Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/cT3OlAeFiUuhuVEy2lWY3HJ5gCk.roa
File: cT3OlAeFiUuhuVEy2lWY3HJ5gCk.roa (raw, json)
Hash identifier: RPR+hvJs3dbBQsIioeu/4IRv6RpPv7leXqKJKB7I8bE=
Subject key identifier: 71:3D:CE:94:07:85:89:4B:A1:B9:51:32:DA:55:98:DC:72:79:80:29
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F8783AC9B3F7B3F49C3A101D7C3A165A8
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/cT3OlAeFiUuhuVEy2lWY3HJ5gCk.roa
Signing time: Fri 17 May 2024 17:05:04 +0000
ROA not before: Fri 17 May 2024 17:05:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18f:8782:fb15/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:83:ac:9b:3f:7b:3f:49:c3:a1:01:d7:c3:a1:65:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 17 17:05:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=713dce940785894ba1b95132da5598dc72798029
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a6:52:93:03:b8:b5:44:b1:38:84:f6:ab:cf:
a2:41:58:9f:80:f4:65:9c:c6:c6:4a:62:94:5b:ae:
35:3e:58:a1:dd:0d:51:6b:87:dc:11:db:f5:e3:b3:
40:40:c4:ce:eb:70:d8:06:89:e1:ca:22:b9:d1:f5:
a4:aa:82:a4:98:86:e2:70:e5:87:e2:80:22:ba:25:
17:9d:66:d0:59:1d:22:d3:86:a0:2a:b8:f8:ce:94:
5d:55:d0:a1:f7:06:03:f5:ec:c7:39:09:4b:e9:ea:
d1:21:07:c6:9e:39:3b:a5:ea:a7:2f:9d:23:a8:28:
0e:43:24:6e:39:a2:3c:37:d7:bd:8f:59:23:fb:7a:
3b:9a:31:fd:44:31:2a:38:8a:a4:d4:55:06:3c:1b:
ac:30:cb:2e:2e:0d:15:22:3b:06:cf:bd:9a:c2:d6:
0f:58:c8:28:1c:46:aa:1e:4c:44:a7:35:ea:39:46:
e9:21:48:c8:b3:be:04:04:a0:e5:a4:4e:1e:3a:d1:
38:a1:8b:eb:c7:de:aa:9d:fe:29:33:ef:1c:ad:91:
2b:82:64:c3:60:76:8d:db:0a:49:ed:6a:fe:34:29:
44:23:d2:a8:ec:bd:56:23:dc:6c:5d:aa:32:ac:fa:
12:ba:cf:84:1c:fb:64:8a:b7:62:13:29:4a:b9:94:
b0:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:3D:CE:94:07:85:89:4B:A1:B9:51:32:DA:55:98:DC:72:79:80:29
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/cT3OlAeFiUuhuVEy2lWY3HJ5gCk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
7f:88:91:89:af:62:5c:c2:b2:ea:4b:63:28:88:72:06:2c:8d:
a1:28:c4:8e:27:d0:11:b5:39:d5:d7:95:80:ce:8c:f6:84:d2:
a4:12:bd:70:99:cf:ae:f1:06:e6:e3:11:2d:d3:51:3b:97:a8:
be:bd:81:34:8b:ed:2b:98:fb:45:c9:23:6f:a5:07:e6:ea:98:
c0:6f:8e:3e:82:7a:36:14:31:48:94:1c:94:85:ea:00:bc:75:
82:38:cf:3a:a2:2b:83:47:60:7d:70:05:11:fa:c4:2c:c2:9f:
6a:3e:ad:bc:3d:a3:35:4f:8c:a3:c2:25:f4:60:e9:ae:4e:55:
b8:de:00:d7:b6:6c:84:d2:92:44:13:31:fc:9c:90:5c:1b:ef:
80:fe:d9:0d:6d:1e:27:dc:b2:dd:eb:0a:94:f4:23:48:28:3f:
55:f0:00:55:f3:4c:86:61:87:98:e8:1f:03:24:89:28:42:bf:
8d:3d:7c:77:f9:f1:6c:4b:5e:d9:10:44:f1:c0:c4:8b:5a:8e:
ea:14:91:3d:d2:ac:dc:12:a4:2c:dc:aa:41:35:46:f6:4c:28:
05:d6:f8:b0:78:83:9f:d5:d5:c8:1d:e9:8d:0b:d6:b2:82:58:
4e:2e:e4:e6:5d:9a:bb:75:16:ba:17:95:b4:22:76:de:c6:fa:
4b:e4:eb:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:59 2024 by rpki-client on console-ams.rpki-client.org