Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/UTsLRYCWP_YVSGtdtuZDZqIwRO8.roa
File: UTsLRYCWP_YVSGtdtuZDZqIwRO8.roa (raw, json)
Hash identifier: Snta+F8kuq6VURaL/GjMh+IXyY7LdLOI1xOeEyGUyRc=
Subject key identifier: 51:3B:0B:45:80:96:3F:F6:15:48:6B:5D:B6:E6:43:66:A2:30:44:EF
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F7A03E1ABABAA3B3B2A0FE1104F954BE9
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/UTsLRYCWP_YVSGtdtuZDZqIwRO8.roa
Signing time: Wed 15 May 2024 02:10:25 +0000
ROA not before: Wed 15 May 2024 02:10:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:7a:03:e1:ab:ab:aa:3b:3b:2a:0f:e1:10:4f:95:4b:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 15 02:10:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=513b0b4580963ff615486b5db6e64366a23044ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:00:83:2b:67:5f:38:a3:46:6d:91:df:9b:a9:
b1:84:8b:de:95:d7:12:f8:2a:63:f8:cf:14:fd:be:
2c:32:04:18:3e:d2:17:64:b9:0f:3d:e3:c6:a6:33:
41:4a:5d:e3:86:05:4a:67:50:bc:cc:f3:b0:22:47:
de:8b:03:19:9f:4e:ef:50:66:0e:ce:97:f8:4a:ba:
df:b6:19:73:a9:a1:cc:62:1e:45:3f:b7:b0:38:7a:
3f:c7:04:7f:df:8f:cd:3a:0f:5b:ad:48:aa:34:94:
d6:47:b8:b4:c2:ed:73:39:7f:ad:c3:90:e3:26:a2:
f8:c7:99:47:2b:d3:8e:62:4e:ce:8b:0f:87:f4:33:
f8:95:a9:07:e1:c9:6d:1d:3c:5b:c8:54:a7:53:82:
83:f5:dc:eb:d3:19:86:d3:15:13:b8:c6:a1:12:48:
cf:ee:9d:18:f8:52:73:ea:b2:17:89:3a:aa:e8:cb:
ee:b8:c2:c3:85:c5:6b:98:0e:57:8e:97:33:96:09:
91:76:39:4c:01:de:24:42:45:1d:46:9f:22:d5:82:
ba:db:7d:de:91:bb:03:c1:d6:f9:14:ea:97:8c:43:
05:e4:8a:29:5e:96:10:67:ec:0d:cf:0d:6f:8e:e7:
d7:81:14:7e:86:51:89:3d:50:43:51:75:92:87:16:
75:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:3B:0B:45:80:96:3F:F6:15:48:6B:5D:B6:E6:43:66:A2:30:44:EF
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/UTsLRYCWP_YVSGtdtuZDZqIwRO8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
36:6b:ba:35:71:35:c4:4e:08:18:c3:87:91:72:af:d9:a4:c7:
c6:7a:49:e0:a0:65:e2:3a:04:fe:ae:28:bc:6e:3c:d3:b7:fc:
24:41:26:fe:1b:b6:9b:dd:4f:78:a2:ee:22:6b:d8:be:8f:6c:
ba:eb:2a:b1:f2:e0:db:37:51:81:4a:7e:bb:a6:0d:51:26:61:
5e:55:f0:70:4d:94:90:b1:fc:12:f4:88:72:4a:22:d5:9c:1f:
10:11:82:db:35:59:e6:8b:e4:09:68:3f:02:cf:c8:2f:4e:08:
24:f5:cc:0c:83:e3:73:78:06:d0:fa:31:0c:08:f0:2b:a5:17:
8e:ce:5c:91:dc:34:da:92:16:0f:35:ab:48:a6:53:a2:c5:55:
c3:65:5b:cc:48:7b:44:74:18:02:ad:f6:ef:cc:94:b1:53:c2:
72:e7:22:e9:c7:ad:4e:a0:36:70:07:75:ca:22:7d:d3:6e:e7:
6d:43:d8:4d:eb:1b:05:11:ee:22:ac:22:a2:6b:d2:14:cf:f7:
3b:71:ad:32:6c:09:70:5b:53:cf:a6:95:53:ac:91:ee:3d:75:
87:c7:7a:08:1a:81:35:18:0b:40:5a:bd:4b:52:ec:3c:ce:06:
b1:bc:ae:4e:a6:80:64:d4:d0:2a:09:6e:d3:5a:c7:51:93:1d:
76:45:d8:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:59 2024 by rpki-client on console-ams.rpki-client.org