Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/CPO_hfrxFFdPrbGc8wmfqGb6qZI.roa
File: CPO_hfrxFFdPrbGc8wmfqGb6qZI.roa (raw, json)
Hash identifier: 8yy9jqTPYCY4iOV5ymireRMYnTMLuHmnquso+VkNSR0=
Subject key identifier: 08:F3:BF:85:FA:F1:14:57:4F:AD:B1:9C:F3:09:9F:A8:66:FA:A9:92
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018EFA235FD36553A8349D29343EF0F39561
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/CPO_hfrxFFdPrbGc8wmfqGb6qZI.roa
Signing time: Sat 20 Apr 2024 06:13:25 +0000
ROA not before: Sat 20 Apr 2024 06:13:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:fa:23:5f:d3:65:53:a8:34:9d:29:34:3e:f0:f3:95:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: Apr 20 06:13:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=08f3bf85faf114574fadb19cf3099fa866faa992
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:bd:c2:66:07:ea:01:54:b4:27:b0:6e:dc:e8:
21:cf:10:c3:88:2d:46:f0:fd:b8:21:0b:f2:50:e7:
05:73:63:dd:67:d8:54:de:95:bb:ac:fc:64:a8:2f:
3d:cb:91:8a:86:fe:c1:7e:e1:e2:34:d7:69:e0:92:
d0:17:7a:d5:fd:ea:ab:03:b6:97:52:97:1d:07:f4:
35:f1:40:73:12:ed:24:16:29:a5:a4:e0:e6:72:fe:
e6:df:39:4b:47:09:c1:5a:97:77:42:1c:70:fe:22:
72:a0:4c:6e:32:e0:f1:25:86:aa:5b:1c:55:78:a9:
0a:fc:21:2a:0f:54:cf:72:93:65:5a:44:84:d8:27:
cf:7f:2e:80:71:66:a6:59:79:07:95:be:27:7f:f1:
d0:85:c5:c0:eb:d6:b9:e2:f1:98:f1:92:c9:2a:eb:
74:17:0c:f0:d4:22:df:77:aa:41:58:1d:9f:d8:db:
fd:23:5e:b9:16:0b:e4:b5:df:1e:00:e3:57:8b:4e:
95:bc:72:f0:be:9c:35:35:b4:62:99:8e:c6:64:66:
68:0d:35:18:03:a2:76:97:29:17:aa:6f:7f:dd:e0:
8c:07:b9:91:df:fe:97:9b:08:dd:97:cb:3c:c3:60:
99:0f:0a:3b:87:a3:7a:00:28:a5:59:42:2c:da:32:
92:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:F3:BF:85:FA:F1:14:57:4F:AD:B1:9C:F3:09:9F:A8:66:FA:A9:92
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/CPO_hfrxFFdPrbGc8wmfqGb6qZI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
Signature Algorithm: sha256WithRSAEncryption
83:27:c1:fb:9f:fa:f5:3e:07:21:11:41:37:ee:ec:13:a9:45:
09:4b:c5:72:ee:e6:63:a0:cb:bc:88:4f:1b:c3:96:6a:34:95:
ae:09:27:c2:c4:cc:fc:97:f8:5a:1f:d0:84:51:b7:08:7d:8e:
0c:bd:7d:8e:77:ba:71:6c:8b:06:7e:75:0a:e8:c0:e4:3c:21:
2a:e6:4a:c7:74:77:9a:e1:f5:b5:7a:4b:1f:fa:64:01:19:1d:
aa:4f:1c:c6:23:e5:75:34:18:4c:77:58:0c:3b:ca:72:22:9d:
4c:42:d8:f0:77:36:3f:23:2f:a8:05:f5:cb:84:7d:0d:33:a2:
ed:cc:9b:1f:ad:65:a3:de:1a:79:f6:7d:c3:67:b7:9e:31:14:
ff:fe:75:09:32:f2:11:de:01:85:b7:d0:45:da:74:93:b2:f6:
bf:9d:61:51:fb:39:6d:2a:14:72:f3:c2:21:f9:bb:b0:79:6e:
7b:03:42:5b:7d:c8:2c:65:d4:68:ee:02:f8:33:3c:7b:72:09:
d0:f2:d9:c3:10:c2:e1:8b:a1:18:5a:e4:23:66:d5:c8:71:bf:
51:d0:8c:25:ad:d5:f4:4b:60:77:8f:a3:13:d8:50:da:5f:5b:
27:ad:79:d7:7d:2e:70:ae:17:46:27:79:30:52:51:98:78:c3:
3d:c3:f6:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:04 2024 by rpki-client on console-fra.rpki-client.org