Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/qdeq7cOG_fN7KDoL_PiLldKRHqo.roa
File: qdeq7cOG_fN7KDoL_PiLldKRHqo.roa (raw, json)
Hash identifier: DehEZ/JnMse9Dh2Ys+Mj4ni9rgnpTL49Sg/JvWT2rqc=
Subject key identifier: A9:D7:AA:ED:C3:86:FD:F3:7B:28:3A:0B:FC:F8:8B:95:D2:91:1E:AA
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F14BDB80E7B160973B802781C63BE23ED
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/qdeq7cOG_fN7KDoL_PiLldKRHqo.roa
Signing time: Thu 25 Apr 2024 10:12:08 +0000
ROA not before: Thu 25 Apr 2024 10:12:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:18f:543:9e41/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:14:bd:b8:0e:7b:16:09:73:b8:02:78:1c:63:be:23:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: Apr 25 10:12:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a9d7aaedc386fdf37b283a0bfcf88b95d2911eaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:d8:8e:25:50:a1:6d:8d:be:e8:2b:5f:bb:27:
03:31:7c:94:d9:cf:1a:6d:82:22:9f:cb:1f:0c:4f:
89:ad:fa:16:ee:a0:f0:08:8f:d3:e8:c0:22:6d:8a:
ac:56:b9:28:31:11:ef:b6:a8:be:ce:0b:29:a8:24:
00:35:59:50:3e:d9:de:8f:01:03:43:e4:09:75:91:
34:d8:02:9a:98:5f:3c:cb:cb:9f:8d:06:73:76:38:
48:db:3e:cc:15:e8:cd:c7:06:79:5d:0d:f2:0b:cc:
33:ea:05:36:0c:a7:0e:e4:03:69:c5:fa:f9:fd:10:
9f:16:be:4a:50:fa:74:12:e8:34:4e:85:4f:55:61:
4f:8e:6d:56:3e:18:16:a7:8f:ec:ea:cc:36:1f:91:
be:07:eb:35:e7:fa:90:bd:a6:43:74:d3:5b:ff:42:
6f:a5:f4:db:bc:c1:4f:3e:d3:33:23:32:34:dd:2a:
83:74:bb:b6:ff:ac:2c:9c:af:71:cb:40:61:da:86:
37:02:8a:d3:1e:f1:38:c7:c2:7c:87:9c:53:47:68:
46:ed:3f:ef:8e:69:3d:c8:ae:59:2a:74:2e:1e:61:
68:5a:34:2f:b9:82:11:aa:89:1c:fb:48:81:84:92:
ee:5e:5e:6b:b3:7c:31:75:56:17:a0:47:ae:1d:ee:
8d:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:D7:AA:ED:C3:86:FD:F3:7B:28:3A:0B:FC:F8:8B:95:D2:91:1E:AA
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/qdeq7cOG_fN7KDoL_PiLldKRHqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64:ffff:0:18f:543:9e41/128
Signature Algorithm: sha256WithRSAEncryption
85:c3:6d:0e:78:3f:0e:bb:ee:09:40:53:3c:d2:7b:cc:dc:aa:
a1:58:ff:7b:8c:61:35:b8:e6:d6:5a:2e:57:ee:51:59:9c:b4:
b7:c1:be:d7:54:10:77:bd:44:75:5d:66:2a:63:df:d6:d7:91:
d2:dd:65:5d:a5:a8:f2:73:0c:8d:5d:c5:74:03:ae:cb:a6:13:
e8:e0:6c:22:c1:d2:14:7b:84:cb:18:ff:3e:5d:86:ce:cb:47:
3f:53:e9:81:89:17:4a:9f:64:f3:47:2a:e2:79:bf:38:ff:ca:
fe:13:9a:4d:54:fb:57:36:55:43:3b:d8:cd:8c:8a:b6:ca:9e:
9f:39:15:ed:df:67:fe:c1:2e:f0:7d:0e:ef:87:80:ff:54:db:
ed:4a:31:03:02:72:70:f2:ce:9d:88:24:30:f1:0a:51:b2:d0:
3d:11:79:11:c8:b8:b4:c2:a7:89:c4:e5:eb:4f:f7:39:cc:67:
93:f8:f5:65:5a:d3:f4:7d:e7:aa:a5:09:83:cb:be:14:76:0e:
99:31:2b:bc:5f:0b:53:a5:4e:ef:07:40:05:c3:28:37:54:41:
d5:84:d4:1c:09:53:50:4d:29:9a:f5:36:08:84:be:db:35:2f:
e4:85:a2:2b:ef:29:d0:d0:af:c5:f5:c0:46:f4:64:33:cb:dd:
11:8a:46:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:59 2024 by rpki-client on console-ams.rpki-client.org