Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/zGSXzCIA4YrH4KTU40de1110Uo0.roa
File: zGSXzCIA4YrH4KTU40de1110Uo0.roa (raw, json)
Hash identifier: 3yMgW6fRYnh8YKsYE/x2XprGVH1HR6KmDMql+K9BUwQ=
Subject key identifier: CC:64:97:CC:22:00:E1:8A:C7:E0:A4:D4:E3:47:5E:D7:5D:74:52:8D
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F7B4D78E28AE3172386B9352456DFFB7C
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/zGSXzCIA4YrH4KTU40de1110Uo0.roa
Signing time: Wed 15 May 2024 08:10:25 +0000
ROA not before: Wed 15 May 2024 08:10:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:7b:4d:78:e2:8a:e3:17:23:86:b9:35:24:56:df:fb:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 15 08:10:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cc6497cc2200e18ac7e0a4d4e3475ed75d74528d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:7d:c8:58:5b:ef:88:1d:ab:79:a2:9a:23:cf:
bb:72:ee:6c:94:97:b6:37:4f:35:6c:ae:c7:7a:e5:
28:09:cc:d9:f0:61:db:9c:5e:7a:6c:f2:d3:7f:12:
7b:1b:ea:5b:6a:1a:96:fb:4c:fc:85:00:e4:27:f8:
e5:35:69:8b:8b:b8:25:35:0f:32:27:1b:0a:51:e9:
d1:d8:20:d9:7c:26:24:0a:10:27:96:ae:c0:13:ac:
97:e0:98:da:94:b5:30:f9:81:80:55:1b:51:78:39:
33:0c:9e:5a:d5:68:f3:58:ef:96:c0:e7:22:6b:cc:
01:37:39:7e:09:93:35:da:58:d2:66:81:d7:14:e8:
05:98:f0:b0:d4:10:db:f6:33:1f:1d:6b:f2:f9:c7:
4c:2e:df:b7:cc:4f:0e:04:51:3c:83:9c:cf:d4:be:
e5:7f:08:b8:55:e2:a8:bc:17:4b:f4:65:7b:2a:af:
5b:1f:5b:c6:91:cc:17:27:1e:b1:49:f0:b9:3b:af:
e4:86:f1:8a:b0:fb:c6:a7:e5:29:b5:94:d8:97:64:
0d:e8:da:2c:da:60:86:ea:20:74:73:d1:c3:bc:c8:
8b:fa:15:23:91:13:23:cc:a3:f9:9b:5d:75:29:68:
43:d5:e2:1e:73:65:7a:4d:ed:f0:b0:62:87:5f:00:
b1:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:64:97:CC:22:00:E1:8A:C7:E0:A4:D4:E3:47:5E:D7:5D:74:52:8D
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/zGSXzCIA4YrH4KTU40de1110Uo0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
3a:8f:7c:fe:55:e8:98:3f:3c:1c:80:18:8e:86:f4:6d:e8:fa:
03:4b:44:0c:f2:39:56:0f:6c:9a:90:71:ca:cb:39:41:5b:8d:
a1:ec:8b:6f:42:ab:d8:20:14:b7:28:00:39:53:32:49:a1:0c:
4a:1c:a5:71:d2:02:24:3b:25:5d:b5:5e:94:66:ca:30:f3:cb:
3e:83:52:11:a8:30:ed:8e:d4:fd:fa:f9:d3:b0:2e:e7:47:36:
8d:ee:09:23:c6:39:92:96:0f:49:50:0d:dc:b4:4a:d9:73:0e:
b5:07:64:73:66:5a:e3:11:37:39:c1:32:c6:f8:b3:c0:03:c1:
26:e9:15:72:49:80:d7:85:61:30:87:8d:83:18:d8:03:60:23:
b6:4e:40:cb:01:28:d5:33:c1:3e:83:3b:03:68:12:8f:aa:12:
6c:01:89:fa:ed:02:65:dd:07:cc:83:c3:3b:34:b0:4f:0e:a3:
6e:9a:ae:83:62:14:09:8c:7b:cd:83:af:a2:4b:a8:b9:c5:ee:
cd:fe:d6:89:ad:9b:bd:ee:d6:8b:9e:11:c5:d0:9f:ab:d3:8e:
2f:e4:81:75:22:75:b4:27:f3:6f:e4:72:53:e1:5f:3c:a4:76:
2d:a2:99:36:16:d4:16:8a:a5:2a:2f:c5:95:85:bc:c1:b9:16:
e2:7c:f9:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:59 2024 by rpki-client on console-ams.rpki-client.org