Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/TjvnDXuxwuZ95B5dtg-lZ46tywU.roa
File: TjvnDXuxwuZ95B5dtg-lZ46tywU.roa (raw, json)
Hash identifier: q8Kkq+HEZvX54evPuEvHK0cuzlKuxaSa4nPpucjI//w=
Subject key identifier: 4E:3B:E7:0D:7B:B1:C2:E6:7D:E4:1E:5D:B6:0F:A5:67:8E:AD:CB:05
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F10A919ECC2D40D290A9900DE66E2EAF6
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/TjvnDXuxwuZ95B5dtg-lZ46tywU.roa
Signing time: Wed 24 Apr 2024 15:11:08 +0000
ROA not before: Wed 24 Apr 2024 15:11:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:18f:543:9e41/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:10:a9:19:ec:c2:d4:0d:29:0a:99:00:de:66:e2:ea:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: Apr 24 15:11:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4e3be70d7bb1c2e67de41e5db60fa5678eadcb05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:19:a0:5c:61:49:68:87:d1:39:03:43:47:64:
8a:71:62:ff:84:17:cc:3f:aa:0b:db:56:3c:2e:3a:
31:04:76:8a:4f:56:7a:7b:df:69:3a:57:da:f0:d1:
bd:a3:33:c5:b0:7e:fe:55:7a:c0:5d:fc:41:c5:95:
1c:f4:e8:ed:b1:8d:7d:9e:1f:35:8e:73:3b:0a:ff:
94:92:8a:eb:ac:d9:b6:0f:b1:ab:e5:70:02:0f:e2:
34:8e:4a:6e:26:32:11:47:4e:e9:d7:5a:b0:11:15:
10:56:e4:53:d8:49:4a:30:b4:7a:51:e0:e7:33:06:
75:b7:da:dc:4f:89:24:0b:25:3e:fc:f0:d8:82:5b:
e8:11:c7:b3:fa:ff:86:f5:f8:88:1e:c4:20:26:59:
92:b8:70:46:7c:6d:93:b5:04:be:08:ad:6b:cd:87:
28:35:77:a8:19:13:ad:46:04:5d:b7:8c:5e:e2:58:
bc:dd:56:8d:20:41:31:7f:0d:f6:22:2d:16:39:dd:
63:de:09:a4:29:ef:24:3b:14:ba:6d:c5:55:d9:35:
5d:f0:16:5b:e4:b0:b4:45:6c:a9:c7:f2:47:83:15:
a2:91:61:70:63:c1:89:8c:76:68:4c:14:8e:01:06:
7d:7e:a1:aa:92:bc:af:a7:75:d5:9a:4f:02:91:38:
f3:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:3B:E7:0D:7B:B1:C2:E6:7D:E4:1E:5D:B6:0F:A5:67:8E:AD:CB:05
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/TjvnDXuxwuZ95B5dtg-lZ46tywU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64:ffff:0:18f:543:9e41/128
Signature Algorithm: sha256WithRSAEncryption
87:a7:37:ef:95:a7:cc:20:e0:98:9e:cc:fd:e0:a3:92:80:52:
65:c3:1b:09:ca:0d:b8:10:7d:41:14:d5:eb:dd:e3:81:9d:69:
48:02:a7:25:a4:dc:fb:a2:ed:e8:f6:d6:44:d6:ba:f6:4f:23:
69:15:de:88:4b:90:e1:ff:be:37:37:4b:bf:13:42:fc:ea:f0:
a1:76:fa:5a:b2:da:73:ff:60:3f:08:b0:b0:d4:66:3a:56:2e:
cd:29:54:df:5d:2c:08:16:e1:2a:e8:c9:96:b4:32:4f:73:f3:
50:e7:54:14:c5:f1:5b:1f:b8:58:3b:a1:71:e7:4b:39:13:b6:
6c:ea:51:35:b2:94:52:9a:14:22:77:eb:9a:f7:f7:b6:79:7f:
e3:a2:f2:1b:79:c3:78:c0:42:c8:7c:77:b5:e3:a1:f3:3c:0c:
4b:6a:cd:81:62:29:d1:f1:12:fe:d4:0a:0f:4f:ea:1b:1b:6d:
80:e3:8c:75:e7:57:65:28:b5:04:a8:a7:21:c2:c6:72:0e:58:
bf:b6:a3:04:f7:4a:64:ab:2c:cd:32:a0:01:43:da:66:b0:88:
69:9a:e4:e8:f5:13:cd:c8:3a:fb:18:d7:44:23:f3:e8:39:74:
e1:a6:1e:1b:93:19:de:61:4f:eb:4c:4b:a5:6c:9e:82:9b:1f:
28:62:48:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:07 2024 by rpki-client on console-fra.rpki-client.org