Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/G2tj9IePT564-6pUNmxlsFFvNP4.roa
File: G2tj9IePT564-6pUNmxlsFFvNP4.roa (raw, json)
Hash identifier: dS+y2FHiOtBPgfI5KKO/KTZWgmMIliSo5f9gJsxEYAY=
Subject key identifier: 1B:6B:63:F4:87:8F:4F:9E:B8:FB:AA:54:36:6C:65:B0:51:6F:34:FE
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F8E9ED42A2D03B341C69A02F95F33CFD3
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/G2tj9IePT564-6pUNmxlsFFvNP4.roa
Signing time: Sun 19 May 2024 02:12:04 +0000
ROA not before: Sun 19 May 2024 02:12:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:8e:9e:d4:2a:2d:03:b3:41:c6:9a:02:f9:5f:33:cf:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 19 02:12:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1b6b63f4878f4f9eb8fbaa54366c65b0516f34fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:86:80:96:73:71:48:15:ef:bd:e7:21:c5:f0:
8e:ba:b5:33:f6:4d:3f:f6:be:0f:0e:bf:01:2f:05:
83:88:1c:37:ea:95:33:8f:22:cf:c6:9e:f8:29:9b:
07:bc:45:bb:42:2e:27:8a:24:09:92:86:34:10:06:
21:02:bd:fc:54:7a:85:53:6e:84:3b:54:89:b4:23:
88:8e:d6:d9:8c:3f:0c:21:5d:ea:d9:58:12:ff:2c:
73:b8:07:5c:1c:3b:a5:d0:c2:c7:79:05:b0:d2:7e:
b5:f0:98:c3:b4:66:4a:6c:3d:05:ef:4c:03:bb:90:
2b:0c:be:09:1d:93:45:58:34:37:88:a7:4d:b2:a6:
10:53:2e:47:69:98:d5:ec:80:13:4e:da:6e:1c:2f:
4c:13:9d:c3:69:a9:30:24:59:55:ba:ee:00:04:26:
ca:ab:74:fd:fc:00:9b:35:54:8d:0b:e2:8d:76:af:
fb:f4:a3:6d:27:38:03:59:32:2a:61:ce:c8:c2:c8:
71:5e:9b:62:04:9f:b1:f6:32:e5:e2:49:77:58:7d:
ca:3e:31:b2:88:fd:cc:77:c5:1a:21:e1:65:6a:67:
c1:74:70:d6:6a:29:07:4b:e1:5f:6f:55:dd:ec:8d:
a0:8e:3b:0d:b0:dd:a4:c1:3a:ac:e8:83:ad:09:f7:
b3:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:6B:63:F4:87:8F:4F:9E:B8:FB:AA:54:36:6C:65:B0:51:6F:34:FE
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/G2tj9IePT564-6pUNmxlsFFvNP4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
62:2e:70:14:3b:22:0d:49:5a:ad:bd:99:dd:78:f4:0c:f8:68:
60:0a:55:d1:df:48:46:e4:54:97:a1:34:31:b3:95:7d:52:79:
02:7e:4d:3a:fa:a7:9f:4c:a1:da:f4:2e:9f:4b:83:35:b0:4c:
34:75:84:bf:d0:1c:6d:43:16:9f:66:8d:24:fe:75:e7:fc:8b:
cc:33:d4:66:32:de:79:d6:e1:49:a3:91:cc:1f:57:0e:ab:ee:
4a:02:8e:be:9c:13:f1:ca:3a:33:78:67:f3:37:86:9d:76:17:
38:0a:59:06:f0:a8:03:0a:90:80:d1:8f:66:17:29:ca:c5:07:
e1:5b:91:8b:2e:23:b6:5c:ef:47:33:41:ae:53:9e:b5:f3:e4:
47:71:dc:98:2b:e0:7b:6a:ce:60:8f:7f:18:da:1b:81:89:9c:
b8:eb:9e:98:80:29:01:fc:2a:64:6f:55:c3:3a:64:2c:49:97:
2c:e7:2a:88:d1:b2:f3:51:74:43:1d:c5:91:6a:51:e3:04:aa:
61:22:1f:ea:72:2a:a7:c9:5d:3b:11:e0:49:36:21:09:15:71:
8d:5f:6d:ea:70:0b:4d:19:f7:be:0c:98:ca:8e:cf:3b:2c:c1:
c6:ba:85:60:2d:da:4f:8f:4c:a2:a3:fb:54:f8:01:a3:d8:a8:
e4:4b:a1:67
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY+OntQqLQOzQcaaAvlfM8/TMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyYmVjNDFiZDJmM2IxNzlkZTA5NTE0MzA2NTMwYmQzZmJh
YzcwN2IwHhcNMjQwNTE5MDIxMjA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYjZiNjNmNDg3OGY0ZjllYjhmYmFhNTQzNjZjNjViMDUxNmYzNGZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyoaAlnNxSBXvvechxfCOurUz9k0/
9r4PDr8BLwWDiBw36pUzjyLPxp74KZsHvEW7Qi4niiQJkoY0EAYhAr38VHqFU26E
O1SJtCOIjtbZjD8MIV3q2VgS/yxzuAdcHDul0MLHeQWw0n618JjDtGZKbD0F70wD
u5ArDL4JHZNFWDQ3iKdNsqYQUy5HaZjV7IATTtpuHC9ME53DaakwJFlVuu4ABCbK
q3T9/ACbNVSNC+KNdq/79KNtJzgDWTIqYc7IwshxXptiBJ+x9jLl4kl3WH3KPjGy
iP3Md8UaIeFlamfBdHDWaikHS+Ffb1Xd7I2gjjsNsN2kwTqs6IOtCfezcQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFBtrY/SHj0+euPuqVDZsZbBRbzT+MB8GA1UdIwQY
MBaAFLK+xBvS87F53glRQwZTC9P7rHB7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYt
ZDEyZjAzOWRiMmM5LzEvRzJ0ajlJZVBUNTY0LTZwVU5teGxzRkZ2TlA0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYtZDEyZjAzOWRiMmM5
LzEvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAGIucBQ7Ig1JWq29md14
9Az4aGAKVdHfSEbkVJehNDGzlX1SeQJ+TTr6p59Modr0Lp9LgzWwTDR1hL/QHG1D
Fp9mjST+def8i8wz1GYy3nnW4UmjkcwfVw6r7koCjr6cE/HKOjN4Z/M3hp12FzgK
WQbwqAMKkIDRj2YXKcrFB+FbkYsuI7Zc70czQa5TnrXz5Edx3Jgr4HtqzmCPfxja
G4GJnLjrnpiAKQH8KmRvVcM6ZCxJlyznKojRsvNRdEMdxZFqUeMEqmEiH+pyKqfJ
XTsR4Ek2IQkVcY1fbepwC00Z974MmMqOzzsswca6hWAt2k+PTKKj+1T4AaPYqORL
oWc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:59 2024 by rpki-client on console-ams.rpki-client.org