Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sR_J_cvuqhpMpM7P-XhULxmwH5o.roa
File: sR_J_cvuqhpMpM7P-XhULxmwH5o.roa (raw, json)
Hash identifier: xUPPMxjW6gKcByaRlxhuEiG4No4m4zQgRbh+1SdQhuE=
Subject key identifier: B1:1F:C9:FD:CB:EE:AA:1A:4C:A4:CE:CF:F9:78:54:2F:19:B0:1F:9A
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F7F2A3D06037B30EBDD276F688D03E1EB
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sR_J_cvuqhpMpM7P-XhULxmwH5o.roa
Signing time: Thu 16 May 2024 02:10:25 +0000
ROA not before: Thu 16 May 2024 02:10:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:7f:2a:3d:06:03:7b:30:eb:dd:27:6f:68:8d:03:e1:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 16 02:10:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b11fc9fdcbeeaa1a4ca4cecff978542f19b01f9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a2:07:9d:80:33:a8:4d:f4:a0:9c:a5:11:19:
c5:b7:b1:37:48:0f:56:73:5e:47:ec:7b:36:1f:f4:
c1:7d:fe:ca:90:56:65:33:45:ba:89:88:d9:7d:eb:
0a:de:0b:46:57:48:8d:21:b2:4f:8a:95:8d:8d:d0:
98:8b:e5:10:b8:e3:a8:2a:c2:4d:45:1e:0a:51:10:
c9:cb:d4:05:57:72:00:48:51:a6:96:55:3a:64:f3:
cf:0f:ad:57:f7:e5:32:80:23:a5:24:f7:f3:28:77:
48:57:03:79:da:a5:f1:a6:eb:55:c8:85:ac:fd:2b:
cc:e9:c5:6b:39:6f:bf:f0:ff:2a:d2:1d:b5:c5:2a:
f2:05:19:2f:6b:18:a5:1d:93:54:62:3d:86:96:70:
cb:f7:6e:68:4f:3d:74:7d:e1:05:e1:c9:a1:9a:de:
7b:9e:8d:4b:c6:cb:d0:26:97:2e:44:09:f6:a0:2b:
9e:4a:5a:05:40:24:dc:3f:d3:c6:72:ce:01:6b:14:
6e:f2:87:53:1d:ee:ae:55:bd:db:38:8a:0b:0e:e3:
17:0b:0e:cf:b2:19:ec:17:aa:3b:2e:84:3a:7c:21:
00:8f:7e:00:96:3c:c2:be:d4:2a:bf:2e:4f:34:64:
5f:7a:2d:fb:76:22:f8:80:b6:2e:1d:a8:4a:f4:7a:
a0:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:1F:C9:FD:CB:EE:AA:1A:4C:A4:CE:CF:F9:78:54:2F:19:B0:1F:9A
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sR_J_cvuqhpMpM7P-XhULxmwH5o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
7d:fa:57:93:ce:d3:b6:bb:d1:c4:19:b5:03:92:2f:aa:8e:93:
9e:62:69:21:97:82:42:eb:42:37:24:79:d1:05:09:89:72:f8:
a8:a2:f2:96:b9:f2:82:38:ef:47:60:b5:49:8e:50:57:47:90:
47:d1:59:d5:33:5a:93:dc:b2:7b:b7:44:08:49:42:7d:f4:6e:
34:7e:a7:91:ca:1b:d8:96:01:08:66:a8:dc:0c:08:49:37:25:
29:93:17:dc:7c:7b:d7:4e:64:90:52:0f:55:f5:89:53:17:df:
55:86:ba:2e:b5:34:c3:e4:1d:65:2a:80:b7:c6:30:20:3f:44:
a1:ec:ff:2b:55:74:b3:d0:53:fe:db:9c:1a:fe:6b:15:ca:f0:
50:61:64:0c:74:fb:5c:5e:aa:75:57:d8:e5:31:87:fa:e6:bc:
85:ba:d6:56:99:8e:f9:bf:9f:30:a8:6d:10:82:a3:28:ca:f8:
8c:d3:b0:1c:19:c9:f7:ae:92:1f:12:47:33:8a:da:e9:49:9d:
92:bd:e1:eb:e2:a6:d0:06:58:da:6b:ff:23:ab:7b:70:26:73:
cc:a2:59:e5:c9:70:1f:51:0c:ce:bc:c0:00:f7:04:fd:52:93:
9c:74:a1:04:d6:d9:3d:8e:d7:21:b4:fb:9b:f2:a7:11:04:a3:
ff:fd:32:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:59 2024 by rpki-client on console-ams.rpki-client.org