Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/isZzWUfBJl0LIkQeapnF2GWgGuI.roa
File: isZzWUfBJl0LIkQeapnF2GWgGuI.roa (raw, json)
Hash identifier: PP8FY+BOSvt3nZQQf2995kX7EPtlLEIVIFqfMHmD9Jw=
Subject key identifier: 8A:C6:73:59:47:C1:26:5D:0B:22:44:1E:6A:99:C5:D8:65:A0:1A:E2
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F82D0AC7CBBE2B6A11789F4D5BF1B5FBB
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/isZzWUfBJl0LIkQeapnF2GWgGuI.roa
Signing time: Thu 16 May 2024 19:11:04 +0000
ROA not before: Thu 16 May 2024 19:11:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:82:d0:ac:7c:bb:e2:b6:a1:17:89:f4:d5:bf:1b:5f:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 16 19:11:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8ac6735947c1265d0b22441e6a99c5d865a01ae2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:eb:42:41:10:41:13:ee:36:b5:31:10:2e:58:
63:19:96:3a:cc:29:c2:51:66:4f:b2:9c:fa:5c:44:
7b:cc:63:06:9d:fa:7a:d7:35:93:b8:d9:03:ba:45:
5d:fb:f8:b9:8f:c1:e2:fe:9b:36:b8:d6:ea:cc:17:
50:c4:39:fc:6c:14:34:ae:c8:1a:4d:52:91:a4:3e:
bd:79:56:eb:dd:ed:17:c1:7b:36:d3:79:51:e4:7a:
08:73:e5:76:af:bb:c9:e6:1b:8e:00:a5:7c:4b:f8:
0c:63:06:35:c0:d8:59:59:17:af:e4:31:fb:f4:87:
14:f9:be:f6:bf:c4:04:88:0e:80:8b:0a:80:42:6a:
0c:03:0e:84:5b:ea:af:c5:29:f5:08:a6:54:1a:43:
c8:09:8b:37:a4:e3:49:f9:f3:db:8f:58:b4:f3:07:
a9:f6:5a:0e:0d:e4:89:c7:86:6d:6f:a5:4c:9c:73:
0d:80:df:f8:a7:84:84:22:c4:ef:93:a5:6e:03:8f:
f9:0e:ee:1a:06:3e:4a:17:2d:41:75:f6:cb:bf:87:
cd:c4:08:b9:a8:2b:51:4b:f6:7c:8a:39:5f:27:b1:
1c:f2:b2:a1:94:3f:c4:de:71:88:9a:45:94:b9:38:
c3:31:cd:12:55:ba:db:45:ab:ad:cf:d3:ef:bd:3c:
33:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:C6:73:59:47:C1:26:5D:0B:22:44:1E:6A:99:C5:D8:65:A0:1A:E2
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/isZzWUfBJl0LIkQeapnF2GWgGuI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
6d:e5:50:51:66:eb:ef:12:2c:cc:30:7e:05:14:05:d1:79:dc:
a0:a6:21:dd:df:60:ba:e9:2e:62:5f:8c:48:ec:32:06:cd:95:
2f:14:45:a0:ce:bf:91:b8:fd:ff:02:4b:b0:d0:79:db:cb:05:
c3:54:a2:4e:8c:77:20:14:33:81:6e:08:81:60:80:c4:23:17:
d0:aa:8b:90:65:4e:fb:32:ca:24:21:9f:52:66:f4:e7:ec:5f:
00:31:9e:59:a9:9a:73:d6:f0:bf:43:72:66:5f:2e:a3:27:74:
4a:67:81:79:c0:17:df:ad:3f:4a:ca:82:e9:b0:8e:fe:8c:05:
2a:f9:a7:b5:68:b3:5a:ee:16:f7:61:ba:f2:0f:1a:f6:07:d6:
3d:4a:7a:0b:5a:56:8c:d9:65:00:0d:ec:44:96:ec:a6:db:f7:
11:39:f6:1d:55:ff:ab:93:9b:5e:ee:80:da:2b:1b:59:80:e4:
98:ae:f4:cc:03:1a:63:3c:6f:59:a8:fb:c3:a1:bd:fb:0d:e2:
5b:d4:c8:4d:dc:c0:09:72:51:0b:25:ed:65:7f:dd:f0:67:37:
4f:b7:ab:38:50:17:0d:2d:3c:ac:a6:fb:42:70:eb:f6:d7:c6:
f8:d3:fa:05:54:a9:c6:5a:d6:3e:85:db:bd:6f:4d:f8:38:01:
80:7f:bd:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:07 2024 by rpki-client on console-fra.rpki-client.org