Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/_1J16xbQ8TErpziMeu-pm-aYS3M.roa
File: _1J16xbQ8TErpziMeu-pm-aYS3M.roa (raw, json)
Hash identifier: O+K92d9kZXEpZZtbRDXLdIyPQz7DKHjougdIToNS14Q=
Subject key identifier: FF:52:75:EB:16:D0:F1:31:2B:A7:38:8C:7A:EF:A9:9B:E6:98:4B:73
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F479A2A11C85327D06FA148BC54D4DCFA
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/_1J16xbQ8TErpziMeu-pm-aYS3M.roa
Signing time: Sun 05 May 2024 07:13:56 +0000
ROA not before: Sun 05 May 2024 07:13:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18f:543:9e41/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:47:9a:2a:11:c8:53:27:d0:6f:a1:48:bc:54:d4:dc:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 5 07:13:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ff5275eb16d0f1312ba7388c7aefa99be6984b73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:09:3a:3d:09:73:6a:c7:14:dc:eb:0c:9b:cd:
28:af:d2:76:45:28:6b:a0:aa:fb:9f:58:2c:cc:51:
49:eb:26:a4:af:86:bb:93:47:4c:b6:bf:21:83:f4:
7c:da:d7:a2:f4:3d:c4:0f:70:bd:b9:b9:1f:8d:00:
c2:57:13:0d:9e:12:1d:e9:05:d2:66:6f:b3:ca:36:
36:63:1e:0d:ba:b4:64:1d:20:2f:c4:f5:49:c6:38:
3b:46:dc:d2:52:ae:e2:74:ea:42:72:68:a1:70:8f:
bf:de:3c:62:97:ae:5a:c4:bf:71:28:cb:a6:73:18:
3d:71:c9:db:ce:20:35:f1:3c:dd:d2:21:35:e1:a6:
7e:5d:70:e6:bd:1f:79:89:2f:2d:dd:f9:73:07:23:
1c:f9:af:8a:b5:b5:c7:18:5f:c4:45:ac:7a:3f:a7:
67:d0:7b:5e:94:a3:a4:60:31:56:3a:4b:c6:55:e8:
bb:fc:4e:79:47:95:80:a1:dc:99:62:ce:c5:a6:0b:
0a:29:06:90:15:87:85:d9:38:6a:bf:fc:4b:56:68:
45:ae:b9:3f:b3:34:6e:f8:6d:45:4d:89:6d:7e:a1:
95:57:fe:57:34:e0:36:d9:93:87:83:dd:a4:a7:ec:
73:6c:34:a7:2d:e5:d8:27:1e:ff:ab:66:31:f2:26:
be:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:52:75:EB:16:D0:F1:31:2B:A7:38:8C:7A:EF:A9:9B:E6:98:4B:73
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/_1J16xbQ8TErpziMeu-pm-aYS3M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
52:27:74:59:6b:db:db:ef:d3:cd:6a:47:5b:d1:28:d3:37:97:
58:db:1c:0a:66:06:78:4e:61:61:c4:f5:b5:80:05:ab:08:d0:
fb:1c:6a:6f:dc:68:54:3a:3e:3f:90:f9:ea:36:e3:68:98:d2:
ba:4f:9a:8d:b5:06:63:80:fc:3a:f7:4f:4a:c6:7f:a7:7f:4b:
93:60:78:bf:a8:34:8f:c2:94:7b:ca:f4:e0:93:0d:90:e5:63:
96:5d:a7:fa:ab:db:1c:ea:a7:62:20:82:94:84:e4:05:49:2d:
4a:c7:05:b7:82:67:3c:55:4e:d6:17:10:dd:9e:84:6a:82:71:
20:9d:25:f1:7b:5a:8c:97:b5:11:64:8c:48:10:e0:ee:c8:b4:
cb:a1:9d:c3:a5:db:dd:89:8f:9a:0f:5c:8a:ef:3c:e5:6c:71:
df:44:38:c9:7f:35:60:1d:22:22:6a:75:b7:a1:ad:85:28:cf:
38:eb:2b:aa:90:ff:44:36:ff:c7:88:b7:48:fc:eb:2c:63:18:
80:da:d0:fd:7c:fd:8e:ff:64:b8:38:bf:4e:43:16:16:7e:41:
a2:a7:9b:2e:43:cb:eb:af:06:68:01:fc:4b:e6:de:26:43:f4:
68:fc:68:5e:7b:d2:c8:09:c9:97:15:d4:73:f3:d1:34:aa:06:
cc:70:e0:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:59 2024 by rpki-client on console-ams.rpki-client.org