Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/MyuxlA3j9mHmi2kPI1QhFCyLnR0.roa
File: MyuxlA3j9mHmi2kPI1QhFCyLnR0.roa (raw, json)
Hash identifier: a+xotYh5PK34JogDAKnSsjoCMusBK697NkJXidU80Zw=
Subject key identifier: 33:2B:B1:94:0D:E3:F6:61:E6:8B:69:0F:23:54:21:14:2C:8B:9D:1D
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F91671B1F680F6037AEDB61DEF12928B4
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/MyuxlA3j9mHmi2kPI1QhFCyLnR0.roa
Signing time: Sun 19 May 2024 15:10:04 +0000
ROA not before: Sun 19 May 2024 15:10:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:91:67:1b:1f:68:0f:60:37:ae:db:61:de:f1:29:28:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 19 15:10:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=332bb1940de3f661e68b690f235421142c8b9d1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:5a:bc:b4:3d:4c:fd:11:28:d6:7c:b6:91:2a:
f0:a6:70:0f:f2:5f:cb:90:97:dc:b9:d8:b4:78:14:
4f:e9:54:fc:8b:99:9f:e8:84:e0:0e:26:85:da:5b:
9d:6e:45:3b:1f:a0:39:be:fc:ab:d9:d4:98:76:cf:
3a:f1:38:1c:39:c6:fa:9b:c3:71:41:b0:2e:b1:d4:
68:3a:07:df:34:0f:5c:09:82:0b:36:76:a8:3d:17:
6d:b3:0a:71:3d:3c:7b:e8:46:6d:fe:7e:5f:e2:6d:
35:72:37:24:db:e9:7e:0b:c9:a7:d0:15:61:58:ef:
f2:a0:16:40:66:1f:7a:1c:0f:51:d3:b0:4c:ad:12:
63:0d:6b:d6:a8:c8:1c:f1:f3:e1:9e:95:dd:9f:e7:
70:20:03:f2:a1:a4:3c:dd:af:de:35:8d:9e:c0:62:
12:c1:29:87:31:59:c8:08:e9:5e:1e:b5:dd:30:dd:
8c:ea:5d:bb:6d:e1:35:a3:3a:98:35:05:59:b4:9a:
5f:83:9b:24:a1:56:7c:61:a3:12:a1:ca:51:69:ed:
db:63:c5:b0:d7:b7:07:65:4a:85:dc:40:fe:78:6c:
aa:f0:2a:fa:39:37:4a:00:c5:f4:b1:11:16:d0:75:
3a:15:cd:5c:8a:e2:09:09:e1:6e:74:d5:89:51:43:
15:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:2B:B1:94:0D:E3:F6:61:E6:8B:69:0F:23:54:21:14:2C:8B:9D:1D
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/MyuxlA3j9mHmi2kPI1QhFCyLnR0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
99:ef:01:07:62:8f:e4:64:a0:84:63:4d:bd:75:30:21:b2:a1:
63:08:61:c9:60:60:92:ac:23:22:06:b7:ca:b9:e2:dd:9e:26:
13:71:0d:ee:6f:a7:ff:f6:97:7e:98:7a:38:5e:23:bb:e2:db:
5e:09:00:b2:28:cd:c1:ca:11:cb:2a:ab:28:2b:0c:37:81:5d:
3d:b9:d2:50:7e:71:3e:5c:46:ed:12:73:ee:3d:a1:0b:bb:94:
dd:fc:5a:4c:34:ba:4e:07:e7:bb:47:24:de:4d:57:68:da:e4:
d5:d3:fd:15:cf:4e:b7:d0:34:89:a4:71:1a:a3:cf:fd:ac:17:
c6:8b:af:6a:2f:53:90:50:af:de:10:d3:40:40:83:02:0d:e4:
92:55:b0:44:45:68:cd:a2:fc:49:40:45:d7:fa:a0:39:28:1a:
98:9f:da:cc:54:d9:49:d1:dc:5c:54:c8:41:7c:50:90:8a:a1:
ef:bb:06:b3:e9:60:dd:08:20:85:b3:78:5a:98:c0:90:ac:67:
71:07:61:eb:56:5f:40:a6:5f:9f:02:cf:08:0a:f9:3f:32:d5:
3d:87:3c:5e:ee:41:a5:0f:a2:1f:38:07:2d:05:ba:b6:25:7c:
f7:58:47:a7:62:5c:3c:5e:0c:84:2a:1b:4d:cb:86:09:bd:1e:
b9:b5:08:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:36:09 2025 by rpki-client