1E:8C:66:91:83:CC:24:08:03:EE:B6:EC:46:AF:46:70:89:AD:49:F0
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F2467179226F5B0835247227D7289DD5F
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/HoxmkYPMJAgD7rbsRq9GcImtSfA.roa
Signing time: Sun 28 Apr 2024 11:11:27 +0000
ROA not before: Sun 28 Apr 2024 11:11:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:18f:543:9e41/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:24:67:17:92:26:f5:b0:83:52:47:22:7d:72:89:dd:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: Apr 28 11:11:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1e8c669183cc240803eeb6ec46af467089ad49f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:1c:d0:6a:65:e4:78:41:8f:41:8d:9a:a3:33:
b8:da:ca:b1:3e:b6:ec:3b:c6:6f:35:8f:93:56:d3:
42:fa:e5:b1:bc:19:c7:24:5d:75:41:f7:72:a8:3c:
2c:b4:eb:d5:ec:83:0e:75:23:dc:2c:8a:c8:77:f2:
b7:9b:26:ed:42:4a:56:f2:e3:51:d5:a5:8b:51:db:
83:e1:bf:a0:79:3b:bf:39:f4:bc:61:7c:85:7f:be:
85:71:f1:19:a5:42:d2:72:9e:22:40:4f:d9:6d:a7:
b7:fc:01:e2:f9:18:57:a5:5b:0e:f5:98:66:8e:05:
4b:1e:de:52:b1:c2:85:e9:a3:06:4e:d9:1e:cd:1c:
a6:34:16:da:27:d9:67:68:34:13:42:c3:45:5e:eb:
b1:c7:a5:37:e0:9c:5d:c6:ef:37:7f:3b:8b:5d:4f:
87:6b:ff:58:ba:68:5d:d2:2d:f3:98:3b:44:76:29:
61:fd:2b:ff:97:24:ea:09:e3:83:2b:d4:9c:e6:da:
69:1b:59:98:3a:32:71:96:03:d4:5d:5f:1a:6d:ee:
9b:8a:04:58:56:ac:58:ce:7b:2b:8a:1e:a5:b1:0c:
5c:26:60:ea:b5:d5:20:6c:99:1f:dc:78:90:19:94:
72:34:44:92:c3:6e:5a:ee:68:8b:24:4b:1e:54:4e:
9d:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:8C:66:91:83:CC:24:08:03:EE:B6:EC:46:AF:46:70:89:AD:49:F0
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/HoxmkYPMJAgD7rbsRq9GcImtSfA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64:ffff:0:18f:543:9e41/128
Signature Algorithm: sha256WithRSAEncryption
c3:f6:de:6a:61:c8:16:c2:37:ad:0d:47:e9:cd:ec:40:46:78:
5b:29:8b:e8:e1:4b:bd:3e:a7:a4:fb:4b:4d:dc:37:7a:fb:be:
e7:e2:1e:ce:42:43:c8:da:6c:01:b9:f3:62:c1:26:91:3f:3e:
d6:35:23:b8:df:ac:5c:9b:64:80:2d:c4:4c:a5:2d:47:02:29:
d2:ca:85:3e:b6:eb:d4:53:1e:a6:0d:55:8b:7f:62:09:7f:d3:
14:23:42:3d:13:c1:b7:df:4d:6c:d3:5b:e5:62:49:3f:36:84:
9a:ab:00:4e:ba:98:3a:97:03:67:51:c9:43:15:06:72:9b:ea:
d4:88:e5:af:15:99:8b:aa:7e:3d:f7:ab:f0:92:a9:d0:c1:a8:
1e:25:d9:c5:eb:ef:88:8e:b1:42:9e:05:5f:df:dd:31:3b:1b:
46:d3:95:c4:7a:ac:1b:5d:c0:f2:51:88:54:5c:fc:0c:4c:16:
bd:25:91:01:9a:16:cc:4a:e7:ef:da:4e:c8:b6:7c:97:de:c0:
51:7d:b1:78:e7:ea:8c:ba:67:b8:d4:28:da:44:b8:cd:f4:45:
b4:63:24:c3:c4:fb:42:52:ce:bb:b1:d2:18:fd:d3:c6:fd:14:
2a:dd:05:29:a7:eb:21:26:14:af:f9:f9:d7:20:ee:43:22:69:
4f:79:f0:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:59 2024 by rpki-client on console-ams.rpki-client.org