Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/gt4dI_e3OuMFN3IAFjHCABPbYJ0.roa
File: gt4dI_e3OuMFN3IAFjHCABPbYJ0.roa (raw, json)
Hash identifier: aVE8HCQ0anAjP0ERKxyFQN7MVv358J3GVNVU0dTAxZ8=
Subject key identifier: 82:DE:1D:23:F7:B7:3A:E3:05:37:72:00:16:31:C2:00:13:DB:60:9D
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F49BBD20B91DA2884FEC233BA8E5C36E3
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/gt4dI_e3OuMFN3IAFjHCABPbYJ0.roa
Signing time: Sun 05 May 2024 17:09:56 +0000
ROA not before: Sun 05 May 2024 17:09:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18f:543:9e41/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:49:bb:d2:0b:91:da:28:84:fe:c2:33:ba:8e:5c:36:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 5 17:09:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=82de1d23f7b73ae3053772001631c20013db609d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:0d:e8:7f:67:e2:25:c9:1f:91:76:87:f9:36:
7e:0b:fc:44:42:d1:4e:05:cb:aa:fe:a6:7e:49:36:
50:4c:17:31:1e:01:ac:9c:1f:32:ad:8e:5b:7a:23:
d3:ee:7c:28:04:4c:19:28:a5:68:e5:09:7e:d1:ee:
b7:39:92:3e:38:e6:d5:53:c9:62:5f:50:ae:19:82:
d6:f9:c8:19:f7:fc:2e:8e:b1:a5:af:55:99:69:d7:
f6:f6:15:d0:2d:76:75:9c:66:fd:40:26:ed:d4:1c:
30:6f:1c:3c:66:b3:e3:d9:84:47:a5:0e:fa:66:57:
53:2b:cc:18:ec:df:92:65:8d:66:c1:d5:f8:56:b6:
d6:eb:2c:90:87:cf:b5:10:77:d7:2a:51:85:2c:94:
cd:39:bc:b5:b0:8b:e8:49:a1:2f:73:e7:46:07:4f:
33:01:48:cc:56:1f:82:c5:32:74:83:4f:94:38:45:
7f:c8:fd:55:d3:b3:4f:1f:ba:32:41:8a:90:a3:5d:
99:0c:26:07:ba:f1:d7:f0:8e:aa:76:10:9f:92:67:
23:d6:ce:f9:53:a9:9e:d5:db:ea:74:c0:f2:bd:2e:
4e:15:b5:6a:a0:4c:6c:82:2e:73:4b:7a:eb:d0:39:
05:76:2d:93:81:c0:e2:6b:d8:93:1e:27:1d:38:64:
14:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:DE:1D:23:F7:B7:3A:E3:05:37:72:00:16:31:C2:00:13:DB:60:9D
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/gt4dI_e3OuMFN3IAFjHCABPbYJ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
b2:e8:f3:d4:9a:8a:69:75:7e:ef:50:c2:2e:ff:ef:59:96:ed:
72:ad:d8:8d:f5:27:f2:5e:09:b2:f6:cc:d1:74:a0:06:c6:84:
37:60:1c:ee:06:0a:46:35:d5:10:e9:ef:f2:06:b6:98:af:26:
bd:5d:09:a3:af:4f:0b:f7:00:40:46:12:82:82:00:d4:dd:b0:
d9:e3:12:d5:09:a7:1b:15:12:5f:b8:87:74:b7:de:3b:6c:32:
ef:ec:ad:ea:fc:73:91:24:45:59:b3:5c:2e:45:3f:f5:e2:88:
3e:8b:09:32:fa:4c:ac:ff:84:19:8d:c0:55:98:9f:e8:1e:12:
88:73:19:49:db:84:f2:57:9c:b6:85:3b:3e:ee:fc:28:94:6a:
b9:af:7f:20:46:79:fc:c0:4e:01:25:c8:0d:05:fd:6e:c8:fd:
c5:14:87:68:ec:70:5d:6c:c6:4b:b9:54:68:23:12:d2:8e:ba:
28:fa:e8:5c:9e:48:49:2f:40:59:04:d0:97:8a:0a:e3:c3:e6:
11:ce:e3:31:67:04:fd:f9:04:41:fe:e9:da:09:f6:f2:9c:14:
a1:4c:2e:a1:02:3e:7b:1f:d3:b8:1d:7e:0d:04:ac:ae:57:81:
0c:c4:ce:2b:76:f4:cd:76:2f:ec:c1:0b:a4:59:87:77:95:eb:
17:a9:31:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:59 2024 by rpki-client on console-ams.rpki-client.org