Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/KJ6EA5UAtlVFJTzjW1b2KeG7HtY.roa
File: KJ6EA5UAtlVFJTzjW1b2KeG7HtY.roa (raw, json)
Hash identifier: UjF4vomGV1bE28twTyngZ1hGqWLMbJZQf1RfAPU9r0c=
Subject key identifier: 28:9E:84:03:95:00:B6:55:45:25:3C:E3:5B:56:F6:29:E1:BB:1E:D6
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F75155E3FE75DD8B935DF472A205220B2
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/KJ6EA5UAtlVFJTzjW1b2KeG7HtY.roa
Signing time: Tue 14 May 2024 03:11:25 +0000
ROA not before: Tue 14 May 2024 03:11:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:75:15:5e:3f:e7:5d:d8:b9:35:df:47:2a:20:52:20:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 14 03:11:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=289e84039500b65545253ce35b56f629e1bb1ed6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:83:ba:df:03:79:64:0e:ff:35:2e:af:7b:6d:
5d:40:c9:6b:8d:22:80:53:7c:b0:76:99:a3:5d:ba:
bf:58:a4:41:bb:8b:5a:7e:6e:4c:29:cb:b9:b4:20:
ea:42:7b:cf:4e:f5:ef:7a:53:a5:12:40:e9:98:bd:
d7:57:08:ac:5a:d6:f1:78:21:de:4c:e2:ee:e8:77:
24:84:2c:3c:45:ae:8b:fd:0f:8b:f8:0f:76:d3:38:
47:0f:76:d1:8a:dd:ff:00:7b:51:81:c3:8b:99:5c:
41:d3:e4:43:83:b6:6a:30:a1:d1:e1:8b:ac:01:65:
9d:0b:64:85:0e:f6:bb:d7:4f:0c:ad:8a:c8:b1:54:
a9:d8:11:df:a4:fb:6f:1f:d9:ea:65:98:21:8a:9d:
31:c3:1c:ab:ba:c7:80:da:ba:65:25:7e:42:10:0d:
55:d4:01:f8:89:b6:14:41:8e:1d:79:98:04:d2:4b:
99:63:4b:47:87:80:bc:7f:52:d4:d0:da:1a:cd:5b:
b0:31:5b:e1:93:6a:97:29:75:b5:c8:c4:44:4c:e0:
8d:00:5f:64:b5:c9:2e:1a:e4:b3:b0:a9:96:f5:68:
e2:ec:2e:c3:3b:9a:5e:72:75:cc:85:ab:e8:c0:11:
f4:ca:59:a1:1c:f0:71:3f:a7:05:cc:5d:7d:e0:e6:
a0:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:9E:84:03:95:00:B6:55:45:25:3C:E3:5B:56:F6:29:E1:BB:1E:D6
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/KJ6EA5UAtlVFJTzjW1b2KeG7HtY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
64:fa:65:56:05:0c:b2:3f:5d:cd:43:36:a9:2e:44:b4:1e:48:
cc:12:ca:13:04:71:ff:d4:4b:9f:37:73:d9:8a:7f:4c:d7:08:
e5:5f:ac:14:59:61:6f:31:f0:a5:09:58:9a:b1:0c:e4:9f:84:
a4:5a:2b:c7:3a:68:b7:64:84:b3:67:a8:f0:47:84:6a:3b:26:
3f:3c:e5:f2:5a:d7:1a:3d:d4:1e:f2:60:f6:0e:2d:91:a1:38:
61:7c:2d:a4:74:7c:b1:d1:76:68:d0:8b:37:c2:b0:cf:90:78:
3d:3e:26:33:dd:11:7d:4e:75:25:a6:17:7b:77:91:70:e0:0f:
b2:71:4c:16:26:5a:56:ee:fa:a8:12:bd:df:95:07:45:c0:67:
7d:72:52:8b:0a:49:6b:af:20:ae:f8:a1:da:d9:e9:f5:7b:f0:
c7:a2:1a:1a:01:a0:e4:11:95:bb:4b:30:fb:ac:3d:77:54:c2:
c0:82:4e:88:87:b1:56:45:f4:41:96:e3:1f:57:c0:18:69:89:
81:14:e0:0a:08:46:3c:b0:3b:0a:bd:38:c1:ff:e0:f2:5e:1c:
69:49:d0:10:c5:1a:1c:6e:01:14:35:25:94:2c:ce:a5:d1:1a:
2f:b1:89:17:34:95:09:96:35:9d:95:ff:ff:85:73:bd:75:6b:
6f:0a:f3:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:59 2024 by rpki-client on console-ams.rpki-client.org