Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/VQh58symBgpHmjd2swPpcDy76XY.roa
File: VQh58symBgpHmjd2swPpcDy76XY.roa (raw, json)
Hash identifier: 8fYiKTD4VaUYNvo1lDObz1InV+FHf61Hwv2sgrEPOjA=
Subject key identifier: 55:08:79:F2:CC:A6:06:0A:47:9A:37:76:B3:03:E9:70:3C:BB:E9:76
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F7628F191542D0C570567AC117CFD4220
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/VQh58symBgpHmjd2swPpcDy76XY.roa
Signing time: Tue 14 May 2024 08:12:25 +0000
ROA not before: Tue 14 May 2024 08:12:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:76:28:f1:91:54:2d:0c:57:05:67:ac:11:7c:fd:42:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 14 08:12:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=550879f2cca6060a479a3776b303e9703cbbe976
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:76:97:96:56:bf:40:4a:c9:67:75:5c:c3:71:
5b:f1:f1:ea:2c:59:ce:28:67:b8:d9:e6:b7:c2:09:
00:07:a1:54:7f:06:ba:fb:bf:47:34:d1:9e:60:90:
d1:7f:12:48:b5:9a:d5:ff:32:c8:62:b5:ee:da:e3:
3d:b5:28:b1:62:7c:a2:42:aa:bd:07:ba:23:73:b9:
30:6f:48:8b:af:82:2e:93:b0:7b:55:7e:f6:91:52:
bd:a1:df:1b:74:6f:eb:00:9b:3b:19:24:3a:f0:2a:
4d:5a:83:0f:82:56:62:a2:55:a6:34:b2:d1:08:59:
63:9e:51:50:84:bb:1c:c4:ec:c4:34:50:25:42:90:
e7:7d:05:9d:87:79:8a:0c:3c:5e:e5:3d:fc:cb:bc:
1b:20:25:9b:eb:b9:4d:07:0c:9a:2a:94:42:b4:53:
33:b9:e7:66:0b:2e:71:d2:6f:4e:7f:e9:be:57:6f:
85:3b:18:9e:c9:2a:df:21:33:95:f6:cc:55:b9:d7:
8b:20:b1:cb:43:14:a7:a8:b3:34:8d:fa:c6:27:98:
c9:ee:7b:4a:7e:23:24:27:c9:16:60:5b:89:90:63:
f8:fd:aa:5f:09:b7:03:53:da:2d:28:be:da:c9:cc:
2f:37:e3:df:ee:5c:47:b4:e4:d9:8a:d3:6d:8a:21:
0f:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:08:79:F2:CC:A6:06:0A:47:9A:37:76:B3:03:E9:70:3C:BB:E9:76
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/VQh58symBgpHmjd2swPpcDy76XY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
0e:dc:a6:84:fe:c1:39:7a:a8:33:9f:af:6e:44:b2:1c:5d:ba:
8d:88:27:9c:7d:e8:11:b9:49:ed:cf:ba:74:6e:20:f6:4c:73:
2d:d5:d3:0a:69:c4:b0:69:68:13:c2:96:d0:75:23:fc:fe:28:
db:b9:d4:1d:fc:9b:37:2a:e7:ac:37:8f:e8:0c:86:81:4f:db:
ac:9b:54:d3:76:ac:28:a7:bf:b5:47:ef:b2:ee:0f:b0:c6:da:
de:c2:95:27:c2:40:ad:5a:1b:09:ce:3f:a9:17:68:c1:09:4d:
d3:72:4a:b9:c0:e2:40:7b:09:f1:aa:83:1c:f6:6a:33:e3:1c:
c9:09:1d:c2:68:1b:09:1e:24:d9:b1:5a:dc:ff:98:da:ae:7e:
a8:c4:4d:98:2a:cc:e1:e6:44:d2:86:38:cc:bd:82:76:4c:aa:
e3:ae:6c:f6:f0:ad:da:54:f0:ba:f9:4b:92:95:b0:a6:80:f2:
e7:62:df:68:27:49:e2:12:33:f3:2e:5b:43:3f:e4:14:18:08:
27:81:8e:5d:a1:8e:03:00:0c:68:3c:40:46:b3:2b:bc:79:0e:
ca:12:ac:0c:87:9f:73:1b:ed:f3:9d:46:2d:b6:75:76:b3:28:
3f:86:56:77:0f:6f:2b:2f:f0:c3:b5:91:d4:a7:58:01:37:aa:
fc:1f:43:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:59 2024 by rpki-client on console-ams.rpki-client.org