Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/BRfu_3luxgcH-nTMxcNiZyBtJdQ.roa
File: BRfu_3luxgcH-nTMxcNiZyBtJdQ.roa (raw, json)
Hash identifier: 83F2g209Q12sijUZM/fZ0I4hC/sPb2Xwa2CAXneiNE4=
Subject key identifier: 05:17:EE:FF:79:6E:C6:07:07:FA:74:CC:C5:C3:62:67:20:6D:25:D4
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018EFC0FA967077F92459C70F4DB70E520A8
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/BRfu_3luxgcH-nTMxcNiZyBtJdQ.roa
Signing time: Sat 20 Apr 2024 15:11:08 +0000
ROA not before: Sat 20 Apr 2024 15:11:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:fc:0f:a9:67:07:7f:92:45:9c:70:f4:db:70:e5:20:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: Apr 20 15:11:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0517eeff796ec60707fa74ccc5c36267206d25d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:80:0e:8e:42:04:53:63:9d:04:c2:59:02:b5:
cd:fe:09:2e:d0:59:46:35:57:2d:2b:53:ed:21:bc:
ee:ab:c6:71:f3:b3:68:78:8f:07:c9:b4:9d:aa:2b:
38:bf:6d:32:4d:76:ee:52:36:b6:aa:72:ff:59:86:
23:5a:0c:c0:33:66:84:89:0a:06:65:3a:e6:39:88:
2e:ba:3c:a6:0b:41:89:d4:7c:ce:83:ea:05:36:37:
a4:1c:5a:58:6b:5d:69:74:2b:59:55:d5:51:85:5e:
a9:6a:a5:40:74:b8:85:95:ce:e6:02:69:c1:f0:e0:
8b:f9:60:02:68:83:c3:90:ba:88:90:d2:3e:ce:68:
5b:d8:b1:db:b9:bb:04:3d:53:e6:d2:e8:13:c1:39:
50:18:65:f8:17:5a:9b:9b:36:d0:be:a6:4f:92:ae:
a4:42:89:52:13:a5:52:43:23:f7:96:45:40:1f:88:
e8:d5:15:d3:21:f2:44:19:6f:c9:59:26:9d:aa:be:
95:97:a1:a7:5a:7f:2e:e4:f4:e4:a7:d1:20:98:35:
f4:44:f6:b0:ef:7c:07:a9:cf:e0:b8:16:22:3a:b1:
56:3e:aa:80:0c:59:26:01:ab:b2:5e:94:3f:2b:40:
4b:6f:6a:3c:37:a8:e2:81:35:42:7c:d5:47:f4:d4:
cf:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:17:EE:FF:79:6E:C6:07:07:FA:74:CC:C5:C3:62:67:20:6D:25:D4
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/BRfu_3luxgcH-nTMxcNiZyBtJdQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
Signature Algorithm: sha256WithRSAEncryption
74:dd:6a:f1:1a:05:d3:19:40:f4:98:d3:cf:d2:d3:2c:32:76:
0f:92:ab:7d:00:a2:13:38:ed:c8:56:e6:f1:73:35:98:64:af:
d1:09:b4:fa:2c:1e:b5:f0:ab:05:d3:2a:7d:64:65:53:18:e2:
48:b8:46:87:52:32:3e:b8:cf:c2:fd:10:f3:ae:69:5a:be:07:
4b:90:8f:e1:7e:4c:63:13:f8:dc:19:4b:41:d6:fc:e1:fb:d3:
c2:89:9c:60:e0:69:1f:10:d1:09:e5:d3:09:7e:45:89:d3:4b:
e7:90:b6:f6:c5:f6:89:97:a9:86:5e:44:71:5e:e4:9c:de:51:
35:73:b3:fb:0d:12:b4:b7:9a:9d:1a:87:a8:01:41:43:29:75:
57:12:56:06:98:56:61:12:28:0b:a8:76:e5:40:09:2b:09:08:
2f:81:32:d7:00:1d:f8:fa:cc:15:f8:39:83:08:15:b4:f0:e6:
c5:24:19:92:d3:fa:ef:de:da:cb:e7:86:7b:60:af:db:b6:f4:
93:d2:b6:89:44:8d:ae:93:5c:e7:95:86:30:f1:2e:9f:b1:b5:
8d:d1:ff:99:ad:41:b1:5c:a3:73:df:f9:a6:8c:32:f7:e2:c1:
88:b3:23:03:5c:4e:0b:44:2b:b5:7a:7f:86:fd:f7:8a:1a:0c:
9d:3c:36:ce
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY78D6lnB3+SRZxw9Ntw5SCoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyYmVjNDFiZDJmM2IxNzlkZTA5NTE0MzA2NTMwYmQzZmJh
YzcwN2IwHhcNMjQwNDIwMTUxMTA4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNTE3ZWVmZjc5NmVjNjA3MDdmYTc0Y2NjNWMzNjI2NzIwNmQyNWQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyoAOjkIEU2OdBMJZArXN/gku0FlG
NVctK1PtIbzuq8Zx87NoeI8HybSdqis4v20yTXbuUja2qnL/WYYjWgzAM2aEiQoG
ZTrmOYguujymC0GJ1HzOg+oFNjekHFpYa11pdCtZVdVRhV6paqVAdLiFlc7mAmnB
8OCL+WACaIPDkLqIkNI+zmhb2LHbubsEPVPm0ugTwTlQGGX4F1qbmzbQvqZPkq6k
QolSE6VSQyP3lkVAH4jo1RXTIfJEGW/JWSadqr6Vl6GnWn8u5PTkp9EgmDX0RPaw
73wHqc/guBYiOrFWPqqADFkmAauyXpQ/K0BLb2o8N6jigTVCfNVH9NTPJQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAUX7v95bsYHB/p0zMXDYmcgbSXUMB8GA1UdIwQY
MBaAFLK+xBvS87F53glRQwZTC9P7rHB7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYt
ZDEyZjAzOWRiMmM5LzEvQlJmdV8zbHV4Z2NILW5UTXhjTmlaeUJ0SmRRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYtZDEyZjAzOWRiMmM5
LzEvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDwQAYMA0G
CSqGSIb3DQEBCwUAA4IBAQB03WrxGgXTGUD0mNPP0tMsMnYPkqt9AKITOO3IVubx
czWYZK/RCbT6LB618KsF0yp9ZGVTGOJIuEaHUjI+uM/C/RDzrmlavgdLkI/hfkxj
E/jcGUtB1vzh+9PCiZxg4GkfENEJ5dMJfkWJ00vnkLb2xfaJl6mGXkRxXuSc3lE1
c7P7DRK0t5qdGoeoAUFDKXVXElYGmFZhEigLqHblQAkrCQgvgTLXAB34+swV+DmD
CBW08ObFJBmS0/rv3trL54Z7YK/btvST0raJRI2uk1znlYYw8S6fsbWN0f+ZrUGx
XKNz3/mmjDL34sGIsyMDXE4LRCu1en+G/feKGgydPDbO
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:59 2024 by rpki-client on console-ams.rpki-client.org