Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/ylJ_FBoxVfEPQjhBUyj5gM7h7jQ.roa
File: ylJ_FBoxVfEPQjhBUyj5gM7h7jQ.roa (raw, json)
Hash identifier: p9lE4grOPcXJ1GHS0ms8QbAZ8JYOAiCalXVLZf/VhQE=
Subject key identifier: CA:52:7F:14:1A:31:55:F1:0F:42:38:41:53:28:F9:80:CE:E1:EE:34
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F336D3E8FF482E9FEB5F66BCBF3BC7D20
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/ylJ_FBoxVfEPQjhBUyj5gM7h7jQ.roa
Signing time: Wed 01 May 2024 09:12:28 +0000
ROA not before: Wed 01 May 2024 09:12:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18f:543:9e41/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:33:6d:3e:8f:f4:82:e9:fe:b5:f6:6b:cb:f3:bc:7d:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 1 09:12:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ca527f141a3155f10f4238415328f980cee1ee34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:af:41:6e:63:31:bc:eb:66:50:78:50:64:77:
6a:45:a5:01:01:15:a3:9f:8d:78:b4:42:0c:1b:a9:
27:42:fa:0c:4e:07:be:9b:57:1e:e3:df:94:0c:97:
1e:1d:69:53:e2:50:ba:00:50:56:e1:e8:92:97:a7:
7d:9e:99:42:46:46:b8:1b:d5:5e:b1:1d:58:2e:d2:
20:ee:e6:fb:e7:2a:e2:3a:9f:cf:3d:6b:48:7d:59:
c1:65:8f:b8:2e:c3:b0:a0:01:f3:34:42:e9:af:a0:
39:fe:fa:95:ff:8f:e8:53:58:4a:26:c6:b7:8e:11:
bf:2f:27:eb:17:41:5d:d2:87:48:42:5c:cf:4f:0e:
28:45:0f:f5:69:b2:ce:65:23:73:ae:21:38:f5:1c:
fe:0f:03:08:ce:c5:bd:dd:16:d7:91:ff:6b:8b:b9:
24:65:2c:16:ba:98:75:b7:35:c2:08:e0:2a:2d:a0:
81:a9:85:6e:94:39:45:f0:94:55:b7:31:0b:94:0c:
de:57:43:f8:c4:85:72:e6:25:60:f2:ee:18:96:bd:
b4:56:a0:a4:f5:10:79:ef:42:a0:a3:d2:f5:cd:77:
ab:5b:b0:b8:f6:1e:c2:9e:96:94:06:00:c7:dd:6f:
e8:2f:ba:6d:66:1e:1e:67:9d:5c:09:0e:60:74:32:
39:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:52:7F:14:1A:31:55:F1:0F:42:38:41:53:28:F9:80:CE:E1:EE:34
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/ylJ_FBoxVfEPQjhBUyj5gM7h7jQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
22:88:31:73:25:15:c6:6a:67:9c:c1:90:75:76:44:f3:9a:60:
a6:84:28:59:6e:8c:26:95:09:af:e9:a4:a2:34:83:80:24:fd:
c1:00:42:ed:3b:78:06:5b:e1:a3:2f:4a:82:f3:6f:0c:da:2f:
b7:c4:96:5c:95:a7:f9:9b:b0:b4:a8:6b:3e:10:61:dc:77:f7:
94:06:c2:aa:05:28:f2:6b:83:70:91:2a:cd:f0:d6:88:e4:ee:
e7:2c:6e:a4:dd:4a:a0:e7:b4:96:50:8c:5c:95:ad:a7:b2:02:
fb:77:f6:34:16:5a:07:08:8b:3c:07:2a:5b:6b:d0:88:f7:0a:
b6:25:24:f1:58:46:05:c5:33:93:1f:1f:7b:0c:ff:8c:ee:ea:
02:19:d3:47:f8:8d:f3:73:09:b4:9a:6c:e3:bd:0c:b6:e9:a4:
02:56:8f:27:63:70:21:5c:07:50:e7:41:cf:ee:3a:0b:03:1f:
6d:58:d5:78:53:f3:c4:df:7c:5f:28:ef:41:75:eb:7c:db:90:
ef:ef:ec:b0:fb:4a:9d:6c:da:f9:ed:0b:f7:1d:fd:d3:f7:a8:
8f:f2:19:ed:f9:8f:5e:7b:b4:cf:5e:7c:22:e1:82:2c:6f:44:
3f:3c:3d:ee:1a:07:5a:61:0f:93:39:bc:55:72:f1:8c:4c:7c:
54:bd:41:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:07 2024 by rpki-client on console-fra.rpki-client.org