Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/hLQIP7BFIBzSx_Bjm69dQPh0ZU4.roa
File: hLQIP7BFIBzSx_Bjm69dQPh0ZU4.roa (raw, json)
Hash identifier: eWDhowCcy8gCqJqIbJfKnJvEnk1dt1ZkAaaQN9XyBic=
Subject key identifier: 84:B4:08:3F:B0:45:20:1C:D2:C7:F0:63:9B:AF:5D:40:F8:74:65:4E
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F0BEFAFF83522A73092E1527F53CDEC2B
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/hLQIP7BFIBzSx_Bjm69dQPh0ZU4.roa
Signing time: Tue 23 Apr 2024 17:10:08 +0000
ROA not before: Tue 23 Apr 2024 17:10:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:18f:543:9e41/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:0b:ef:af:f8:35:22:a7:30:92:e1:52:7f:53:cd:ec:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: Apr 23 17:10:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=84b4083fb045201cd2c7f0639baf5d40f874654e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ae:09:f4:8c:66:3a:44:75:a4:aa:c2:e8:66:
cf:64:52:65:7b:9e:5f:b5:e4:21:3a:4a:49:3d:5b:
16:46:fc:18:fe:84:5d:41:20:fb:8f:02:a1:8d:6d:
61:d3:a2:77:5f:a5:a1:47:f5:8d:40:64:cd:9c:dc:
ac:4a:59:a5:61:2f:5e:a6:12:2c:f4:d8:bf:31:17:
26:17:97:40:45:d3:ce:2d:de:8b:e9:a0:c7:e7:64:
b7:53:bd:23:fd:de:48:73:65:0e:e6:49:5a:63:57:
3c:d8:c2:bc:e7:e2:81:62:4a:53:25:79:bd:20:bd:
4d:ee:88:43:7b:84:34:0b:d6:b8:56:31:2a:cd:01:
e0:04:2f:b8:ab:c2:54:fc:b9:5a:22:8e:81:ea:04:
cf:73:36:e2:5a:4b:10:69:70:e1:fc:ae:6b:a9:0e:
91:22:8a:79:4e:68:8b:3b:66:72:81:88:0c:af:6d:
d6:dc:b8:66:7e:09:df:fc:8d:b3:b8:43:f9:ac:68:
30:f9:37:d5:cb:f0:5c:ca:06:14:13:28:36:55:fe:
6f:44:71:d0:85:50:ed:67:2f:2c:01:e6:04:84:00:
25:f8:53:4f:63:ab:cd:e7:15:e3:8a:35:1a:71:04:
96:52:70:93:3b:eb:81:60:ef:1c:3b:ce:eb:96:6a:
12:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:B4:08:3F:B0:45:20:1C:D2:C7:F0:63:9B:AF:5D:40:F8:74:65:4E
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/hLQIP7BFIBzSx_Bjm69dQPh0ZU4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64:ffff:0:18f:543:9e41/128
Signature Algorithm: sha256WithRSAEncryption
65:2d:4a:e0:fe:74:6e:96:0f:77:d2:66:b9:40:40:3f:ae:66:
99:17:e0:20:cb:88:27:4d:47:7a:73:db:02:fa:c6:fb:d1:41:
dc:e2:4a:6f:1b:cb:68:f7:a2:76:cb:00:a6:16:4c:f6:e6:7c:
67:ca:bc:d3:ae:15:c0:7a:be:e2:01:d5:fc:d4:ac:0e:59:e8:
28:bf:88:03:09:b2:b4:d0:6d:fc:fe:e8:7d:2b:c7:80:1e:f0:
1e:d0:78:9e:a9:d3:ca:49:cb:a9:13:03:68:da:be:7d:dc:71:
81:de:d9:8b:30:89:15:98:11:1f:fb:17:e2:c7:09:50:1f:66:
2a:de:cf:66:b0:7a:52:d8:77:7c:dc:1b:56:78:fe:62:8a:e5:
91:a5:7a:5e:9d:0f:03:e2:5b:eb:de:8f:13:26:24:93:40:12:
0c:fc:4b:0e:b9:19:fc:7a:3e:81:4e:ff:4d:f3:9c:e6:a5:9e:
b2:94:da:15:ae:8e:06:33:7b:43:47:4c:0d:ed:c4:c0:05:29:
2f:cb:56:87:a0:9f:b2:5b:34:d5:11:6f:42:47:70:cb:27:d8:
5a:84:f0:c9:db:96:17:b2:3b:7c:7b:03:5f:f4:70:9d:f4:78:
ca:e4:01:56:b5:96:a7:65:c9:70:f1:ae:ba:a7:b9:6f:db:71:
da:1c:fd:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:59 2024 by rpki-client on console-ams.rpki-client.org