Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/ES8LKDNVlZvt08RhfbYvinlvmQ8.roa
File: ES8LKDNVlZvt08RhfbYvinlvmQ8.roa (raw, json)
Hash identifier: H0zwKEiWwC4XRewQmcSPiwZFO0z/LtEd39m1/7/g4CM=
Subject key identifier: 11:2F:0B:28:33:55:95:9B:ED:D3:C4:61:7D:B6:2F:8A:79:6F:99:0F
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F78835D53A64099C2BECB950E9E6DD590
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/ES8LKDNVlZvt08RhfbYvinlvmQ8.roa
Signing time: Tue 14 May 2024 19:10:25 +0000
ROA not before: Tue 14 May 2024 19:10:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:78:83:5d:53:a6:40:99:c2:be:cb:95:0e:9e:6d:d5:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 14 19:10:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=112f0b283355959bedd3c4617db62f8a796f990f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:24:50:f2:78:05:70:5c:90:dc:b2:53:07:83:
e0:13:49:d9:01:4f:a3:a1:5a:af:9f:d7:9b:a2:95:
a4:12:e5:94:aa:5a:43:0e:bb:4d:00:ad:a5:dd:db:
0b:d9:74:9d:33:36:77:02:59:09:9a:60:1d:75:f9:
0a:ac:c9:7a:1f:f8:49:7a:0a:25:d0:96:8e:8e:7d:
14:a1:eb:2d:6b:2d:01:83:b2:2e:10:02:8b:08:bb:
93:1f:8c:53:3f:1a:7b:ce:31:29:ee:38:66:8d:85:
5c:89:0e:18:44:e2:93:ae:94:f6:aa:6b:55:05:5e:
61:ed:f2:88:aa:dd:4a:f3:d1:75:e9:5c:bb:17:2a:
d3:b3:42:db:33:d1:95:70:84:b3:29:e5:c6:cd:dd:
ef:68:bc:ca:91:35:37:70:84:e3:26:48:fc:cc:16:
7b:3b:5d:65:1f:5c:6a:a3:f0:20:10:a9:7b:c4:24:
b9:e1:c5:9f:cb:1f:ee:ef:06:f8:ee:71:81:a6:9b:
a8:bb:6a:44:fe:e6:d7:18:10:02:d4:18:16:17:bc:
7c:c5:32:90:26:b1:a7:3e:a6:1c:ed:c4:28:b8:bd:
2e:48:54:b8:24:3d:43:d7:61:7b:82:d0:b2:4d:16:
a4:c0:79:48:e1:89:85:bf:9b:47:0b:0d:6e:cd:92:
e1:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:2F:0B:28:33:55:95:9B:ED:D3:C4:61:7D:B6:2F:8A:79:6F:99:0F
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/ES8LKDNVlZvt08RhfbYvinlvmQ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
21:4b:07:17:2b:74:86:02:ac:d1:ab:58:f4:64:03:56:3e:c5:
80:2e:1d:22:51:f1:f3:9a:84:e0:fb:53:4e:65:8d:1a:e6:6e:
37:03:da:be:11:20:3e:51:60:56:82:91:69:b5:bb:8a:1c:b5:
97:59:13:bb:2d:67:80:7a:fb:64:1a:7f:cb:22:05:f0:01:57:
cb:7e:f1:39:e1:0b:12:b8:d1:6d:6e:8c:8c:ae:dc:e4:e1:4b:
3f:b4:80:60:91:28:77:86:c1:ac:13:00:a4:00:c0:50:4f:09:
bd:58:40:ef:e4:2c:54:06:d3:df:53:d3:13:7e:cd:09:57:99:
69:9e:3c:3d:88:2e:1e:67:fe:70:e1:62:89:db:ef:d2:ea:de:
94:12:90:70:f2:b6:0b:0e:37:74:5f:42:6e:50:a0:b4:1b:c1:
e2:e0:7f:db:fc:02:0f:55:37:e7:63:b8:df:ac:f1:81:e3:6e:
c8:2f:6c:00:c8:8c:4b:53:f8:23:d0:63:cb:ba:5f:22:92:f1:
59:fa:7a:99:e8:0a:c0:7c:22:22:bd:75:3e:ad:7e:fb:bb:d2:
9a:7f:97:4a:5a:68:05:eb:7c:f1:d8:1a:a1:33:a4:29:ae:f8:
a1:9e:3a:0a:4d:43:d3:21:29:b6:c2:50:66:4e:58:20:42:a0:
00:4d:33:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:04 2024 by rpki-client on console-fra.rpki-client.org