Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/JOyRtmkh--yx2u84LSZDkvIqcAU.roa
File: JOyRtmkh--yx2u84LSZDkvIqcAU.roa (raw, json)
Hash identifier: 8wFUOddToyKMw1cTfIk7PnP7qkL1ggC8UKXeLxIwDWk=
Subject key identifier: 24:EC:91:B6:69:21:FB:EC:B1:DA:EF:38:2D:26:43:92:F2:2A:70:05
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F2AD60EB8F309B0710F34B8BDDA009048
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/JOyRtmkh--yx2u84LSZDkvIqcAU.roa
Signing time: Mon 29 Apr 2024 17:10:22 +0000
ROA not before: Mon 29 Apr 2024 17:10:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18f:543:9e41/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:2a:d6:0e:b8:f3:09:b0:71:0f:34:b8:bd:da:00:90:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: Apr 29 17:10:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=24ec91b66921fbecb1daef382d264392f22a7005
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:0e:97:df:8b:a0:fc:65:96:cd:28:b8:ce:25:
48:1d:78:c5:3c:4d:ff:8b:0a:7f:6f:31:c1:eb:23:
33:e7:83:1b:39:23:70:4c:c4:1c:c1:e8:24:2e:f2:
70:bf:74:90:ec:7c:07:22:48:80:5c:dd:8f:e8:4d:
26:96:48:1f:3b:82:81:e8:73:b1:45:de:22:8f:00:
40:c9:18:46:77:79:9b:d9:ee:ee:f0:40:77:15:a8:
62:52:f1:d0:76:43:44:0f:14:04:d5:73:98:24:50:
38:d0:cf:47:63:48:e0:b2:b3:95:d5:e7:42:f0:65:
08:c0:0c:04:91:67:ff:41:9f:c8:4b:95:37:96:14:
14:20:64:63:fd:c1:7e:53:91:4b:0e:cc:33:fb:f7:
dd:87:36:dd:f0:2c:67:b4:fd:0f:87:ff:bc:5c:07:
57:72:37:f3:b4:aa:13:a5:42:79:f1:a3:65:16:96:
34:46:fc:d1:0d:a5:4e:af:11:89:48:aa:34:ba:f9:
1d:9a:81:6b:3e:c5:ef:16:ef:f3:6b:5f:cc:66:2a:
ca:df:79:0a:c7:9f:69:19:74:f0:0f:6e:40:6c:3f:
fb:36:81:03:ee:bd:7c:c2:67:a1:af:f9:30:e6:a7:
d9:6e:52:ba:9a:12:09:d3:29:e8:76:91:5a:1e:f3:
b7:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:EC:91:B6:69:21:FB:EC:B1:DA:EF:38:2D:26:43:92:F2:2A:70:05
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/JOyRtmkh--yx2u84LSZDkvIqcAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
be:e9:18:ec:c1:97:89:0b:28:5e:23:be:c0:4b:68:f6:45:08:
52:c0:be:40:18:ee:8a:dc:c7:20:11:65:7d:26:9f:97:ac:68:
88:08:2d:18:56:42:41:6a:ad:f6:7f:c7:09:e4:87:cd:84:f1:
91:13:dc:ab:29:ed:bd:31:df:3a:34:cb:fe:cd:36:18:ed:33:
6a:05:02:85:ae:c6:15:58:79:2f:60:9f:db:5c:f3:c6:4b:84:
15:16:fe:18:e4:89:54:8b:bf:93:cf:07:d0:6f:12:88:a6:2c:
32:45:cd:a9:12:8b:52:b8:57:54:b8:54:f9:f0:b6:b2:59:d8:
5d:3b:64:08:4e:42:7c:b3:83:14:f2:ba:64:fb:11:22:24:38:
8c:e4:b8:d6:f0:1a:1c:2f:16:4a:7f:d4:af:2f:e8:c2:13:49:
8e:4a:bf:28:2a:e5:b5:70:32:bb:82:50:e2:4b:1e:4d:65:70:
0e:ef:68:4a:22:d5:93:cb:f4:28:70:05:1d:6f:66:de:f9:6b:
2b:77:8b:d5:2d:73:ea:88:2b:d6:59:3a:34:ae:7d:c1:ee:a0:
cf:de:55:3a:dc:74:7e:4f:c2:22:9d:32:57:df:05:2f:24:fc:
9a:ff:e9:50:ec:87:fb:98:ef:aa:b2:af:e1:60:77:0e:20:0f:
f9:a3:12:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:07 2024 by rpki-client on console-fra.rpki-client.org