Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/f_D7yBy3l_BrqdmqC61XY_IOU48.roa
File: f_D7yBy3l_BrqdmqC61XY_IOU48.roa (raw, json)
Hash identifier: kGUfd52mPAZl3PA7EQ/4X8Gj4GDWoDK2Wp4/8m5rHn0=
Subject key identifier: 7F:F0:FB:C8:1C:B7:97:F0:6B:A9:D9:AA:0B:AD:57:63:F2:0E:53:8F
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F8264A551C4330B9EB16E111FC59ACA5C
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/f_D7yBy3l_BrqdmqC61XY_IOU48.roa
Signing time: Thu 16 May 2024 17:13:05 +0000
ROA not before: Thu 16 May 2024 17:13:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:82:64:a5:51:c4:33:0b:9e:b1:6e:11:1f:c5:9a:ca:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 16 17:13:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7ff0fbc81cb797f06ba9d9aa0bad5763f20e538f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:22:fd:24:57:1e:34:87:bd:60:58:f4:e7:e2:
6f:d1:d8:aa:31:f7:e1:bb:ee:0f:47:a4:83:85:c1:
4d:79:b9:f1:40:db:b9:16:d5:5d:58:73:06:88:ad:
92:0b:95:4c:9f:e0:9a:cb:3b:92:9f:e7:b4:5d:3f:
7c:45:a4:51:51:d2:a0:e3:21:3d:50:ac:ea:83:df:
de:ea:9d:8b:e0:6a:7c:14:2c:a0:cd:d3:36:9e:84:
8f:7e:d5:42:56:9a:f2:b2:2d:9e:b5:8c:e7:eb:4b:
09:70:d8:6f:1d:7b:9c:de:75:3a:1d:68:31:1f:35:
e6:fd:45:05:f9:8b:5d:02:9b:90:de:1e:bd:5f:c3:
c3:59:8e:ef:0f:ef:b2:80:76:8b:f6:5a:0d:14:20:
3f:67:23:52:b9:e0:b9:7f:15:4c:a1:04:4c:69:a2:
2b:95:d0:e1:61:90:4c:82:31:ac:bb:a4:44:23:90:
f0:18:33:9c:1e:71:85:5c:7d:7c:b7:7e:fc:cc:e1:
d4:77:87:8f:08:3a:34:3b:e9:00:06:ad:a2:fa:a6:
49:a5:f6:e4:d7:fe:e3:76:11:a0:10:a0:d0:09:7b:
10:a0:e9:3e:97:25:11:42:0f:66:47:d5:a5:36:28:
d6:a6:f6:54:a9:b6:db:68:5c:2d:ed:78:db:c6:07:
17:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:F0:FB:C8:1C:B7:97:F0:6B:A9:D9:AA:0B:AD:57:63:F2:0E:53:8F
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/f_D7yBy3l_BrqdmqC61XY_IOU48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
5f:1d:7b:35:bf:c6:1d:25:81:5e:d7:6e:83:c5:76:25:56:1e:
3e:77:f0:a8:02:e0:80:e2:b0:43:85:08:d8:00:5a:58:4d:8f:
b3:0f:31:66:18:71:2f:7a:b9:a9:79:28:b1:29:fd:27:c8:35:
74:00:d9:38:6d:d0:15:82:de:4f:45:bf:cb:e1:9e:26:87:c4:
98:5f:5c:5e:a8:a3:0d:d0:23:7c:ed:75:32:b4:1e:a4:87:55:
d8:62:53:d5:a6:82:d3:37:dd:d8:38:af:0a:dc:64:b9:46:09:
c7:bc:fc:7f:03:14:08:7b:01:39:b6:d5:85:0d:f2:17:8e:12:
31:17:37:82:7b:75:3c:a5:89:0a:81:f3:e7:97:94:ed:ea:9f:
d3:b3:b6:73:2b:a5:97:0e:34:26:38:63:2c:9d:f3:0a:0b:52:
bd:d9:49:5d:c4:96:5c:36:c8:92:46:93:ae:43:fa:64:05:b1:
6d:ca:6b:c8:8c:78:41:59:9b:1e:8c:8e:fc:6e:d2:91:cd:6b:
7e:c0:51:24:52:e8:ef:64:4c:f5:6d:4d:97:a9:5a:f8:86:3a:
5d:2a:31:d7:d9:69:8b:91:1e:19:30:02:44:db:5b:06:5f:f0:
af:de:d5:b3:51:c1:4d:98:7f:d5:f2:64:3e:9f:f8:ad:df:f8:
82:99:38:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:07 2024 by rpki-client on console-fra.rpki-client.org