Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/ipvlCmM62K9G79fhFhy2jCoG4mo.roa
File: ipvlCmM62K9G79fhFhy2jCoG4mo.roa (raw, json)
Hash identifier: gwBqFQyCTK2wOjKDFO4+lkG5qiWoXqdl0RW5wZ/ISPY=
Subject key identifier: 8A:9B:E5:0A:63:3A:D8:AF:46:EF:D7:E1:16:1C:B6:8C:2A:06:E2:6A
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F569D8BE4C4CF0B40F708FD51D18D1302
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/ipvlCmM62K9G79fhFhy2jCoG4mo.roa
Signing time: Wed 08 May 2024 05:11:56 +0000
ROA not before: Wed 08 May 2024 05:11:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18f:543:9e41/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:56:9d:8b:e4:c4:cf:0b:40:f7:08:fd:51:d1:8d:13:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 8 05:11:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8a9be50a633ad8af46efd7e1161cb68c2a06e26a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:bc:d3:67:af:7f:8a:9c:c5:70:11:ab:ab:a7:
bf:18:94:2f:8a:6c:10:1a:5a:a4:2f:41:71:43:fb:
84:15:a5:8b:f8:97:fa:59:ad:93:e4:72:31:1c:0e:
c8:4f:fa:38:98:59:b0:85:51:e3:98:44:62:ef:f2:
5d:74:89:c3:24:2b:88:ad:ce:09:78:7c:3f:a6:8a:
20:db:c5:3b:b1:c3:c9:45:a9:4e:a8:85:f4:86:9d:
ca:f5:c7:83:24:46:a4:32:5f:1f:dd:bd:36:25:25:
16:63:e3:0e:0a:5c:1a:82:8b:d0:ed:47:49:57:79:
16:c1:d4:33:45:87:89:0d:2b:eb:c8:01:a0:0e:ec:
b4:7e:7c:89:7f:a4:f0:5b:e2:29:52:d8:b2:dd:5f:
37:71:fd:c9:05:8e:f2:8c:3e:ef:ba:16:ac:05:5e:
e0:58:93:d9:24:bf:e4:1e:9c:3c:0c:ac:3c:0d:25:
5b:9e:c3:c1:59:e0:dc:3c:11:85:89:3b:d3:a7:97:
ae:15:ac:b3:f5:27:a6:f6:ed:fb:fc:84:38:fa:28:
ea:0b:34:ab:6f:35:26:69:6a:61:7a:d8:0e:29:53:
2f:26:df:36:cf:2e:54:8e:24:e5:ed:33:7f:d6:0c:
08:3d:f2:14:c6:bc:34:da:ba:cc:28:a4:c0:71:17:
dd:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:9B:E5:0A:63:3A:D8:AF:46:EF:D7:E1:16:1C:B6:8C:2A:06:E2:6A
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/ipvlCmM62K9G79fhFhy2jCoG4mo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
61:ce:07:05:5c:35:d9:24:db:49:ac:48:a7:6c:df:80:9b:5a:
91:3e:96:99:e2:35:30:d7:a9:96:ab:a0:25:06:90:52:15:ca:
d7:7e:5d:b4:7c:65:cc:56:59:c9:0d:db:1a:fc:80:78:f6:72:
ed:01:cb:d5:ad:a8:9c:84:b1:ac:01:12:44:f7:3b:1d:f6:0f:
3a:c5:ff:f2:14:b6:6c:2b:0d:26:48:ae:7f:70:65:68:66:53:
e9:1b:32:f2:71:ed:62:5f:c9:be:d6:ee:60:8a:46:9f:f3:ac:
50:e2:eb:4e:5a:06:ed:b9:50:e6:c6:ea:0e:3d:d2:e7:70:7c:
75:22:ce:7f:55:4a:b1:61:4e:00:c8:78:4e:05:41:56:eb:10:
34:09:1f:69:4b:3b:a8:7c:02:0a:15:69:5f:be:0f:e0:06:6a:
f8:02:86:fe:1c:de:88:2d:7c:d9:b1:3d:10:8c:eb:0e:8f:61:
1e:46:ce:f0:45:cb:30:e8:b9:00:ba:73:8c:23:ae:a2:f2:3a:
63:3d:c1:23:16:b3:0c:e0:f8:db:21:52:5c:c7:33:61:c5:7b:
61:59:a9:7d:ce:cc:83:66:15:6b:a9:2b:ce:ef:d5:96:fe:40:
a7:93:c7:df:a0:a2:67:6f:bb:df:b1:00:ea:fc:fd:3c:9a:87:
aa:73:12:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:07 2024 by rpki-client on console-fra.rpki-client.org