Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/_Fo-MN_3zm7x6xh9JTfmAGdJaeo.roa
File: _Fo-MN_3zm7x6xh9JTfmAGdJaeo.roa (raw, json)
Hash identifier: qi/qNAr5bAHMubuzUziekD3cO0/+6nHixOEDEXQWCzM=
Subject key identifier: FC:5A:3E:30:DF:F7:CE:6E:F1:EB:18:7D:25:37:E6:00:67:49:69:EA
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F8CE675AA742269F3693DDDE542160929
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/_Fo-MN_3zm7x6xh9JTfmAGdJaeo.roa
Signing time: Sat 18 May 2024 18:11:04 +0000
ROA not before: Sat 18 May 2024 18:11:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:8c:e6:75:aa:74:22:69:f3:69:3d:dd:e5:42:16:09:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 18 18:11:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fc5a3e30dff7ce6ef1eb187d2537e600674969ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:64:6b:cd:cc:73:6b:f0:d7:40:94:1a:ca:9f:
43:4e:fa:1b:1d:7d:15:f7:be:0e:98:5e:79:18:93:
a6:4c:82:8f:82:47:63:b1:b7:92:e1:9c:db:f8:fb:
32:3a:4c:e7:b1:60:74:b4:7d:c9:5e:53:ca:e1:fc:
ea:28:a4:4b:c1:5a:d7:e9:41:9d:b7:b6:26:9b:ab:
e1:a1:73:0f:7b:1b:fc:cc:a0:e4:b4:91:02:6d:07:
4c:bc:e9:26:64:3a:9c:50:bc:da:7b:2e:2b:ed:73:
5a:af:f7:c7:03:30:30:d9:89:7c:68:bd:cf:86:8b:
9f:2d:9b:d6:25:5d:82:83:9b:9b:65:7f:53:19:09:
68:b2:65:00:ad:94:bd:8a:4c:9c:65:ec:de:20:c3:
8d:2e:22:7c:ec:e5:8a:da:6a:f7:2f:58:5a:5b:52:
af:96:e0:d1:25:04:9b:cf:46:63:96:ad:4c:e5:65:
5d:8e:bd:43:da:7f:6b:d3:64:67:af:a8:90:90:3e:
2e:10:a2:e9:ef:42:96:78:25:cf:0a:a4:70:85:aa:
88:86:eb:14:6a:8b:4f:db:c1:58:f7:31:95:54:b2:
1e:03:89:14:25:a7:af:12:05:f6:e4:f4:5c:d2:9c:
fd:9a:d9:85:2a:42:15:a2:e1:50:cd:12:53:ce:9b:
68:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:5A:3E:30:DF:F7:CE:6E:F1:EB:18:7D:25:37:E6:00:67:49:69:EA
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/_Fo-MN_3zm7x6xh9JTfmAGdJaeo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
ac:ab:73:c8:e5:c7:6c:03:e5:34:04:7e:8b:59:40:ad:c0:8e:
4a:6b:b5:eb:7a:45:11:67:3e:b5:05:ee:88:eb:b0:83:45:4f:
d2:3b:4f:3e:de:a6:c4:38:da:17:b3:27:44:13:c3:5a:10:a1:
79:0c:31:36:ef:3b:84:89:7c:a7:86:18:16:bc:71:4d:a9:c4:
fb:74:9b:ad:28:4e:cd:1b:0b:89:42:8f:d9:d9:7a:97:6f:33:
ee:3a:97:19:05:4b:2b:13:fb:6f:08:2e:aa:13:5b:38:7f:0a:
9f:eb:0a:5c:2a:c4:84:4f:09:00:d1:02:4d:53:7b:00:40:0f:
25:0b:97:6f:fe:a2:14:08:c8:5d:20:6d:d4:a4:01:e1:4e:16:
23:20:40:23:f6:c7:cb:9c:1b:54:63:75:c5:5b:ad:a1:1d:a7:
d6:d9:85:84:7c:c8:72:8e:9a:66:44:1d:c5:67:23:41:a9:b8:
2c:37:f4:fd:c6:c1:ca:8e:45:27:9e:f1:e1:a7:39:e5:07:3c:
c1:3f:b4:43:17:95:8d:0b:27:c1:f0:ef:e2:ba:34:51:c7:32:
89:91:e9:71:82:12:13:c6:a2:53:d0:37:58:26:f1:6f:0f:74:
55:e8:59:13:62:99:da:03:2c:21:00:40:c7:58:02:4f:27:7e:
f6:18:41:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:07 2024 by rpki-client on console-fra.rpki-client.org