Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/jhQfx0-h6Wmh3y0DY5coZhSIDDQ.roa
File: jhQfx0-h6Wmh3y0DY5coZhSIDDQ.roa (raw, json)
Hash identifier: prYrh0Je90v7lc1BXvPSRM+d26NrFiUXWujRKgUVZWk=
Subject key identifier: 8E:14:1F:C7:4F:A1:E9:69:A1:DF:2D:03:63:97:28:66:14:88:0C:34
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018EF9EA9C20B2DF13CB09AD62C524DD382B
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/jhQfx0-h6Wmh3y0DY5coZhSIDDQ.roa
Signing time: Sat 20 Apr 2024 05:11:25 +0000
ROA not before: Sat 20 Apr 2024 05:11:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:f9:ea:9c:20:b2:df:13:cb:09:ad:62:c5:24:dd:38:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: Apr 20 05:11:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8e141fc74fa1e969a1df2d036397286614880c34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:9b:c6:26:ca:e8:a9:ac:c0:d3:0b:20:2c:b7:
c4:34:ab:b7:e3:a1:60:cb:ca:3c:b1:f4:de:ab:4a:
8b:94:5e:da:aa:36:ee:0c:2d:73:05:24:b0:d8:04:
75:8e:26:7d:44:ca:68:d4:fe:5e:ad:35:42:cc:e7:
e7:ad:63:25:ad:e3:23:14:e0:c9:f0:65:cf:82:69:
a6:ed:56:f2:2f:30:72:bc:92:5d:d7:10:11:66:a9:
b4:3d:e1:70:f4:ae:4c:6a:cd:a6:33:60:72:a5:78:
8d:f2:56:8a:45:73:0e:61:78:f9:4a:b1:68:78:9b:
bc:6e:d5:c3:d2:1b:0c:dc:02:58:08:a9:03:dd:30:
30:c1:78:7f:05:f2:89:b7:60:7d:e7:58:e5:98:4f:
fa:36:81:79:c4:75:fa:19:5e:ac:00:60:72:94:fd:
19:cc:27:5b:fd:93:90:81:6e:e6:64:b3:36:b5:d3:
3e:bb:c2:e0:09:c0:3c:19:59:29:97:e4:67:9d:48:
bd:b2:04:be:fa:8c:dc:85:af:ea:1c:a9:8e:f7:e7:
e5:0c:2f:a3:db:e0:4a:33:d1:94:85:f3:4f:cd:77:
64:a8:ed:75:1a:c2:46:26:bf:be:97:96:a5:bd:21:
7d:15:09:4e:a6:ef:04:bf:de:16:1e:a6:45:24:9d:
91:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:14:1F:C7:4F:A1:E9:69:A1:DF:2D:03:63:97:28:66:14:88:0C:34
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/jhQfx0-h6Wmh3y0DY5coZhSIDDQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
Signature Algorithm: sha256WithRSAEncryption
c5:f2:25:dc:9a:52:34:54:43:29:ec:8b:73:d3:ee:5f:81:48:
c1:70:23:91:81:f7:c2:ae:b0:44:2a:69:71:b6:28:fb:dd:51:
ce:83:d4:97:a4:ac:82:26:80:4c:ca:6d:a6:38:2f:2d:5a:35:
16:04:2d:91:67:3b:7b:cd:6e:84:32:d9:5c:7c:28:51:7b:97:
35:ff:05:65:3b:4a:50:6e:be:79:63:04:0d:04:d8:90:a0:ce:
5a:ef:2d:8d:14:e5:d1:2b:61:75:3b:48:4c:1f:17:36:32:6f:
c9:1f:e5:f8:63:ae:be:81:ba:b2:7a:be:50:6c:26:48:9a:bf:
02:42:e4:31:1e:ca:fa:aa:56:5e:98:af:09:50:7e:8d:c9:2d:
1c:b9:a0:9d:73:13:c8:85:69:3e:1b:a8:e8:2a:4c:f1:93:27:
dd:b5:a2:d9:70:b6:0e:05:85:6c:61:3e:9f:54:9a:20:46:b7:
a3:0b:3e:42:54:47:32:d9:bb:78:75:cf:7d:98:e1:ba:1b:b6:
94:9d:b7:c0:7c:3c:ce:1c:4d:75:78:5a:66:1f:73:b1:ad:11:
a0:d4:c5:ec:71:a1:95:29:27:49:d5:a0:a5:cb:6b:3e:13:f4:
fb:ea:cf:7b:d7:35:1f:ee:84:c5:44:0f:52:91:1e:8b:94:2a:
ac:3c:d7:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:59 2024 by rpki-client on console-ams.rpki-client.org