Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/X8G4_pqoWUhW6xn25LfWEB50a-4.roa
File: X8G4_pqoWUhW6xn25LfWEB50a-4.roa (raw, json)
Hash identifier: +vbPSjnzkDOjb8lBuyitFz7VxB7nzUzzwuYVtKxfbSM=
Subject key identifier: 5F:C1:B8:FE:9A:A8:59:48:56:EB:19:F6:E4:B7:D6:10:1E:74:6B:EE
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F90FCE77B654A1403EA315DF4581BE350
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/X8G4_pqoWUhW6xn25LfWEB50a-4.roa
Signing time: Sun 19 May 2024 13:14:04 +0000
ROA not before: Sun 19 May 2024 13:14:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:90:fc:e7:7b:65:4a:14:03:ea:31:5d:f4:58:1b:e3:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 19 13:14:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5fc1b8fe9aa8594856eb19f6e4b7d6101e746bee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:82:53:ce:0d:25:09:5f:4c:f2:ec:c9:d3:85:
d8:d6:fc:38:b6:fe:b2:d4:7f:df:cd:73:33:10:42:
a3:0c:24:66:3c:e2:1b:e3:d4:6f:1e:fa:36:df:2c:
ef:af:1e:57:7f:87:12:9e:8d:c7:5a:b8:b0:a6:de:
2a:b5:7f:cf:f4:a5:4c:43:f1:2f:c5:90:c5:34:0e:
6a:d2:31:4d:fc:e9:2e:3e:88:0d:38:a8:23:17:fe:
3b:ca:4b:11:a4:f4:69:c8:bc:02:3c:38:3a:73:7e:
48:c3:4a:dc:31:76:d0:1a:ec:78:e1:97:c2:ee:0e:
3c:b4:de:fb:94:64:21:df:d5:ad:6d:65:49:8f:ff:
0b:d6:9a:33:34:78:ea:08:7d:da:dc:99:1e:44:15:
46:9a:c6:52:6b:46:b7:e8:5b:13:e4:44:f9:69:03:
46:75:72:93:28:c5:d8:ce:18:42:37:42:d6:63:58:
fd:54:b0:90:97:21:f2:2e:fc:7d:2f:c3:b7:9f:5f:
71:0a:0d:5c:62:c4:7f:1b:41:ac:ff:64:02:03:de:
0a:a9:71:9e:2c:65:c6:00:db:43:60:d4:04:df:b2:
5c:a4:01:db:75:33:51:c2:d8:87:9a:af:fc:b4:9c:
26:87:90:c8:f6:58:cc:fb:bc:31:96:0a:6d:02:32:
ba:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:C1:B8:FE:9A:A8:59:48:56:EB:19:F6:E4:B7:D6:10:1E:74:6B:EE
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/X8G4_pqoWUhW6xn25LfWEB50a-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
d3:0c:5b:98:cf:5e:f4:2f:c1:1e:2d:45:a0:6f:03:17:ad:82:
49:68:8e:2d:79:7f:86:d1:42:27:8a:17:92:5e:a1:20:91:d9:
af:59:30:03:65:3b:95:15:34:7b:31:5a:31:34:0e:29:5d:62:
b1:ff:3f:eb:d0:f0:ff:db:78:e6:7d:06:ad:5f:62:bd:71:91:
97:38:6d:6a:a1:99:cb:3c:c8:71:8a:fe:c0:81:27:b4:65:59:
aa:38:5d:4c:8e:1e:36:df:37:22:24:94:68:ac:19:ab:f4:70:
1b:ff:ae:13:da:96:07:43:34:87:06:dd:86:58:5f:4c:15:8a:
af:28:7e:a4:c0:bd:de:42:02:b4:ef:3e:2d:d1:23:d1:11:8b:
86:7a:32:e0:13:93:8b:55:1f:e0:82:66:ce:50:47:63:ab:58:
90:c6:7a:30:fc:12:44:f8:9d:d3:58:71:6c:de:c4:28:3a:97:
b1:27:e3:1b:2a:0c:2f:f3:48:fa:5a:92:d8:8d:61:ff:2e:a7:
78:06:fe:4b:1b:1e:38:8b:d0:be:f2:43:5b:97:26:0a:8d:c0:
56:c3:f6:61:05:86:b1:74:d0:5a:ca:d1:f2:8c:5c:cf:95:f8:
b7:1b:73:b6:77:18:65:07:fc:99:c7:75:88:29:8e:f4:94:f1:
28:42:a1:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:59 2024 by rpki-client on console-ams.rpki-client.org