Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/gg1vU1aUDNxpVeqsPgAOQ29etQc.roa
File: gg1vU1aUDNxpVeqsPgAOQ29etQc.roa (raw, json)
Hash identifier: RbYKk8biN2brQ0+/R7kXC3k6OYbPZF1RLVYUBp9E/gU=
Subject key identifier: 82:0D:6F:53:56:94:0C:DC:69:55:EA:AC:3E:00:0E:43:6F:5E:B5:07
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F16E22F2007D932473E0DF780338DD852
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/gg1vU1aUDNxpVeqsPgAOQ29etQc.roa
Signing time: Thu 25 Apr 2024 20:11:12 +0000
ROA not before: Thu 25 Apr 2024 20:11:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:18f:543:9e41/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:16:e2:2f:20:07:d9:32:47:3e:0d:f7:80:33:8d:d8:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: Apr 25 20:11:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=820d6f5356940cdc6955eaac3e000e436f5eb507
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:af:77:ef:d1:29:ed:88:3d:12:d3:d6:82:1b:
d2:b4:ec:21:5f:71:c0:02:9c:c7:9b:fc:fb:ed:62:
01:e0:3d:19:d2:2d:f2:9d:9f:1b:a6:b9:82:d3:af:
e4:10:78:ab:47:c2:df:b1:78:09:e6:4f:aa:10:bc:
41:d9:fb:25:82:ee:02:63:78:71:48:e1:3c:a5:13:
8b:78:5d:0e:a7:0c:3b:00:5d:16:12:f4:ed:fa:e7:
81:de:c6:9a:e6:45:75:3d:c3:58:9d:3b:19:ca:cf:
f8:7d:39:a9:4f:c6:32:dd:aa:f6:17:0d:19:74:fc:
1c:81:5f:ff:07:9a:f0:5e:09:0e:f5:16:6b:21:12:
63:a1:03:72:86:e2:1a:74:fc:52:30:0b:3d:f9:a8:
60:81:3d:66:7b:46:13:50:5e:06:56:7a:26:b1:56:
9c:b0:12:61:30:06:d1:6a:2b:26:0e:65:d1:69:e2:
90:ed:61:84:e1:58:dd:18:c6:55:62:6e:5c:3a:b3:
8f:92:bb:8a:70:91:e8:79:91:d1:83:bc:cb:0d:02:
b2:fd:8d:df:91:58:49:01:46:eb:93:24:26:8b:13:
6b:47:9e:a6:b0:14:21:2d:54:59:13:41:5e:a5:d5:
9b:aa:a3:f0:36:dc:f7:62:74:9b:54:b9:ee:ef:7a:
62:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:0D:6F:53:56:94:0C:DC:69:55:EA:AC:3E:00:0E:43:6F:5E:B5:07
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/gg1vU1aUDNxpVeqsPgAOQ29etQc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64:ffff:0:18f:543:9e41/128
Signature Algorithm: sha256WithRSAEncryption
21:67:7d:4c:3c:3c:a1:90:14:0a:56:3a:76:02:3b:f9:19:de:
b4:18:57:57:b3:8d:66:87:3b:c8:7b:76:6b:4b:10:7d:79:66:
67:fb:da:25:d9:c5:ab:7f:96:a0:55:9f:46:0f:f3:7a:1d:20:
ae:7f:16:b0:3f:7c:c0:35:a2:10:71:df:e4:1e:a0:3b:ee:2f:
78:0d:ea:09:05:29:63:48:37:14:d1:f9:e9:6e:6b:91:ec:0a:
5a:f8:f5:cb:ba:b9:6a:78:fd:3a:39:5b:c7:59:b1:2e:98:55:
a2:ee:e9:52:c7:fb:9b:3d:2c:33:61:de:2e:e2:54:ff:f5:bc:
10:6f:ca:e8:3b:20:6b:22:26:c3:bc:3e:1f:7d:6f:e0:17:db:
e4:0d:81:03:8a:a7:6d:97:55:60:41:3b:92:3a:2e:9e:92:e9:
53:04:a6:6b:75:c7:34:58:6f:2c:23:bd:d9:6b:e8:3d:ee:45:
aa:48:d3:9b:f4:04:12:51:24:94:af:47:3c:de:95:35:ee:fc:
16:7b:da:3f:c9:fb:2c:57:b1:8c:bb:01:bb:86:a7:62:90:ae:
80:2d:a2:99:c9:f3:7d:19:a5:c1:c2:a4:f6:48:56:0b:c0:7a:
ea:63:05:dc:49:24:4e:d1:da:bf:68:bf:2d:46:26:a9:60:9d:
b6:5a:6b:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:59 2024 by rpki-client on console-ams.rpki-client.org