Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/bjThzMprlYgiVQ5rAMEGXJ6UfrY.roa
File: bjThzMprlYgiVQ5rAMEGXJ6UfrY.roa (raw, json)
Hash identifier: jwEiVx0WXe+GYgjlw6qBLx1mqsRBluvF0II/iCqPkRo=
Subject key identifier: 6E:34:E1:CC:CA:6B:95:88:22:55:0E:6B:00:C1:06:5C:9E:94:7E:B6
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F12CF561491EA22692B4EB46AC8B6CC47
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/bjThzMprlYgiVQ5rAMEGXJ6UfrY.roa
Signing time: Thu 25 Apr 2024 01:12:08 +0000
ROA not before: Thu 25 Apr 2024 01:12:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:18f:543:9e41/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:12:cf:56:14:91:ea:22:69:2b:4e:b4:6a:c8:b6:cc:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: Apr 25 01:12:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6e34e1ccca6b958822550e6b00c1065c9e947eb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:99:45:08:b4:cd:6a:a1:a0:7e:7c:9b:23:21:
08:3d:53:7b:b0:54:12:01:8b:71:75:ba:87:8e:5a:
bb:22:93:af:26:08:8a:31:74:2f:f0:89:eb:90:68:
cb:77:4e:1e:fe:1e:f7:8d:c6:ee:1f:6e:f7:8d:86:
6d:c9:64:41:7a:75:7d:e9:66:96:6f:e6:b0:c1:40:
d2:f5:63:6a:58:3e:38:34:8a:0a:f2:81:50:e2:92:
1d:27:56:3e:cf:ef:df:e3:a5:dc:d5:01:ac:27:18:
01:0e:83:47:8e:71:c6:85:be:bf:19:df:9d:54:43:
b3:9e:13:be:1c:62:95:52:c1:0f:ae:e7:d2:68:bf:
66:76:e2:a1:bb:f8:2e:d3:a4:07:4c:d7:c3:ff:a3:
8d:04:e8:8a:b3:12:4b:36:7f:1c:8c:c0:62:60:12:
10:61:9a:aa:02:08:8c:92:e3:80:66:ef:6c:13:8f:
94:c3:d4:b8:e5:bc:d6:d9:b2:0d:41:d0:e4:29:ac:
6a:cf:79:bc:b2:22:8d:45:2e:3f:a6:a4:23:d8:69:
7f:61:40:4d:e4:ea:00:88:7e:5d:18:50:e5:5b:5f:
0e:ff:d9:6f:ee:96:b8:a2:2f:46:70:cc:47:56:3d:
16:02:9a:62:c8:34:e0:3d:7f:83:2a:e2:26:f2:f1:
9f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:34:E1:CC:CA:6B:95:88:22:55:0E:6B:00:C1:06:5C:9E:94:7E:B6
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/bjThzMprlYgiVQ5rAMEGXJ6UfrY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64:ffff:0:18f:543:9e41/128
Signature Algorithm: sha256WithRSAEncryption
4b:9b:38:77:4f:a1:89:06:b6:98:ab:b4:13:d4:36:9b:c7:17:
6e:dc:38:de:0a:36:98:78:4b:30:33:18:19:52:37:00:c4:51:
78:38:04:59:de:ce:0a:a4:b9:1d:23:d3:64:b5:15:35:0c:b0:
1e:3d:23:91:97:da:02:09:25:1b:83:b5:3c:df:e3:75:61:3b:
6f:39:a8:e7:60:2e:75:59:42:d2:e3:13:a9:94:14:e3:71:20:
ea:a0:b8:b8:63:31:1e:a3:83:1c:a5:36:0a:e7:42:9d:30:75:
9d:9b:79:66:c6:86:ea:49:9f:8f:ba:aa:fc:c3:e6:48:82:6a:
89:58:f3:90:27:8b:75:9a:d5:c6:ed:1b:da:f9:0e:f9:5a:8d:
e8:26:f9:ca:5a:48:c3:fd:ef:b9:22:22:a6:6c:3d:73:c3:fb:
1f:e7:9c:6d:1e:91:2e:8c:26:00:67:ba:43:4c:bb:54:d2:36:
d1:1a:18:f3:d6:fd:9c:89:96:60:27:d8:ca:26:d0:46:bb:6d:
f8:fa:b6:d5:35:1c:cc:66:a2:9f:90:67:87:84:1b:b6:d7:40:
72:28:17:87:23:36:96:18:1a:41:26:7a:24:0b:92:77:8d:ff:
ba:b5:be:32:e4:80:23:e4:f0:03:79:f8:7f:84:5d:bc:af:57:
2f:50:95:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:07 2024 by rpki-client on console-fra.rpki-client.org