Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/PJOP1YrR2IEM2UZK95KWIA4HtQo.roa
File: PJOP1YrR2IEM2UZK95KWIA4HtQo.roa (raw, json)
Hash identifier: F/Tbb1r1CncRYhF/rvi8VZSNaxQd6z2bpWh7FOUpubU=
Subject key identifier: 3C:93:8F:D5:8A:D1:D8:81:0C:D9:46:4A:F7:92:96:20:0E:07:B5:0A
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F712D2B3608E83E95E3A6E9A889CA9A24
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/PJOP1YrR2IEM2UZK95KWIA4HtQo.roa
Signing time: Mon 13 May 2024 08:58:56 +0000
ROA not before: Mon 13 May 2024 08:58:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:71:2d:2b:36:08:e8:3e:95:e3:a6:e9:a8:89:ca:9a:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 13 08:58:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3c938fd58ad1d8810cd9464af79296200e07b50a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:62:35:d3:0b:0f:4a:09:0c:93:e3:6f:2b:42:
a6:42:89:2b:f3:b5:4f:c7:64:53:1a:91:28:bf:4b:
ba:a4:84:ce:7e:9c:5d:55:68:e5:05:93:a3:6b:4f:
94:22:c1:33:9c:5c:83:d2:aa:00:be:fd:70:36:12:
fa:e4:e3:1e:34:23:bc:fc:0d:bc:80:b2:26:76:45:
95:14:8f:f5:2c:2d:70:f2:2f:6b:1e:44:53:2b:20:
99:02:f6:0b:89:96:1e:ce:ad:c0:b6:96:9a:d6:93:
fb:00:c0:e1:eb:c9:41:12:a0:ee:fa:14:d9:36:99:
7b:5f:b9:cc:c9:8f:7d:3b:08:2c:99:7b:40:41:88:
3f:0c:52:b3:69:ff:f3:02:8b:01:4b:17:bb:b9:2b:
92:89:88:16:d1:b7:ff:bb:0a:57:08:dd:6e:65:ed:
71:22:c0:1d:f9:a9:13:c9:b4:a8:00:35:3f:a3:45:
4e:35:4f:7a:c0:02:d8:7e:99:4a:bd:3e:12:b6:c4:
ec:cb:8a:3e:54:c8:67:da:2c:52:b8:9f:2a:23:c3:
95:39:ad:14:8d:4a:9c:66:c8:d4:2a:4b:a5:e6:d2:
28:4f:64:56:1d:e0:6e:5d:0d:ab:6d:b4:db:ef:98:
ba:29:43:db:21:7b:4f:cf:79:46:dc:be:62:5e:7d:
9d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:93:8F:D5:8A:D1:D8:81:0C:D9:46:4A:F7:92:96:20:0E:07:B5:0A
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/PJOP1YrR2IEM2UZK95KWIA4HtQo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
59:e0:b8:10:60:d4:dc:7f:54:9c:a4:c2:04:ce:8c:1e:a1:80:
da:bb:5e:03:7f:18:dd:12:13:b3:d8:1c:24:44:f5:2e:4c:1e:
46:c8:7e:cf:d2:55:8d:4e:89:33:0a:92:b2:92:51:ba:11:cf:
ef:78:ca:7b:54:91:5b:7f:f1:b9:c8:8b:03:a4:43:f7:13:51:
07:15:23:34:ad:76:65:06:ef:1b:ea:09:0c:e9:19:8a:54:83:
1d:21:bd:7e:e6:ad:02:a5:b0:83:e4:f3:1f:46:de:fe:20:b2:
e8:ae:97:f6:47:00:6b:dd:5f:43:9c:68:54:0e:19:0f:4f:af:
6e:a6:68:39:b0:2f:6e:ab:03:9c:03:23:9d:7e:73:91:2d:c3:
31:d8:64:86:5c:0d:e1:7b:ef:2c:85:62:68:2b:d8:88:54:f3:
88:f5:0c:f6:c7:42:4d:7c:73:35:04:2e:e9:e3:be:ad:2b:2d:
60:3b:d4:f7:8c:18:94:9b:9c:c6:f5:bc:ef:2f:d9:0a:c3:f9:
d7:22:3a:1d:e0:78:d6:8b:01:b1:e3:44:a3:8a:a8:94:7e:ff:
49:2f:d1:86:50:40:df:dc:9e:a1:d1:99:6d:8f:ef:81:a4:0b:
b0:71:28:2d:bf:48:4f:7a:ad:66:a3:2f:77:bd:47:e7:1a:b1:
60:83:35:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:59 2024 by rpki-client on console-ams.rpki-client.org