Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/kWKmMVEY7SUGy2SZddoZmL9s_DQ.roa
File: kWKmMVEY7SUGy2SZddoZmL9s_DQ.roa (raw, json)
Hash identifier: J5WJBgmquueZIY2dq2QfmgluLMD7g96Cx9BPJxRg5UU=
Subject key identifier: 91:62:A6:31:51:18:ED:25:06:CB:64:99:75:DA:19:98:BF:6C:FC:34
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F1117E12C61C25349CD787DADE7E5A4FE
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/kWKmMVEY7SUGy2SZddoZmL9s_DQ.roa
Signing time: Wed 24 Apr 2024 17:12:08 +0000
ROA not before: Wed 24 Apr 2024 17:12:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:18f:543:9e41/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:11:17:e1:2c:61:c2:53:49:cd:78:7d:ad:e7:e5:a4:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: Apr 24 17:12:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9162a6315118ed2506cb649975da1998bf6cfc34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:95:b2:ad:e3:dd:a8:19:ed:c4:00:c4:05:35:
5a:42:2c:14:43:f5:c5:22:08:3c:31:24:c1:40:85:
ba:a3:7e:6f:04:a1:bd:0f:ec:59:83:ad:b3:53:1b:
e5:fc:b3:39:60:eb:da:62:37:58:0f:3b:ba:a3:a9:
9d:15:c5:eb:8d:c3:47:26:7f:4a:6a:3f:a5:74:25:
24:26:a5:c4:d8:e5:e2:da:9d:f9:99:52:a6:d3:b4:
ec:0f:b1:3e:42:71:c4:bd:ac:5d:5d:6e:fd:e7:34:
17:53:45:d4:ff:ad:05:eb:e1:30:d9:4f:a0:eb:c2:
56:b5:d1:57:be:3a:78:e9:82:25:50:89:4d:65:97:
da:3a:84:11:ab:c5:de:72:61:bb:77:a1:19:4e:1b:
22:42:b6:ba:11:20:34:57:a4:7c:65:c2:ad:9c:3e:
1b:40:c8:cf:d9:61:0f:16:3a:0d:5d:0b:ee:92:b3:
31:e9:76:db:c2:9a:f3:e1:89:51:a7:6f:4b:a0:69:
1d:10:9d:3c:2d:8e:de:74:bc:14:5b:3e:ea:85:fc:
1e:53:7d:33:c3:4f:da:ba:63:39:1a:20:cc:49:14:
9e:55:c3:cc:0d:3a:3b:a7:2a:82:5e:32:7c:6d:12:
69:d2:d4:9f:40:89:62:fc:b2:10:04:cc:d5:f9:1f:
7c:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:62:A6:31:51:18:ED:25:06:CB:64:99:75:DA:19:98:BF:6C:FC:34
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/kWKmMVEY7SUGy2SZddoZmL9s_DQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64:ffff:0:18f:543:9e41/128
Signature Algorithm: sha256WithRSAEncryption
45:a9:86:8c:b6:85:20:05:fb:40:30:46:6b:36:8f:ed:7b:b8:
e7:0e:86:ea:c1:a5:11:c5:79:28:98:4a:d3:7d:92:e1:ae:d8:
e3:9b:8a:12:d1:03:fb:bb:74:e7:ca:0f:6e:9b:6a:34:e8:d0:
e8:7d:44:dd:6b:d7:35:dd:e8:0e:b6:60:82:a8:c5:02:b0:ce:
3b:40:e8:0b:29:ad:75:89:3d:10:fe:fb:8f:15:b8:69:82:5b:
6c:87:b2:7e:b5:6c:a1:c6:b4:59:09:ed:df:c1:53:f8:11:df:
2b:b3:03:b8:5c:ba:1f:94:3a:1c:09:47:81:99:d7:b5:5b:df:
14:e6:f9:87:7f:1d:bc:c3:c3:2e:66:23:e9:e7:a4:06:99:12:
e4:aa:13:cb:e2:08:6a:67:84:1d:e0:af:76:c2:3b:47:68:08:
40:a6:0c:77:0f:a2:b3:a7:69:a5:4b:b1:c6:c3:76:02:b1:26:
00:91:eb:6d:07:9e:ca:ae:75:9a:7f:09:22:95:dd:0a:c4:82:
62:dd:68:3d:20:db:db:2a:83:de:35:df:f0:6f:ea:64:fa:f1:
59:e1:bb:f9:21:92:bd:e7:41:2a:2b:32:b0:7f:6a:b5:f9:71:
d4:bd:46:b7:d2:6f:f0:94:51:a6:c4:64:f0:6d:3f:ad:ce:4a:
65:c7:57:22
-----BEGIN CERTIFICATE-----
MIIFGDCCBACgAwIBAgISAY8RF+EsYcJTSc14fa3n5aT+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyYmVjNDFiZDJmM2IxNzlkZTA5NTE0MzA2NTMwYmQzZmJh
YzcwN2IwHhcNMjQwNDI0MTcxMjA4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MTYyYTYzMTUxMThlZDI1MDZjYjY0OTk3NWRhMTk5OGJmNmNmYzM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj5WyrePdqBntxADEBTVaQiwUQ/XF
Igg8MSTBQIW6o35vBKG9D+xZg62zUxvl/LM5YOvaYjdYDzu6o6mdFcXrjcNHJn9K
aj+ldCUkJqXE2OXi2p35mVKm07TsD7E+QnHEvaxdXW795zQXU0XU/60F6+Ew2U+g
68JWtdFXvjp46YIlUIlNZZfaOoQRq8XecmG7d6EZThsiQra6ESA0V6R8ZcKtnD4b
QMjP2WEPFjoNXQvukrMx6Xbbwprz4YlRp29LoGkdEJ08LY7edLwUWz7qhfweU30z
w0/aumM5GiDMSRSeVcPMDTo7pyqCXjJ8bRJp0tSfQIli/LIQBMzV+R98TwIDAQAB
o4ICJDCCAiAwHQYDVR0OBBYEFJFipjFRGO0lBstkmXXaGZi/bPw0MB8GA1UdIwQY
MBaAFLK+xBvS87F53glRQwZTC9P7rHB7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYt
ZDEyZjAzOWRiMmM5LzEva1dLbU1WRVk3U1VHeTJTWmRkb1ptTDlzX0RRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYtZDEyZjAzOWRiMmM5
LzEvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAMBAIAATAGAwQDwQAYMBkE
AgACMBMDEQAgAQZ8AGT//wAAAY8FQ55BMA0GCSqGSIb3DQEBCwUAA4IBAQBFqYaM
toUgBftAMEZrNo/te7jnDobqwaURxXkomErTfZLhrtjjm4oS0QP7u3Tnyg9um2o0
6NDofUTda9c13egOtmCCqMUCsM47QOgLKa11iT0Q/vuPFbhpgltsh7J+tWyhxrRZ
Ce3fwVP4Ed8rswO4XLoflDocCUeBmde1W98U5vmHfx28w8MuZiPp56QGmRLkqhPL
4ghqZ4Qd4K92wjtHaAhApgx3D6Kzp2mlS7HGw3YCsSYAkettB57KrnWafwkild0K
xIJi3Wg9INvbKoPeNd/wb+pk+vFZ4bv5IZK950EqKzKwf2q1+XHUvUa30m/wlFGm
xGTwbT+tzkplx1ci
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:59 2024 by rpki-client on console-ams.rpki-client.org