Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/l2BKAH0bVLFQG9pKsKfSCXu9rZU.roa
File: l2BKAH0bVLFQG9pKsKfSCXu9rZU.roa (raw, json)
Hash identifier: MY4o42a+obnChvAb7mDqJ6pDE3uOHRFI891/b1BI+lg=
Subject key identifier: 97:60:4A:00:7D:1B:54:B1:50:1B:DA:4A:B0:A7:D2:09:7B:BD:AD:95
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F889DA7AB04AA41B3231FF07E3733AFA0
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/l2BKAH0bVLFQG9pKsKfSCXu9rZU.roa
Signing time: Fri 17 May 2024 22:13:04 +0000
ROA not before: Fri 17 May 2024 22:13:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:9d:a7:ab:04:aa:41:b3:23:1f:f0:7e:37:33:af:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 17 22:13:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=97604a007d1b54b1501bda4ab0a7d2097bbdad95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:24:9a:5a:a9:7b:39:6a:57:39:90:bb:01:e7:
af:5d:9c:94:28:1a:fe:c1:26:72:39:28:b9:cc:2a:
4f:f7:fc:34:6e:29:12:37:54:6c:48:c3:c5:6f:df:
47:8c:c5:6d:72:ba:0a:58:13:df:e5:2c:69:d0:42:
6c:16:e6:30:fd:76:5c:a9:b2:d7:f5:6c:c7:53:15:
4d:e4:5e:7b:b3:1f:6d:40:f2:04:17:bf:02:02:28:
6f:ef:7f:8b:ad:e9:a1:f5:86:3c:56:93:2e:93:f8:
6a:b6:c9:f8:38:f0:3d:73:85:5b:08:bb:40:0d:a7:
28:5e:1e:5d:3b:0f:ef:de:de:9b:1b:99:ad:30:c4:
16:13:5d:9a:10:d1:7b:54:93:14:0a:b7:46:75:a6:
06:f3:d5:6f:27:11:0b:35:62:6f:91:84:ff:60:78:
a6:f6:46:c9:b4:4b:15:a8:89:61:91:d8:85:05:a2:
99:2f:a0:de:57:ba:bd:cc:b8:2b:8d:97:d2:6d:cb:
5c:e6:f7:9a:e2:ac:17:18:a0:75:94:e6:97:07:28:
4a:1b:a8:a5:b7:d8:df:c8:ca:63:60:bf:2c:a0:59:
76:d9:12:5b:0c:8f:f6:99:a4:fd:b3:f4:a2:bc:16:
9d:17:83:81:29:ad:36:46:b9:ec:36:56:e4:3c:91:
72:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:60:4A:00:7D:1B:54:B1:50:1B:DA:4A:B0:A7:D2:09:7B:BD:AD:95
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/l2BKAH0bVLFQG9pKsKfSCXu9rZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
ba:34:54:b9:2a:23:94:11:11:49:0c:7b:9c:3d:47:cf:82:3d:
bb:bb:e9:9b:2e:dc:b8:62:4c:33:fa:92:e9:4a:ca:77:44:aa:
59:b8:ea:6a:64:32:a9:6f:30:b8:b4:c3:67:c2:44:0d:2d:83:
d7:c2:4d:54:cc:e6:95:3c:a2:c3:45:0d:33:e8:b6:33:77:c2:
fb:4b:f7:d1:05:be:2a:d9:9e:d2:17:7c:60:60:f6:81:41:e7:
28:88:77:1c:26:a9:96:30:e4:8e:3a:0e:64:ad:aa:1f:0d:e8:
07:62:94:3a:b0:0e:5d:d2:e8:43:d8:b3:85:1e:ce:fe:bf:cc:
b9:a5:92:83:b8:e0:04:ad:b3:16:bf:51:12:2b:19:ad:74:83:
4d:87:fd:ae:e7:03:43:7f:e6:eb:59:ce:f8:31:93:58:8d:fd:
fb:58:3e:87:bf:91:d9:71:c6:77:08:ba:f2:8a:7a:09:1c:13:
0b:0e:44:5b:c2:04:3d:6b:23:34:8f:48:5e:d3:c0:3e:5a:6e:
49:53:22:96:fe:93:9e:aa:96:1f:d7:3a:0a:42:16:be:d6:3c:
33:c3:fc:94:7a:c6:1d:2e:b4:7b:28:ba:39:b5:79:c2:7c:18:
66:70:77:fd:a5:40:ed:90:27:9b:35:d7:be:5b:9f:7c:d2:bd:
36:de:03:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:59 2024 by rpki-client on console-ams.rpki-client.org