Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/8Wv-l7Bwv6W_z3X9gmgpwjMWwso.roa
File: 8Wv-l7Bwv6W_z3X9gmgpwjMWwso.roa (raw, json)
Hash identifier: Ha28rQlRQiQnrsLIG9/DOJ7LuGrpinV1sRw4vGtKVPg=
Subject key identifier: F1:6B:FE:97:B0:70:BF:A5:BF:CF:75:FD:82:68:29:C2:33:16:C2:CA
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F852EC0DA39CE08038FEA257D7E6176E7
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/8Wv-l7Bwv6W_z3X9gmgpwjMWwso.roa
Signing time: Fri 17 May 2024 06:13:04 +0000
ROA not before: Fri 17 May 2024 06:13:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:85:2e:c0:da:39:ce:08:03:8f:ea:25:7d:7e:61:76:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 17 06:13:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f16bfe97b070bfa5bfcf75fd826829c23316c2ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c5:00:db:80:2d:01:fa:ee:20:08:42:9d:80:
7f:9a:15:21:ca:ea:a2:db:00:3d:84:08:ea:fd:ce:
8d:77:0b:74:65:35:e2:74:49:16:eb:ee:d2:5a:55:
2e:95:8b:e2:b0:03:0d:b0:e2:06:ca:cf:60:f2:49:
92:c4:b0:ff:e2:4c:88:8a:4e:78:56:86:5b:03:e0:
d8:67:d2:d6:5b:0b:8b:e4:6b:61:6f:7b:8f:eb:b9:
fb:74:e2:0c:ae:e0:9f:36:c8:93:73:c7:05:63:3c:
c8:79:f9:77:b3:b4:74:e6:f3:a2:d0:fd:1d:b9:a4:
4c:09:90:56:e1:81:11:fc:36:54:b8:c7:70:a5:07:
71:b6:de:cc:a8:8c:08:7f:5e:83:11:42:d8:9f:ff:
ff:c1:4d:36:1e:35:59:1f:e5:c2:40:21:81:2a:85:
55:0a:23:83:3b:7b:91:d5:91:b9:27:e7:88:84:10:
64:96:68:35:3a:e9:a6:fc:5a:17:6e:a8:b3:76:fb:
ec:4f:85:33:70:ff:84:c7:22:14:65:97:c0:2b:ac:
2b:be:45:4d:ec:ce:58:1a:9e:3a:16:4b:a6:8e:62:
36:9b:32:9c:68:d4:14:e6:f0:63:75:eb:f0:ec:57:
57:4b:ab:71:a4:56:a7:3a:31:b0:00:ae:0b:28:de:
91:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:6B:FE:97:B0:70:BF:A5:BF:CF:75:FD:82:68:29:C2:33:16:C2:CA
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/8Wv-l7Bwv6W_z3X9gmgpwjMWwso.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
05:5a:ea:c6:f1:93:85:94:fa:eb:83:12:87:05:f8:5d:9c:fc:
8d:45:af:e5:02:08:c5:ab:e3:14:da:7e:e5:73:eb:63:a7:dd:
da:6b:72:d2:14:aa:d3:61:74:f8:a7:93:aa:2d:7f:ee:3e:8f:
ec:e9:32:85:46:fe:31:46:2b:59:03:51:1c:bf:db:89:31:a0:
62:f0:f4:4c:58:bd:51:39:ae:84:c0:d5:e2:31:a8:24:5b:aa:
4f:5f:7f:d4:90:a6:dd:d0:6b:8b:39:0f:07:54:de:f3:aa:7a:
d1:06:81:d1:62:3f:bd:4f:ea:23:37:36:64:70:65:4f:b1:13:
4d:9c:f6:bc:cc:9b:ea:95:ba:98:f3:76:46:b4:17:df:3b:f7:
e8:19:1e:60:c3:d9:28:12:3d:f2:77:ff:d5:3f:fb:5d:de:70:
34:44:f4:2a:f1:8a:3e:50:d4:50:31:ea:8b:29:16:d6:d3:74:
77:bd:6e:96:67:34:bb:e3:9f:be:77:32:56:18:06:6a:75:38:
e2:36:09:d9:7a:14:17:da:bb:a8:d1:24:f0:cc:b2:b0:6d:55:
62:92:6c:36:61:7a:e3:2b:a0:6e:fd:4d:70:b6:98:ef:09:03:
7c:d0:b1:7d:01:aa:17:9a:0c:2a:bc:b7:78:0d:1b:46:31:37:
69:fc:c3:33
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY+FLsDaOc4IA4/qJX1+YXbnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyYmVjNDFiZDJmM2IxNzlkZTA5NTE0MzA2NTMwYmQzZmJh
YzcwN2IwHhcNMjQwNTE3MDYxMzA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMTZiZmU5N2IwNzBiZmE1YmZjZjc1ZmQ4MjY4MjljMjMzMTZjMmNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnMUA24AtAfruIAhCnYB/mhUhyuqi
2wA9hAjq/c6Ndwt0ZTXidEkW6+7SWlUulYvisAMNsOIGys9g8kmSxLD/4kyIik54
VoZbA+DYZ9LWWwuL5Gthb3uP67n7dOIMruCfNsiTc8cFYzzIefl3s7R05vOi0P0d
uaRMCZBW4YER/DZUuMdwpQdxtt7MqIwIf16DEULYn///wU02HjVZH+XCQCGBKoVV
CiODO3uR1ZG5J+eIhBBklmg1Oumm/FoXbqizdvvsT4UzcP+ExyIUZZfAK6wrvkVN
7M5YGp46FkumjmI2mzKcaNQU5vBjdevw7FdXS6txpFanOjGwAK4LKN6RQwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFPFr/pewcL+lv891/YJoKcIzFsLKMB8GA1UdIwQY
MBaAFLK+xBvS87F53glRQwZTC9P7rHB7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYt
ZDEyZjAzOWRiMmM5LzEvOFd2LWw3Qnd2NldfejNYOWdtZ3B3ak1Xd3NvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYtZDEyZjAzOWRiMmM5
LzEvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAAVa6sbxk4WU+uuDEocF
+F2c/I1Fr+UCCMWr4xTafuVz62On3dprctIUqtNhdPink6otf+4+j+zpMoVG/jFG
K1kDURy/24kxoGLw9ExYvVE5roTA1eIxqCRbqk9ff9SQpt3Qa4s5DwdU3vOqetEG
gdFiP71P6iM3NmRwZU+xE02c9rzMm+qVupjzdka0F9879+gZHmDD2SgSPfJ3/9U/
+13ecDRE9Crxij5Q1FAx6ospFtbTdHe9bpZnNLvjn753MlYYBmp1OOI2Cdl6FBfa
u6jRJPDMsrBtVWKSbDZheuMroG79TXC2mO8JA3zQsX0BqheaDCq8t3gNG0YxN2n8
wzM=
-----END CERTIFICATE-----
Generated at Sun Apr 20 18:14:30 2025 by rpki-client