Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/YTi4If8vXORDs43b7Zmm73S2TiU.roa
File: YTi4If8vXORDs43b7Zmm73S2TiU.roa (raw, json)
Hash identifier: msPqGQfDMOZpEdRQJAE9D3Fkw2bvI4BhkkQRFsTA3g8=
Subject key identifier: 61:38:B8:21:FF:2F:5C:E4:43:B3:8D:DB:ED:99:A6:EF:74:B6:4E:25
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F1450C4B0E769737D070B07C275C701AF
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/YTi4If8vXORDs43b7Zmm73S2TiU.roa
Signing time: Thu 25 Apr 2024 08:13:08 +0000
ROA not before: Thu 25 Apr 2024 08:13:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:18f:543:9e41/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:14:50:c4:b0:e7:69:73:7d:07:0b:07:c2:75:c7:01:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: Apr 25 08:13:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6138b821ff2f5ce443b38ddbed99a6ef74b64e25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:98:fe:7a:f1:ed:b2:e1:e4:6e:c8:d2:60:cc:
24:3f:06:0e:44:7d:4e:5a:db:ba:54:cd:71:fc:23:
c9:15:5f:d6:56:4e:b7:05:fc:fc:ec:94:37:15:f9:
68:cb:5f:41:01:84:96:e9:ef:6d:83:92:dd:c9:ae:
8d:89:a1:8c:d5:2c:6e:56:44:53:88:0f:0a:9c:fc:
d5:f9:c0:7f:1a:43:a5:6c:65:09:81:e8:29:80:95:
17:f0:00:fc:33:03:65:87:dc:1a:bd:94:f3:f7:30:
94:5f:66:9e:a5:46:a0:eb:91:fe:fd:62:05:34:2d:
84:b0:c5:d4:6c:b6:09:d9:85:c8:33:0e:ad:e8:3c:
1f:19:88:c5:ad:d9:da:f0:b4:45:db:e1:ad:8d:d3:
94:0b:f3:42:36:26:7c:a7:82:7d:3b:8c:a2:03:40:
4c:3b:2c:bf:2d:5e:45:7c:75:37:61:0b:eb:f0:ad:
a8:19:01:5b:b1:dc:00:12:a5:b5:23:d3:04:32:1c:
a3:05:58:ce:6f:e2:98:b1:9b:d0:f5:cd:0f:19:3a:
b3:4a:fc:3a:f2:18:dc:eb:94:ed:6b:26:9a:6f:76:
bb:75:35:9c:31:5b:b1:7d:47:c0:ee:39:14:85:2c:
7d:24:49:93:41:a6:41:42:5d:8b:ef:f8:71:ac:db:
39:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:38:B8:21:FF:2F:5C:E4:43:B3:8D:DB:ED:99:A6:EF:74:B6:4E:25
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/YTi4If8vXORDs43b7Zmm73S2TiU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64:ffff:0:18f:543:9e41/128
Signature Algorithm: sha256WithRSAEncryption
95:3d:d0:6b:df:2f:0f:d4:15:98:4d:66:c3:0b:92:95:7f:de:
cb:dc:1e:dd:e8:43:ce:a7:98:49:b3:c9:f8:7a:6e:b3:24:4d:
c3:f2:31:42:4d:cb:44:ba:f8:f5:ef:c2:32:bc:ed:e9:7a:8f:
e9:88:ae:73:57:a2:e8:60:86:18:af:59:62:18:61:13:7d:aa:
b9:5c:e4:f3:60:42:02:c1:2e:bf:4a:db:d7:95:9e:55:a9:ee:
e0:ca:d9:d2:a0:8d:bd:90:3e:e1:4d:ea:66:96:6a:f3:76:6d:
3c:60:07:d5:50:25:3b:27:20:bc:20:02:b8:df:c3:d4:77:19:
c3:f4:b3:c6:af:d9:5e:85:3c:a5:db:50:63:90:4f:b7:b0:b5:
5b:08:f0:6e:0a:93:1a:32:4d:36:8d:b9:1c:97:42:45:38:72:
06:b3:6e:8e:8c:87:80:ed:10:3b:e6:c7:bc:7c:76:16:47:21:
76:00:94:0a:1f:56:83:ab:1b:1e:4f:38:13:3e:e8:40:8b:5f:
5d:e2:4f:58:7d:6a:21:70:d9:13:b3:07:77:ba:3f:c6:bb:0b:
cf:8e:97:d4:a4:61:3a:7b:eb:7a:85:c5:41:dc:24:72:64:e1:
b2:89:f7:84:b9:6a:e1:20:f0:95:3a:98:e9:97:e2:18:89:fa:
39:e9:0f:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:59 2024 by rpki-client on console-ams.rpki-client.org