Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/bkR7iI55czCUdL8En7iH6ZY8dM0.roa
File: bkR7iI55czCUdL8En7iH6ZY8dM0.roa (raw, json)
Hash identifier: sW9hGOlFUiO4Q7ngxa4BvZBSF6oe7g/6+NaEtKvS+kw=
Subject key identifier: 6E:44:7B:88:8E:79:73:30:94:74:BF:04:9F:B8:87:E9:96:3C:74:CD
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F8A84B89970550D1CF00D21E58BBA6D85
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/bkR7iI55czCUdL8En7iH6ZY8dM0.roa
Signing time: Sat 18 May 2024 07:05:04 +0000
ROA not before: Sat 18 May 2024 07:05:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18f:8a83:f47f/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:8a:84:b8:99:70:55:0d:1c:f0:0d:21:e5:8b:ba:6d:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 18 07:05:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6e447b888e7973309474bf049fb887e9963c74cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:43:41:58:9a:f1:98:82:01:94:bf:f6:c6:9e:
3d:5c:e6:7a:c0:10:57:16:75:5b:73:a1:15:83:fb:
94:f4:9e:4c:6a:f3:3c:33:85:7d:03:02:b2:d4:40:
d1:dd:6f:49:68:6a:d9:5d:45:6f:a5:57:c2:11:26:
52:21:80:1b:fe:ec:c6:d4:28:74:60:0f:f6:22:96:
c8:81:69:e7:24:ea:09:ba:08:3d:da:c3:22:cd:2a:
ea:8a:9e:f0:33:53:7b:55:42:23:c7:b6:29:25:58:
a8:fe:35:10:1f:fd:68:54:f6:7a:88:3f:4e:2e:04:
af:c6:44:f3:1f:e0:c5:58:3e:53:08:32:c1:31:00:
ca:09:28:34:c2:1f:28:b7:d1:0e:c3:ef:76:c5:60:
1f:24:bc:f2:e2:ca:64:6b:c7:3c:bb:2e:85:1d:d8:
0b:48:b5:e8:4f:7b:d3:ac:16:68:03:6c:0a:b9:3f:
3e:d3:0c:86:ba:d5:a2:20:7b:0f:ab:3f:f7:e3:af:
92:62:88:47:51:58:95:de:24:17:7f:57:9c:50:1a:
69:9d:f6:df:7a:b9:29:ff:21:51:6d:ec:94:17:97:
77:67:e0:5d:87:28:ca:fc:d3:97:38:ba:ae:e4:d3:
ee:49:58:90:5a:4e:64:85:eb:c9:88:78:12:9a:d3:
fd:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:44:7B:88:8E:79:73:30:94:74:BF:04:9F:B8:87:E9:96:3C:74:CD
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/bkR7iI55czCUdL8En7iH6ZY8dM0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
af:cb:fc:e4:a6:f6:fb:fd:3f:30:1a:c2:16:a8:a4:04:1c:6b:
11:63:63:62:9b:31:c0:9c:1e:a4:61:7f:ef:cb:55:77:04:36:
86:41:41:bb:be:b2:de:f5:57:28:9b:ce:33:03:00:92:07:6d:
a5:c3:85:7d:ec:b2:da:d2:3c:43:65:ad:af:3a:87:f4:cb:10:
77:d9:60:ed:9c:8c:37:55:54:4e:13:96:9c:6e:cc:27:dc:4d:
df:0f:b1:87:71:d8:e9:3d:73:6d:2d:5d:f2:ea:a9:2c:e4:92:
56:18:7a:03:ee:66:3d:59:dc:9a:07:89:76:bf:b6:ac:5a:25:
ab:15:0a:68:98:52:0e:ca:50:e0:87:11:c2:95:1a:2b:a9:32:
92:89:94:1a:e9:23:ba:2c:79:a0:f1:ba:1d:54:10:c9:19:3d:
16:2f:e3:f3:48:4e:5d:49:a5:54:60:a6:45:b0:5f:0b:b9:12:
c1:dc:02:d9:45:af:27:71:5b:3e:c0:31:c6:e0:69:f1:46:38:
b8:9b:ba:8b:40:d6:d0:cd:34:2c:54:18:19:b3:1e:d9:4e:fa:
40:21:8d:91:e3:51:8c:7c:f3:02:97:8d:31:7d:29:21:57:c4:
42:1d:a1:eb:a0:35:1f:61:33:0e:cb:cc:7f:97:05:cb:f1:bd:
cd:8b:3e:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:59 2024 by rpki-client on console-ams.rpki-client.org