Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/7sHmsxCHgqfMHtSKWg1Vargzaqs.roa
File: 7sHmsxCHgqfMHtSKWg1Vargzaqs.roa (raw, json)
Hash identifier: pS8eyPEkBk/fsSUrZvl2nL/2VhiDAYtU8ii57LC1urw=
Subject key identifier: EE:C1:E6:B3:10:87:82:A7:CC:1E:D4:8A:5A:0D:55:6A:B8:33:6A:AB
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F8D8C2BE51BD29361E1B989792D17C33C
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/7sHmsxCHgqfMHtSKWg1Vargzaqs.roa
Signing time: Sat 18 May 2024 21:12:04 +0000
ROA not before: Sat 18 May 2024 21:12:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:8d:8c:2b:e5:1b:d2:93:61:e1:b9:89:79:2d:17:c3:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 18 21:12:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eec1e6b3108782a7cc1ed48a5a0d556ab8336aab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:81:d0:3d:54:78:4e:3b:f2:7e:c2:42:a2:4e:
92:c2:e1:31:23:3e:08:e4:27:bd:8f:f7:cb:4c:2f:
a2:97:c1:dc:00:a5:c4:2e:21:32:d4:c1:c1:13:5c:
ea:f9:a2:b2:55:74:4c:35:0a:70:23:11:c8:c6:58:
f9:c2:13:62:e1:d4:57:12:f5:94:34:82:3d:8b:ba:
dd:07:95:b7:a8:7f:bc:c3:2e:81:91:d6:0d:20:a1:
ee:ef:c1:6e:46:d9:c9:23:bc:bb:fc:d5:b2:52:b9:
4f:e9:23:8d:2f:7b:1b:82:d2:27:b6:91:a5:d6:32:
cb:4b:66:3a:a4:18:4b:1b:0d:0b:c1:23:c6:d2:65:
da:0f:cf:2e:48:04:12:48:66:1f:9b:31:ec:e5:78:
63:37:ac:76:df:b8:2c:43:9e:5c:0a:2d:1d:e9:4c:
4d:bd:5d:67:d0:3f:a4:61:f8:c3:50:3f:88:70:55:
f2:d3:d9:ee:84:1b:cf:40:28:dd:8f:59:0a:de:5d:
26:88:4f:2b:8c:7d:84:d3:66:cc:b9:a2:bf:44:d0:
91:51:a6:59:2e:0f:5e:67:e6:0f:45:8a:cf:23:d4:
a0:61:b2:39:40:7e:36:07:55:07:46:9e:e9:ec:65:
d3:24:6a:de:93:bc:ec:69:7a:97:55:ab:9c:c2:1a:
3b:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:C1:E6:B3:10:87:82:A7:CC:1E:D4:8A:5A:0D:55:6A:B8:33:6A:AB
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/7sHmsxCHgqfMHtSKWg1Vargzaqs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
6c:fc:5b:6e:92:db:64:ee:0f:ec:2c:49:15:36:ae:25:ab:22:
0f:76:18:25:ef:d1:88:34:4d:18:de:2f:f9:48:1e:68:92:d0:
34:80:ef:0d:38:e5:dd:c0:d7:28:a7:37:c6:09:fe:69:90:3b:
4f:1f:cf:a0:12:b1:98:24:88:7f:85:bc:5a:81:94:e4:6c:a4:
ca:40:5a:38:52:c1:cd:19:ca:6d:1f:6b:17:60:ff:f4:61:62:
1e:92:2c:97:2d:b3:a3:60:cd:ff:f7:cc:74:e2:67:f3:82:37:
4c:b4:c2:9a:1e:e9:c6:ad:10:75:f5:b6:0e:c5:ed:81:9a:5c:
47:6a:55:7a:47:70:45:4e:a8:0c:2c:df:fa:0b:18:6c:36:66:
df:f5:77:83:ae:12:0a:d5:f7:fc:c3:41:bd:b3:ed:8d:0c:2a:
65:11:33:b4:bc:a7:14:90:c7:a5:b1:b4:7b:20:5d:85:c3:b3:
f2:4f:ca:98:ee:e0:8f:8c:9d:0e:f0:f4:63:41:6e:cd:e5:94:
1f:c4:9a:80:93:f3:f7:5d:b3:1e:9a:e5:7a:86:56:f4:10:96:
d9:ff:fa:ce:5a:45:59:8f:11:7c:a4:6d:fe:b4:98:a2:02:3b:
2c:b6:ac:f6:3a:4b:c1:42:b4:0a:c8:ed:80:eb:e1:7b:87:b3:
92:c2:68:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:58 2024 by rpki-client on console-ams.rpki-client.org