Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/T9XgmI8YJXfeTY8aTsmU0NIlOFY.roa
File: T9XgmI8YJXfeTY8aTsmU0NIlOFY.roa (raw, json)
Hash identifier: MWnP2RLCLV+cnj1SriVfRo8eQkCANoslC0LDTAlFInE=
Subject key identifier: 4F:D5:E0:98:8F:18:25:77:DE:4D:8F:1A:4E:C9:94:D0:D2:25:38:56
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018EF9B1D90DB0756DFBACFFBC2408E1B807
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/T9XgmI8YJXfeTY8aTsmU0NIlOFY.roa
Signing time: Sat 20 Apr 2024 04:09:25 +0000
ROA not before: Sat 20 Apr 2024 04:09:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:f9:b1:d9:0d:b0:75:6d:fb:ac:ff:bc:24:08:e1:b8:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: Apr 20 04:09:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4fd5e0988f182577de4d8f1a4ec994d0d2253856
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:b5:05:82:b9:73:3b:07:5c:8d:ab:76:95:55:
0c:9e:4c:43:3f:98:46:37:5f:16:25:15:4f:2b:85:
71:a1:29:01:24:26:81:24:7d:a3:bd:f3:c5:e6:c2:
0e:a9:d4:7b:93:3c:59:77:be:2b:90:35:12:5a:4a:
7a:f5:61:e9:58:fd:6e:97:e5:86:79:ee:eb:07:ec:
93:2a:7e:b1:bb:63:80:e6:90:4c:9b:18:bd:c5:61:
01:a5:2f:52:97:fb:d4:7c:ce:be:10:ff:58:b9:a0:
83:67:04:ff:1a:fe:39:8d:f5:ad:f4:6a:a6:c7:a3:
91:5d:98:36:6e:01:8f:d0:80:ba:d8:6f:f9:9d:5f:
9b:22:f3:55:bf:c2:a0:1b:e1:04:f8:93:20:d7:fc:
6e:e2:8d:bb:fd:ab:2b:46:2d:1f:30:89:68:eb:15:
45:6b:73:74:21:66:4b:39:3a:b6:c3:cf:0f:92:22:
71:aa:97:66:f6:f6:c3:57:46:04:0e:af:3b:1c:60:
e9:27:c5:f6:ae:3b:8c:89:c2:c4:75:a8:fe:6c:80:
a2:28:ab:ab:39:cd:60:aa:64:e0:dc:7e:cc:39:b3:
34:06:5f:aa:ab:5c:50:f5:ee:82:e6:c6:02:75:46:
a9:58:b8:f8:b0:b2:6f:ac:00:00:1c:5a:4b:5b:60:
80:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:D5:E0:98:8F:18:25:77:DE:4D:8F:1A:4E:C9:94:D0:D2:25:38:56
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/T9XgmI8YJXfeTY8aTsmU0NIlOFY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
Signature Algorithm: sha256WithRSAEncryption
60:00:99:d2:c6:7c:2a:72:48:eb:65:17:51:9c:5f:31:37:7a:
08:b5:48:5e:4d:f3:de:5d:d5:93:a7:04:68:f8:29:09:07:09:
a1:74:48:8c:76:1f:72:a1:29:0f:d0:59:86:58:e4:2a:2c:39:
6b:3f:fb:5a:58:b3:d8:f0:6e:63:4b:df:47:2c:ac:57:4d:1e:
62:24:48:24:48:d5:fb:40:a8:73:71:71:e1:66:9a:e5:dd:e4:
d2:97:d9:e8:15:32:8f:2b:ef:1a:93:0b:ff:57:fa:df:a1:95:
6b:9e:56:1c:10:c7:4d:8e:65:00:8c:0d:78:0c:58:5e:71:11:
87:f3:6f:82:f5:7c:03:24:d4:97:06:04:07:04:8e:cd:1d:73:
42:71:44:1e:95:ae:83:46:cd:40:15:24:7e:95:7b:1a:8b:39:
45:20:f0:3a:3c:3b:cd:f0:51:31:92:35:3b:0d:aa:d1:c3:21:
2b:bb:2b:2e:34:a1:18:dd:c5:31:f5:ed:9d:c5:a7:61:9f:34:
87:7b:35:0c:7d:b0:14:39:9f:11:65:41:b5:f6:28:40:73:b4:
bc:9c:92:ea:d9:9a:99:12:c4:87:53:4e:71:08:d0:75:3b:66:
74:82:b5:2e:27:0e:1c:2a:06:60:c6:eb:83:a7:a7:88:c1:4e:
bf:dd:0c:a9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY75sdkNsHVt+6z/vCQI4bgHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyYmVjNDFiZDJmM2IxNzlkZTA5NTE0MzA2NTMwYmQzZmJh
YzcwN2IwHhcNMjQwNDIwMDQwOTI1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZmQ1ZTA5ODhmMTgyNTc3ZGU0ZDhmMWE0ZWM5OTRkMGQyMjUzODU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwLUFgrlzOwdcjat2lVUMnkxDP5hG
N18WJRVPK4VxoSkBJCaBJH2jvfPF5sIOqdR7kzxZd74rkDUSWkp69WHpWP1ul+WG
ee7rB+yTKn6xu2OA5pBMmxi9xWEBpS9Sl/vUfM6+EP9YuaCDZwT/Gv45jfWt9Gqm
x6ORXZg2bgGP0IC62G/5nV+bIvNVv8KgG+EE+JMg1/xu4o27/asrRi0fMIlo6xVF
a3N0IWZLOTq2w88PkiJxqpdm9vbDV0YEDq87HGDpJ8X2rjuMicLEdaj+bICiKKur
Oc1gqmTg3H7MObM0Bl+qq1xQ9e6C5sYCdUapWLj4sLJvrAAAHFpLW2CArwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE/V4JiPGCV33k2PGk7JlNDSJThWMB8GA1UdIwQY
MBaAFLK+xBvS87F53glRQwZTC9P7rHB7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYt
ZDEyZjAzOWRiMmM5LzEvVDlYZ21JOFlKWGZlVFk4YVRzbVUwTklsT0ZZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYtZDEyZjAzOWRiMmM5
LzEvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDwQAYMA0G
CSqGSIb3DQEBCwUAA4IBAQBgAJnSxnwqckjrZRdRnF8xN3oItUheTfPeXdWTpwRo
+CkJBwmhdEiMdh9yoSkP0FmGWOQqLDlrP/taWLPY8G5jS99HLKxXTR5iJEgkSNX7
QKhzcXHhZprl3eTSl9noFTKPK+8akwv/V/rfoZVrnlYcEMdNjmUAjA14DFhecRGH
82+C9XwDJNSXBgQHBI7NHXNCcUQela6DRs1AFSR+lXsaizlFIPA6PDvN8FExkjU7
DarRwyEruysuNKEY3cUx9e2dxadhnzSHezUMfbAUOZ8RZUG19ihAc7S8nJLq2ZqZ
EsSHU05xCNB1O2Z0grUuJw4cKgZgxuuDp6eIwU6/3Qyp
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:07 2024 by rpki-client on console-fra.rpki-client.org