Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/arYL7j-Ue4ae6CNfAOE1_2ALzU0.roa
File: arYL7j-Ue4ae6CNfAOE1_2ALzU0.roa (raw, json)
Hash identifier: sfLdkqNXJqUsp7N1dnV7xWaQH99rJYEpiAKkX90TLi0=
Subject key identifier: 6A:B6:0B:EE:3F:94:7B:86:9E:E8:23:5F:00:E1:35:FF:60:0B:CD:4D
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018EFA58792367873A30561962D361C900DD
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/arYL7j-Ue4ae6CNfAOE1_2ALzU0.roa
Signing time: Sat 20 Apr 2024 07:11:25 +0000
ROA not before: Sat 20 Apr 2024 07:11:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:fa:58:79:23:67:87:3a:30:56:19:62:d3:61:c9:00:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: Apr 20 07:11:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6ab60bee3f947b869ee8235f00e135ff600bcd4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:3f:1d:d3:41:ff:6f:1f:63:79:59:64:fa:3f:
16:8a:f4:1c:f7:ae:65:61:88:e9:a5:39:19:01:46:
b7:94:31:09:85:d9:88:6a:bf:53:ea:51:ea:0e:59:
12:d7:83:ad:f2:50:25:d3:1c:0c:5b:21:94:a0:c5:
67:32:69:2a:16:ed:b9:12:22:ff:cf:3a:03:b7:47:
77:ac:e2:28:6c:29:6e:42:36:c5:fe:8f:97:f6:60:
94:af:7c:fa:fa:74:50:72:6d:6d:32:fb:60:82:74:
4d:ae:0d:46:85:1a:9c:c0:5f:bc:98:50:fc:0d:d1:
44:3b:df:3b:78:f3:e4:b5:56:86:cf:5b:37:f4:40:
92:59:b8:a0:40:d4:71:e0:55:03:c2:4b:50:ae:86:
e1:39:b8:58:2a:ed:b9:f0:c7:a1:bf:f9:a5:d8:d9:
33:ab:f8:a7:eb:16:a8:61:a5:62:0d:6d:9a:ff:6c:
76:17:0f:8e:98:7b:7a:6b:21:aa:e2:8b:32:46:87:
a7:67:c8:62:8b:15:7c:66:b0:7c:68:25:14:b0:d5:
10:c7:fa:7f:0e:99:96:28:13:3c:d7:d5:19:46:92:
f4:50:4e:70:be:98:a8:43:84:a5:c0:3e:a6:ce:56:
d2:39:77:93:fd:a1:0b:18:62:99:43:da:38:b7:74:
04:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:B6:0B:EE:3F:94:7B:86:9E:E8:23:5F:00:E1:35:FF:60:0B:CD:4D
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/arYL7j-Ue4ae6CNfAOE1_2ALzU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
Signature Algorithm: sha256WithRSAEncryption
a1:0b:ce:83:4a:e6:ee:13:75:fc:51:40:ec:8f:1b:a2:78:58:
2a:bd:32:36:3f:d7:49:78:3d:fa:5f:7f:f1:01:10:61:3e:6b:
fd:6d:20:32:68:7d:05:be:4b:03:d7:68:61:8d:07:1b:db:38:
f7:f8:e5:14:99:31:9c:f8:4d:27:37:af:47:b6:85:e7:e9:bc:
87:8a:ee:58:39:c8:e2:53:0e:65:4f:66:1f:43:4b:44:2e:bf:
9c:6e:06:d6:4e:11:f2:7f:6b:be:a8:aa:0c:82:7b:84:d0:4a:
03:e8:ce:5b:0f:ab:08:0f:b5:d7:38:b6:1d:c0:ce:d3:47:b1:
22:8f:21:0b:f5:df:43:25:38:4d:53:8b:88:ac:71:13:3f:29:
2b:94:a0:5c:be:a7:93:3b:7f:ef:0a:22:b7:e6:83:50:1c:94:
a4:25:80:88:f4:12:e6:81:38:a8:3e:e3:15:f5:61:0f:3b:e7:
96:20:27:e5:78:d0:3b:22:09:66:70:a5:db:57:46:3e:0c:10:
b6:79:90:cd:1b:f3:c6:d0:88:9d:38:90:9b:c9:f5:47:7b:16:
98:ce:99:c2:64:06:a5:f6:b4:d3:f6:47:d9:1d:39:d6:c3:8c:
06:ce:99:88:e4:9e:e6:9e:b1:91:c7:66:83:09:53:71:9b:ad:
be:1f:b3:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:59 2024 by rpki-client on console-ams.rpki-client.org