Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/MWV9olGjI8EI5ATEVV4jDVaug64.roa
File: MWV9olGjI8EI5ATEVV4jDVaug64.roa (raw, json)
Hash identifier: kL0omvS2fYZnSitSq0VnmM1X2fixct1PdLOkY6f0NjE=
Subject key identifier: 31:65:7D:A2:51:A3:23:C1:08:E4:04:C4:55:5E:23:0D:56:AE:83:AE
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F0E4DC5804012E7B96418189179AE3FFF
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/MWV9olGjI8EI5ATEVV4jDVaug64.roa
Signing time: Wed 24 Apr 2024 04:12:08 +0000
ROA not before: Wed 24 Apr 2024 04:12:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:18f:543:9e41/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:0e:4d:c5:80:40:12:e7:b9:64:18:18:91:79:ae:3f:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: Apr 24 04:12:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=31657da251a323c108e404c4555e230d56ae83ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1f:b0:85:5e:fa:07:4f:c5:73:11:45:ab:9a:
cf:20:2e:ac:9b:80:c8:cf:75:11:c6:81:b9:d7:0c:
e2:03:8f:28:02:5f:78:20:ba:6d:66:1f:f4:f9:6f:
d7:e6:45:4b:7d:c6:66:68:8b:50:19:fd:9a:51:ca:
27:90:77:69:bb:db:cd:e4:0a:ac:c2:67:97:4f:95:
a3:a8:28:09:25:91:75:94:65:8f:4f:f6:ae:4a:74:
da:92:58:bc:bd:70:c3:49:80:ca:fb:f4:2c:61:7d:
9f:20:ec:e8:34:d4:8d:21:29:c3:b1:16:f5:8d:3b:
f7:4b:b7:87:06:d8:41:79:96:b6:66:49:01:81:47:
dd:9c:78:cd:14:c7:64:36:8e:6c:cb:fd:82:8b:d1:
15:e6:31:c6:dc:87:24:59:fe:f2:dc:54:e1:95:75:
7b:24:33:7d:11:1b:25:02:92:5a:1f:ce:76:d6:dd:
f6:a0:7b:59:b8:8e:da:b7:15:26:0b:ec:03:92:23:
19:6e:40:0d:a1:e1:26:92:ad:02:bc:b1:0b:58:88:
c0:51:43:98:c8:de:8c:38:5e:e8:0a:ed:9f:04:1b:
e9:e9:dc:df:70:07:f1:b1:2a:74:4f:a8:f4:19:b1:
04:9a:9a:7f:19:f9:71:0b:40:e8:74:a1:25:97:4f:
7b:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:65:7D:A2:51:A3:23:C1:08:E4:04:C4:55:5E:23:0D:56:AE:83:AE
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/MWV9olGjI8EI5ATEVV4jDVaug64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64:ffff:0:18f:543:9e41/128
Signature Algorithm: sha256WithRSAEncryption
60:de:33:12:94:ed:54:99:26:cb:61:fb:bd:74:e8:fe:09:bc:
59:f8:df:73:3d:a7:f3:4d:7b:64:1e:bd:eb:60:45:7d:4a:c3:
b3:0b:04:d5:dd:09:dc:a2:2e:4a:58:6d:0b:02:ad:bf:65:76:
a6:fe:40:c8:c1:23:27:f3:3b:59:c1:b1:85:95:dc:45:8d:0b:
9b:8c:23:89:f3:22:f8:9c:16:3c:ea:4e:4a:34:fb:b8:3d:fa:
48:2e:3e:0e:43:63:47:8d:a1:97:46:32:48:82:76:f7:81:b1:
ab:a9:26:b5:ca:be:fd:68:f6:ae:25:f7:1d:be:a0:ae:e8:cb:
0f:60:eb:09:bd:00:48:54:62:1c:32:5d:69:61:2b:00:f3:68:
10:5f:4b:cf:37:73:b3:ff:56:53:21:f3:98:f1:b2:93:a1:9c:
30:05:34:54:4e:5e:fd:fa:8d:3d:57:eb:0f:6c:0c:6a:86:b1:
bf:1f:00:cb:cc:56:2d:6d:03:c3:cf:b6:4d:78:2d:29:7d:b4:
d8:80:03:9f:0c:a0:d3:53:a5:7f:2a:21:ad:e3:d4:03:56:95:
58:50:3a:82:7e:96:39:ec:43:35:42:c6:e1:0b:35:15:e4:cb:
26:0c:bd:d9:de:7e:6c:a2:f8:45:8a:21:56:05:5a:f4:38:ef:
d9:81:91:1f
-----BEGIN CERTIFICATE-----
MIIFGDCCBACgAwIBAgISAY8OTcWAQBLnuWQYGJF5rj//MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyYmVjNDFiZDJmM2IxNzlkZTA5NTE0MzA2NTMwYmQzZmJh
YzcwN2IwHhcNMjQwNDI0MDQxMjA4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMTY1N2RhMjUxYTMyM2MxMDhlNDA0YzQ1NTVlMjMwZDU2YWU4M2FlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsx+whV76B0/FcxFFq5rPIC6sm4DI
z3URxoG51wziA48oAl94ILptZh/0+W/X5kVLfcZmaItQGf2aUconkHdpu9vN5Aqs
wmeXT5WjqCgJJZF1lGWPT/auSnTakli8vXDDSYDK+/QsYX2fIOzoNNSNISnDsRb1
jTv3S7eHBthBeZa2ZkkBgUfdnHjNFMdkNo5sy/2Ci9EV5jHG3IckWf7y3FThlXV7
JDN9ERslApJaH8521t32oHtZuI7atxUmC+wDkiMZbkANoeEmkq0CvLELWIjAUUOY
yN6MOF7oCu2fBBvp6dzfcAfxsSp0T6j0GbEEmpp/GflxC0DodKEll097aQIDAQAB
o4ICJDCCAiAwHQYDVR0OBBYEFDFlfaJRoyPBCOQExFVeIw1WroOuMB8GA1UdIwQY
MBaAFLK+xBvS87F53glRQwZTC9P7rHB7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYt
ZDEyZjAzOWRiMmM5LzEvTVdWOW9sR2pJOEVJNUFURVZWNGpEVmF1ZzY0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYtZDEyZjAzOWRiMmM5
LzEvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAMBAIAATAGAwQDwQAYMBkE
AgACMBMDEQAgAQZ8AGT//wAAAY8FQ55BMA0GCSqGSIb3DQEBCwUAA4IBAQBg3jMS
lO1UmSbLYfu9dOj+CbxZ+N9zPafzTXtkHr3rYEV9SsOzCwTV3Qncoi5KWG0LAq2/
ZXam/kDIwSMn8ztZwbGFldxFjQubjCOJ8yL4nBY86k5KNPu4PfpILj4OQ2NHjaGX
RjJIgnb3gbGrqSa1yr79aPauJfcdvqCu6MsPYOsJvQBIVGIcMl1pYSsA82gQX0vP
N3Oz/1ZTIfOY8bKToZwwBTRUTl79+o09V+sPbAxqhrG/HwDLzFYtbQPDz7ZNeC0p
fbTYgAOfDKDTU6V/KiGt49QDVpVYUDqCfpY57EM1QsbhCzUV5MsmDL3Z3n5sovhF
iiFWBVr0OO/ZgZEf
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:07 2024 by rpki-client on console-fra.rpki-client.org