Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/zMj3yEcZWKON_2dGf9IauBmQ26c.roa
File: zMj3yEcZWKON_2dGf9IauBmQ26c.roa (raw, json)
Hash identifier: YJGeXo7gS2ABRf5Uq4cmdOquQYCjrJlsep0ooTI2fIA=
Subject key identifier: CC:C8:F7:C8:47:19:58:A3:8D:FF:67:46:7F:D2:1A:B8:19:90:DB:A7
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F29C3672E3218A1B8C599E19927AD86A7
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/zMj3yEcZWKON_2dGf9IauBmQ26c.roa
Signing time: Mon 29 Apr 2024 12:10:22 +0000
ROA not before: Mon 29 Apr 2024 12:10:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18f:543:9e41/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:29:c3:67:2e:32:18:a1:b8:c5:99:e1:99:27:ad:86:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: Apr 29 12:10:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ccc8f7c8471958a38dff67467fd21ab81990dba7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:85:9a:a2:18:c0:c7:1d:5e:69:a8:fb:8c:4f:
f8:4f:3e:88:19:22:6c:3e:27:b0:6f:4a:7c:a5:6d:
d4:a7:82:d1:6d:cd:07:db:ca:78:e4:6f:91:81:e4:
35:15:a5:0c:f7:c9:25:f5:5c:65:66:aa:83:9e:ae:
e7:2e:fd:b2:58:79:32:8b:0b:03:b3:76:f8:e0:25:
31:08:fa:76:2b:8d:3b:3a:f3:f9:84:22:d2:9c:a3:
6d:e1:b2:c5:48:5f:ce:08:6e:02:6e:d9:d4:24:f7:
8b:87:7f:ab:32:d0:09:71:83:ee:0f:ef:00:65:41:
80:8d:19:77:d4:86:85:e2:c1:c1:54:8d:8b:24:ed:
87:53:42:a3:46:2b:9d:8e:24:6f:25:d8:bd:4f:ec:
67:dc:96:d6:8a:9e:26:d2:06:25:7a:e8:94:14:a2:
06:cb:7e:58:a6:59:22:0d:ba:64:ed:20:8a:67:49:
af:1f:b4:f8:8b:4a:e4:00:af:8e:4b:44:e8:b1:bc:
74:9c:e9:38:d5:a4:cb:4a:50:2c:6f:03:9f:56:2e:
34:39:e0:07:9c:7b:a4:a1:40:a5:2d:c3:37:61:1c:
79:d7:e9:53:71:8b:f8:80:06:39:b4:25:a7:55:1e:
9b:c2:27:96:4b:3d:3c:d5:57:ee:67:a0:5f:e6:ad:
f1:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:C8:F7:C8:47:19:58:A3:8D:FF:67:46:7F:D2:1A:B8:19:90:DB:A7
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/zMj3yEcZWKON_2dGf9IauBmQ26c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
c3:40:9b:18:cc:bd:4e:0c:8e:f1:9b:5a:e0:44:a2:eb:42:7a:
04:60:d0:1d:a5:62:1a:2d:5d:67:8b:dc:91:45:a1:8c:51:40:
ea:05:09:44:e6:c6:9e:d2:20:25:8d:54:05:b9:11:bc:a3:c5:
dc:1f:de:2c:6e:fb:62:d9:d9:52:10:c1:b9:d2:90:b3:f4:cd:
e6:42:70:b9:1b:fa:9d:44:71:85:a6:bf:b2:94:19:5e:e7:39:
84:bc:27:3b:cb:0c:ae:b2:26:a8:a1:ff:46:e0:c4:63:bb:3d:
b2:ec:91:f0:e0:a7:ec:ba:db:b9:c5:9d:bd:66:07:7f:1b:5d:
33:f3:3b:e8:3c:c8:6a:e7:ff:d7:e7:2d:8b:52:c9:96:33:49:
79:b6:93:01:20:3f:78:40:7d:df:b9:91:72:8d:bc:45:22:d5:
18:19:fc:0a:dc:3d:2f:a2:1b:e1:d6:0c:83:cc:b3:f9:e1:41:
4b:bf:13:96:a8:26:c9:8f:94:cc:af:8f:11:d7:c2:3c:45:e6:
ec:68:60:ba:ae:8c:87:d6:1f:65:bd:dc:c2:4c:2d:22:77:87:
bc:0a:b3:d7:8b:e1:a3:af:cc:09:f3:f1:e9:f9:60:d2:0b:56:
cc:b4:99:c3:c2:bd:b8:35:b1:b1:3e:a4:95:f4:0f:e9:e3:81:
4e:ff:1f:3f
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY8pw2cuMhihuMWZ4ZknrYanMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyYmVjNDFiZDJmM2IxNzlkZTA5NTE0MzA2NTMwYmQzZmJh
YzcwN2IwHhcNMjQwNDI5MTIxMDIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjY2M4ZjdjODQ3MTk1OGEzOGRmZjY3NDY3ZmQyMWFiODE5OTBkYmE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxYWaohjAxx1eaaj7jE/4Tz6IGSJs
Piewb0p8pW3Up4LRbc0H28p45G+RgeQ1FaUM98kl9VxlZqqDnq7nLv2yWHkyiwsD
s3b44CUxCPp2K407OvP5hCLSnKNt4bLFSF/OCG4CbtnUJPeLh3+rMtAJcYPuD+8A
ZUGAjRl31IaF4sHBVI2LJO2HU0KjRiudjiRvJdi9T+xn3JbWip4m0gYleuiUFKIG
y35YplkiDbpk7SCKZ0mvH7T4i0rkAK+OS0Tosbx0nOk41aTLSlAsbwOfVi40OeAH
nHukoUClLcM3YRx51+lTcYv4gAY5tCWnVR6bwieWSz081VfuZ6Bf5q3xiQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFMzI98hHGVijjf9nRn/SGrgZkNunMB8GA1UdIwQY
MBaAFLK+xBvS87F53glRQwZTC9P7rHB7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYt
ZDEyZjAzOWRiMmM5LzEvek1qM3lFY1pXS09OXzJkR2Y5SWF1Qm1RMjZjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYtZDEyZjAzOWRiMmM5
LzEvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAMNAmxjMvU4MjvGbWuBE
outCegRg0B2lYhotXWeL3JFFoYxRQOoFCUTmxp7SICWNVAW5Ebyjxdwf3ixu+2LZ
2VIQwbnSkLP0zeZCcLkb+p1EcYWmv7KUGV7nOYS8JzvLDK6yJqih/0bgxGO7PbLs
kfDgp+y627nFnb1mB38bXTPzO+g8yGrn/9fnLYtSyZYzSXm2kwEgP3hAfd+5kXKN
vEUi1RgZ/ArcPS+iG+HWDIPMs/nhQUu/E5aoJsmPlMyvjxHXwjxF5uxoYLqujIfW
H2W93MJMLSJ3h7wKs9eL4aOvzAnz8en5YNILVsy0mcPCvbg1sbE+pJX0D+njgU7/
Hz8=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:59 2024 by rpki-client on console-ams.rpki-client.org