Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/n7LCLSd5EPOkRVRybSWz7CheVUg.roa
File: n7LCLSd5EPOkRVRybSWz7CheVUg.roa (raw, json)
Hash identifier: PZ9lJtNr8zozak0gFtdWDi5i8cQ3eXB/hQIvFdG6BbA=
Subject key identifier: 9F:B2:C2:2D:27:79:10:F3:A4:45:54:72:6D:25:B3:EC:28:5E:55:48
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018EF8D61EAA3B3536B033EB1F98505BA5D1
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/n7LCLSd5EPOkRVRybSWz7CheVUg.roa
Signing time: Sat 20 Apr 2024 00:09:25 +0000
ROA not before: Sat 20 Apr 2024 00:09:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:f8:d6:1e:aa:3b:35:36:b0:33:eb:1f:98:50:5b:a5:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: Apr 20 00:09:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9fb2c22d277910f3a44554726d25b3ec285e5548
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a2:c1:24:a7:72:80:61:36:1f:6e:b9:67:05:
a2:45:1f:f1:29:48:6b:7f:89:36:dc:ad:69:1d:c9:
9b:5c:92:63:bf:6a:90:5a:e0:c0:c6:5d:01:ba:be:
1a:26:c4:f8:6c:a1:95:b8:e4:3e:e3:ac:1b:03:a6:
02:ac:53:48:81:91:b8:a3:b1:94:a4:7e:54:5c:ff:
1d:38:e1:5e:14:d4:b5:4a:4b:96:fe:4f:b2:e9:b7:
64:aa:af:39:72:af:52:00:47:c7:9c:4f:5f:4c:62:
5d:af:80:cd:28:80:d1:f2:2c:05:09:30:1b:ae:8e:
8d:fd:50:ee:44:4e:b4:66:47:b8:b7:16:66:5a:ac:
e1:6e:b5:8f:4a:68:6c:7c:07:ee:16:95:25:36:2b:
0d:99:d9:2f:4c:2d:9a:4a:a3:69:ed:3d:ce:49:76:
89:0d:b8:1b:19:12:0e:af:bf:27:9a:23:81:fe:fd:
eb:80:36:16:79:70:47:ad:d1:81:82:18:d7:5c:0f:
0e:79:48:bc:29:3d:d5:a7:d8:c9:c6:e3:a8:e8:5b:
2f:9b:14:30:59:8f:57:d7:97:4e:e8:4b:f6:79:5c:
34:47:17:d5:f0:d0:11:59:bc:c6:36:e5:b2:b9:52:
04:74:66:35:7b:1d:04:66:fc:40:f9:b3:70:af:10:
32:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:B2:C2:2D:27:79:10:F3:A4:45:54:72:6D:25:B3:EC:28:5E:55:48
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/n7LCLSd5EPOkRVRybSWz7CheVUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
Signature Algorithm: sha256WithRSAEncryption
cb:d0:64:dd:62:be:99:b4:ab:57:8b:cf:a5:e3:64:a4:23:d8:
5b:7f:a4:6e:2a:02:d1:c2:3c:b0:70:83:0d:eb:0a:8f:ee:01:
72:1f:6b:20:13:77:62:11:12:67:e1:fe:ce:36:06:2c:b7:b2:
6b:11:81:d3:91:5c:40:d1:86:02:1b:9c:79:5e:5a:7c:88:85:
90:bf:5c:25:09:06:f7:eb:b9:bf:af:ff:1c:93:ee:fd:b3:7d:
88:8b:9b:05:c5:a0:d2:42:a5:0c:52:26:72:d7:c8:b9:93:aa:
4f:45:4d:14:58:cb:ec:7b:5c:b5:22:db:96:10:c9:0e:31:61:
89:f7:d2:7b:46:ae:dc:98:37:b3:d1:04:e7:2b:ce:84:5d:9a:
77:39:54:51:6f:be:23:dd:6e:04:a1:86:27:e0:7a:83:6a:aa:
97:8f:b5:36:cb:eb:dd:f7:9c:23:45:5b:89:52:44:75:d2:24:
79:0c:1e:9f:c6:bc:b5:65:ee:08:06:8b:3f:22:23:9e:bc:6f:
87:33:05:95:c6:48:7c:ac:f3:cc:dd:07:82:a5:e8:c9:1f:f3:
6f:23:72:09:bb:5d:43:53:24:ae:b0:63:0f:96:64:dc:14:f3:
22:85:2b:7f:69:0c:6e:6b:66:60:28:aa:68:60:29:7c:62:c3:
ed:4a:f6:6c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY741h6qOzU2sDPrH5hQW6XRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyYmVjNDFiZDJmM2IxNzlkZTA5NTE0MzA2NTMwYmQzZmJh
YzcwN2IwHhcNMjQwNDIwMDAwOTI1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZmIyYzIyZDI3NzkxMGYzYTQ0NTU0NzI2ZDI1YjNlYzI4NWU1NTQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtKLBJKdygGE2H265ZwWiRR/xKUhr
f4k23K1pHcmbXJJjv2qQWuDAxl0Bur4aJsT4bKGVuOQ+46wbA6YCrFNIgZG4o7GU
pH5UXP8dOOFeFNS1SkuW/k+y6bdkqq85cq9SAEfHnE9fTGJdr4DNKIDR8iwFCTAb
ro6N/VDuRE60Zke4txZmWqzhbrWPSmhsfAfuFpUlNisNmdkvTC2aSqNp7T3OSXaJ
DbgbGRIOr78nmiOB/v3rgDYWeXBHrdGBghjXXA8OeUi8KT3Vp9jJxuOo6FsvmxQw
WY9X15dO6Ev2eVw0RxfV8NARWbzGNuWyuVIEdGY1ex0EZvxA+bNwrxAybwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJ+ywi0neRDzpEVUcm0ls+woXlVIMB8GA1UdIwQY
MBaAFLK+xBvS87F53glRQwZTC9P7rHB7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYt
ZDEyZjAzOWRiMmM5LzEvbjdMQ0xTZDVFUE9rUlZSeWJTV3o3Q2hlVlVnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYtZDEyZjAzOWRiMmM5
LzEvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDwQAYMA0G
CSqGSIb3DQEBCwUAA4IBAQDL0GTdYr6ZtKtXi8+l42SkI9hbf6RuKgLRwjywcIMN
6wqP7gFyH2sgE3diERJn4f7ONgYst7JrEYHTkVxA0YYCG5x5Xlp8iIWQv1wlCQb3
67m/r/8ck+79s32Ii5sFxaDSQqUMUiZy18i5k6pPRU0UWMvse1y1ItuWEMkOMWGJ
99J7Rq7cmDez0QTnK86EXZp3OVRRb74j3W4EoYYn4HqDaqqXj7U2y+vd95wjRVuJ
UkR10iR5DB6fxry1Ze4IBos/IiOevG+HMwWVxkh8rPPM3QeCpejJH/NvI3IJu11D
UySusGMPlmTcFPMihSt/aQxua2ZgKKpoYCl8YsPtSvZs
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:07 2024 by rpki-client on console-fra.rpki-client.org