Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/VxhXcPIxcTV9cdHkE8SdHD8qcpM.roa
File: VxhXcPIxcTV9cdHkE8SdHD8qcpM.roa (raw, json)
Hash identifier: FPLqHXXMEUK8ctZyckd1cjIz7yA1UlOg5HYQcDF2i9M=
Subject key identifier: 57:18:57:70:F2:31:71:35:7D:71:D1:E4:13:C4:9D:1C:3F:2A:72:93
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F66B4810404029606AC274FCD76C94F26
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/VxhXcPIxcTV9cdHkE8SdHD8qcpM.roa
Signing time: Sat 11 May 2024 08:10:56 +0000
ROA not before: Sat 11 May 2024 08:10:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18f:543:9e41/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:66:b4:81:04:04:02:96:06:ac:27:4f:cd:76:c9:4f:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 11 08:10:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=57185770f23171357d71d1e413c49d1c3f2a7293
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ee:25:fe:ab:14:4d:80:07:35:0a:8f:60:13:
a4:02:8b:31:74:14:6f:fd:7e:86:d6:9f:40:96:6b:
4e:d0:fa:ab:cf:32:0c:f1:ef:06:0f:47:d4:3e:28:
ae:df:07:fe:67:5c:d9:e0:89:07:d6:57:6b:27:65:
f7:eb:f4:6d:15:ef:c8:a8:0c:18:4d:51:49:87:64:
ee:d7:3d:d1:d1:d0:08:55:54:4a:9d:60:29:1d:38:
63:a0:3d:94:e6:88:20:78:9c:0a:53:1b:2e:62:25:
bf:20:28:69:b9:3b:46:7d:4a:99:dd:f1:eb:b0:5a:
2f:cc:31:16:4d:d9:91:14:b7:1c:fa:89:04:ea:71:
63:b2:e6:23:2e:91:fd:5a:be:a9:5f:52:f6:fa:95:
fa:c3:b5:24:e6:8c:a9:b0:12:22:0a:d4:fc:69:4b:
fb:cf:03:4f:6e:1e:dd:37:24:dc:c9:2e:c1:93:44:
ec:86:34:d7:f6:fb:d3:d7:a6:b2:76:ba:bd:1d:88:
ae:5d:94:ce:18:e8:a8:44:71:26:6a:de:ec:58:39:
54:c8:15:e4:0e:4e:a9:3f:7b:aa:71:20:e5:b5:ad:
de:52:c7:c3:36:d7:40:5e:98:2e:18:1d:29:f3:81:
60:17:a0:24:1c:8a:8b:87:94:5d:0a:95:23:c3:73:
6d:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:18:57:70:F2:31:71:35:7D:71:D1:E4:13:C4:9D:1C:3F:2A:72:93
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/VxhXcPIxcTV9cdHkE8SdHD8qcpM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
08:c0:85:62:0c:cd:f4:93:14:6c:0c:a9:70:d6:83:8a:1b:61:
5b:e8:56:9c:02:26:3e:3f:cd:84:b4:dc:63:4a:f6:70:5d:84:
24:48:be:b4:ed:e8:7a:37:4e:23:68:df:34:11:10:c0:75:61:
e7:79:62:5d:98:8b:b1:79:59:8c:f2:f3:a8:7a:34:27:8e:9d:
9e:49:0b:3e:fa:e9:03:23:1a:60:54:68:98:63:f8:de:93:dc:
8b:8c:d3:c8:29:5f:e9:92:5d:af:fd:52:85:3b:60:07:39:0b:
b5:f6:a2:bc:2f:d1:0a:5e:9f:e3:c3:85:0b:7b:f0:0e:f1:77:
3e:e9:9b:9f:45:5c:14:ee:2f:f3:9b:d8:ee:ff:d2:c1:f3:84:
12:8e:00:7f:bf:5b:a3:59:1d:92:af:9a:a5:c2:60:ab:59:0a:
ce:04:50:6e:11:8f:b9:23:9a:91:4d:20:eb:ea:5f:56:f5:43:
72:95:9f:0b:6d:1d:f4:60:03:5d:1f:e8:c9:7c:cc:88:4f:0a:
70:4c:b1:12:7f:4d:79:0f:70:5a:d2:4c:91:d1:2f:a3:3a:5d:
14:97:11:cc:bf:73:5b:16:9f:13:9e:d6:6d:1f:4e:d9:e5:0b:
47:d9:17:f0:e2:8e:48:1e:14:0e:28:9b:2e:b4:da:84:c3:2d:
e7:5a:c4:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:07 2024 by rpki-client on console-fra.rpki-client.org