Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/IEJF6UIsLHfVZutGYtO7M9WWPzg.roa
File: IEJF6UIsLHfVZutGYtO7M9WWPzg.roa (raw, json)
Hash identifier: lq0PTaANDHIR8K2v5eG8x1T4phqcf/5WGxr5C7OUjKo=
Subject key identifier: 20:42:45:E9:42:2C:2C:77:D5:66:EB:46:62:D3:BB:33:D5:96:3F:38
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F7AE17058C72DB393E899828EDD791EDB
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/IEJF6UIsLHfVZutGYtO7M9WWPzg.roa
Signing time: Wed 15 May 2024 06:12:25 +0000
ROA not before: Wed 15 May 2024 06:12:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:7a:e1:70:58:c7:2d:b3:93:e8:99:82:8e:dd:79:1e:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 15 06:12:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=204245e9422c2c77d566eb4662d3bb33d5963f38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:f8:80:fd:5a:19:0e:0a:33:2a:42:fc:6a:b0:
20:98:a5:19:56:c7:fd:f7:1e:eb:d3:bf:39:ad:e0:
66:ed:65:74:87:49:1f:05:f4:7f:23:53:85:dc:4c:
81:a4:2e:3c:de:b0:a0:14:37:f3:91:1b:3a:e9:33:
ae:06:1a:5a:12:32:5c:3a:6a:11:6f:57:3a:d5:c9:
55:99:bc:f0:f3:67:8b:57:e1:31:a3:b5:2c:3a:eb:
a0:50:25:65:b3:08:1f:22:d7:83:fc:c1:13:ca:e4:
d1:80:e0:c0:3e:b6:c1:fe:7c:df:1e:b4:97:41:0b:
57:ee:be:71:7c:c5:a6:0c:b5:3a:11:50:61:39:8d:
2c:7c:30:60:e4:a3:09:22:d1:c4:f4:0d:05:bc:15:
af:97:a7:2c:79:d7:fb:3d:99:00:ab:76:c5:c2:34:
c1:d7:97:5a:56:c6:b0:5a:61:96:5c:5c:9d:9a:2d:
69:be:98:d6:03:01:f2:2a:ad:d0:c5:4b:9c:dc:50:
a8:3c:c3:4c:08:0c:48:8c:d2:2f:56:4a:a6:bb:18:
a9:9b:04:e7:53:7d:3d:15:05:5a:e9:90:5e:6d:77:
4c:d8:c1:1b:e7:b5:01:5d:ac:2d:4b:58:5f:a2:6b:
9b:95:ab:7e:2f:d3:1f:01:28:f4:d6:51:f4:8b:aa:
8b:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:42:45:E9:42:2C:2C:77:D5:66:EB:46:62:D3:BB:33:D5:96:3F:38
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/IEJF6UIsLHfVZutGYtO7M9WWPzg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
d5:d4:a3:1e:fe:dd:f0:96:70:2a:41:47:01:d7:f2:6d:06:df:
4f:44:f8:02:8b:8b:27:a1:d3:93:78:e3:31:6f:58:03:0e:bd:
32:be:93:02:fb:e2:81:51:9a:34:25:97:bd:b6:f0:44:29:0d:
dc:b7:41:62:de:33:a5:7d:8a:e1:48:d0:51:6a:ab:70:07:b5:
0c:63:5c:44:96:0a:81:ad:3b:99:7b:94:a3:0c:aa:c6:86:36:
c5:f3:b4:f6:cd:c5:4d:f2:bb:16:cb:88:b9:2d:95:e0:1c:4f:
3b:1e:22:3b:ac:02:db:00:08:9e:2a:37:bd:d9:86:79:cc:f7:
d2:b2:36:e5:3f:75:e4:ca:69:98:4b:32:be:79:8b:71:12:67:
37:f8:b7:1e:d9:a5:7d:c7:f1:b0:ca:08:89:96:a5:7f:10:a4:
af:e0:59:70:9b:bb:a2:f1:ec:c5:d3:59:f6:f5:dd:e3:4e:7d:
83:58:8c:1d:04:ce:37:f0:b0:15:82:0b:58:d1:c6:13:c5:41:
59:1f:ea:4e:1a:d5:04:b4:0e:32:50:4f:2c:78:1c:37:e9:03:
c8:43:7d:ce:92:98:61:19:1e:23:a8:38:f6:01:4b:49:5b:1c:
96:53:57:92:ad:c8:1d:cb:b1:df:3c:37:ed:95:a5:be:78:1e:
52:d6:f0:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:07 2024 by rpki-client on console-fra.rpki-client.org