Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/LDX6Quv9lv-xJ_MesZ64jibTK6Y.roa
File: LDX6Quv9lv-xJ_MesZ64jibTK6Y.roa (raw, json)
Hash identifier: 9UZ7qxjhdAQiu9mp1hJMKmmXAA23IE0264KvaeLTJu8=
Subject key identifier: 2C:35:FA:42:EB:FD:96:FF:B1:27:F3:1E:B1:9E:B8:8E:26:D3:2B:A6
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F6D255F2B353D55EE1D93EA86DC673D52
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/LDX6Quv9lv-xJ_MesZ64jibTK6Y.roa
Signing time: Sun 12 May 2024 14:11:56 +0000
ROA not before: Sun 12 May 2024 14:11:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18f:543:9e41/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:6d:25:5f:2b:35:3d:55:ee:1d:93:ea:86:dc:67:3d:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 12 14:11:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2c35fa42ebfd96ffb127f31eb19eb88e26d32ba6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:34:34:3b:48:e0:82:57:2b:4d:e0:33:74:fd:
94:18:f0:e8:f8:66:86:31:34:ac:1d:79:41:5a:90:
c9:c6:13:89:2f:6b:11:5c:65:ea:de:53:3d:3f:73:
85:e9:3e:26:a4:fa:d5:b4:52:3c:07:a1:b4:93:3d:
c0:fd:31:f2:83:e0:e8:98:1c:c2:03:91:95:76:8a:
6f:37:e1:89:49:d0:b3:64:8f:2e:17:7d:52:a9:f8:
67:0e:21:d0:a3:d3:19:82:16:bd:50:72:1a:0a:9c:
20:bc:50:52:b3:ea:65:fb:ab:03:27:1d:1a:37:6d:
23:7d:ca:6c:bb:95:cd:05:4d:6b:16:c6:8c:14:09:
95:bd:0a:99:15:a3:aa:99:da:92:3e:4c:80:d4:0e:
5f:c2:54:4c:d5:0d:fb:e5:7c:fd:0a:c0:0a:31:5d:
f5:10:6e:bb:8d:d2:57:ea:25:d0:c5:7f:cf:65:bc:
fb:c6:e4:a2:ca:17:b7:a2:85:3c:12:06:16:c1:13:
fb:b8:19:3c:27:fe:ea:14:aa:ed:13:76:f7:35:34:
7a:35:f1:33:47:6e:cd:75:86:a8:e3:56:35:cf:4a:
7c:7f:b1:0f:8c:20:9f:2c:11:67:75:00:97:d7:72:
99:d7:39:d1:5e:21:34:97:ce:96:b6:a0:e7:d8:62:
ad:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:35:FA:42:EB:FD:96:FF:B1:27:F3:1E:B1:9E:B8:8E:26:D3:2B:A6
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/LDX6Quv9lv-xJ_MesZ64jibTK6Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
91:4d:19:14:ff:55:d2:eb:6e:74:90:9d:85:c4:4a:4e:75:f6:
e9:f9:11:04:a2:d1:99:c5:06:a2:b8:d2:6d:b2:53:7d:8c:c4:
d4:98:12:b6:a3:81:13:6a:cf:20:a4:48:22:f3:dd:98:ee:80:
52:75:22:07:4c:d7:2c:4b:6a:ea:c1:80:4b:54:49:ba:55:cc:
22:a6:78:96:3f:17:51:33:18:65:8e:ac:c4:31:e7:82:2d:8d:
12:aa:71:d9:6e:b6:5b:3e:03:ef:91:7e:80:12:be:83:ae:82:
d7:5c:78:05:aa:f7:8c:ad:fd:0b:68:2b:74:3d:58:b5:0f:ed:
a3:ee:da:fe:08:41:c0:f1:0d:15:4a:5f:65:7c:3e:0d:51:c8:
75:9b:bc:53:db:fc:7c:ee:d2:e2:c7:2b:60:0b:bc:91:61:1b:
ee:73:e0:30:88:5e:23:cd:dd:8c:04:12:c9:7a:13:e4:f9:c8:
fb:62:46:ca:0a:86:89:9b:db:42:16:09:07:ef:1f:84:d2:6d:
8b:03:46:09:eb:0b:ef:1f:4b:1a:95:75:b1:c0:84:5f:15:43:
c1:f5:73:ee:8e:00:17:70:50:9a:b5:3c:97:f2:d8:d4:82:3d:
be:6b:5d:a5:7e:e6:fc:42:23:a8:77:3f:da:2c:72:fc:e0:a1:
de:0b:56:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:59 2024 by rpki-client on console-ams.rpki-client.org