Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/cptvKX86wAUOYUmQdLJSTkn6Jyk.roa
File: cptvKX86wAUOYUmQdLJSTkn6Jyk.roa (raw, json)
Hash identifier: dyrJKYOnrL1oPhbvMnEakZRSmyjKSCUCYXiCZFs7NkM=
Subject key identifier: 72:9B:6F:29:7F:3A:C0:05:0E:61:49:90:74:B2:52:4E:49:FA:27:29
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F11BD972D1351B30CACF22CB6E8384462
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/cptvKX86wAUOYUmQdLJSTkn6Jyk.roa
Signing time: Wed 24 Apr 2024 20:13:08 +0000
ROA not before: Wed 24 Apr 2024 20:13:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:18f:543:9e41/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:11:bd:97:2d:13:51:b3:0c:ac:f2:2c:b6:e8:38:44:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: Apr 24 20:13:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=729b6f297f3ac0050e61499074b2524e49fa2729
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:8a:74:b3:ad:6b:f2:df:7f:85:1e:41:3d:0c:
85:ca:1d:77:5b:ab:4c:b5:5f:a7:82:06:4a:23:96:
84:15:c6:2e:3a:ea:3c:84:ac:f3:67:2d:de:42:c7:
b4:23:23:47:b1:44:6f:39:3f:e1:e0:1a:c3:c0:4a:
23:e6:fa:a0:f0:ea:63:b4:0e:b6:82:b9:1a:c6:c8:
71:4c:9b:1c:86:f1:f7:b9:b0:4c:b3:0f:6c:13:46:
4c:30:bb:f5:ea:77:bc:c7:c2:0c:b6:a7:ca:80:c8:
39:13:5b:80:1f:11:92:de:3f:23:c4:1d:37:cd:e1:
b5:3f:8d:dd:c8:de:7d:b0:fc:70:2a:7a:a8:82:76:
c6:f7:f5:9b:b8:a2:65:7a:f1:5b:6b:8f:05:a3:e5:
56:64:71:e0:09:bc:a7:75:ec:f8:71:29:46:6e:8e:
2f:d0:42:5f:1f:02:3e:da:9e:0c:dd:a0:ce:13:93:
82:a2:f7:f3:19:96:4c:c1:a2:bc:d9:84:46:19:38:
0a:9c:86:11:69:74:15:9b:8c:14:67:f1:e0:e0:34:
a9:07:95:4a:52:04:41:90:0b:cb:da:09:4a:75:d8:
51:d2:79:b3:cb:e5:65:62:0e:7f:e7:a5:a5:0d:22:
b1:82:43:db:c8:79:65:d3:ac:6d:12:ae:a9:ac:b6:
db:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:9B:6F:29:7F:3A:C0:05:0E:61:49:90:74:B2:52:4E:49:FA:27:29
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/cptvKX86wAUOYUmQdLJSTkn6Jyk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64:ffff:0:18f:543:9e41/128
Signature Algorithm: sha256WithRSAEncryption
b0:c8:d6:55:15:da:ab:58:f9:1e:32:7e:06:58:e7:35:fc:45:
81:c6:fe:d9:ef:72:a8:78:9f:ef:1b:60:b1:27:02:76:4c:d7:
c4:8b:7b:36:4c:d8:c7:4d:bd:23:42:dc:fd:82:1f:c2:12:73:
ba:fa:e8:69:f9:3c:65:c9:8c:86:7c:ed:98:7a:4a:ac:e3:00:
ad:c9:43:fc:d8:65:b5:c0:22:a6:31:2f:3e:4d:d2:87:3c:8b:
94:39:ea:47:4f:94:72:6e:fe:db:99:5b:f4:9b:24:14:a3:91:
87:b6:24:ec:c4:f7:4e:8a:d3:e7:d6:37:2c:7b:8b:cc:84:b0:
ba:00:d5:85:a6:05:95:28:39:11:a3:e4:19:9d:0c:49:85:bb:
38:52:90:af:de:9c:7d:9f:b5:f7:b9:0f:3a:ea:7c:92:14:7f:
32:b1:bf:07:c2:bc:a1:cc:5f:02:2d:92:d8:6b:8d:f8:e8:67:
d6:ee:10:d4:56:4b:c1:5f:5d:55:e7:ba:83:20:de:ce:dc:c8:
da:0d:23:3d:11:0d:0f:1c:85:65:b2:5f:77:9e:ad:f4:db:be:
8b:34:c2:c1:96:71:21:17:c7:de:9d:6e:50:a0:81:b9:ef:e4:
78:a8:37:54:64:c8:81:2d:1c:40:f1:5c:85:40:c7:21:3e:4a:
49:c7:39:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:59 2024 by rpki-client on console-ams.rpki-client.org