Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/kcQ8XRPD5j9WNA2cwS-cuqOC6OI.roa
File: kcQ8XRPD5j9WNA2cwS-cuqOC6OI.roa (raw, json)
Hash identifier: sy6fyxs0G9iAyx7MrHIY9oX0hQeAcCEzfC9TkbnssRc=
Subject key identifier: 91:C4:3C:5D:13:C3:E6:3F:56:34:0D:9C:C1:2F:9C:BA:A3:82:E8:E2
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F74DE7086F25F054B2B7A0849BF953D76
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/kcQ8XRPD5j9WNA2cwS-cuqOC6OI.roa
Signing time: Tue 14 May 2024 02:11:25 +0000
ROA not before: Tue 14 May 2024 02:11:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:74:de:70:86:f2:5f:05:4b:2b:7a:08:49:bf:95:3d:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 14 02:11:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=91c43c5d13c3e63f56340d9cc12f9cbaa382e8e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e0:de:3d:90:9b:4d:b5:a0:27:6d:3c:f4:f6:
a3:b1:5d:e7:e8:54:d7:c9:72:82:a4:21:1f:1d:29:
49:1f:e1:f4:99:33:f8:95:99:f0:40:a6:db:4e:04:
3a:3e:1b:47:d1:63:de:23:88:92:2b:5e:ca:6c:b6:
21:f4:b4:c9:73:37:be:dc:be:6f:b4:35:38:26:d1:
7d:c6:2b:28:c5:bf:cd:08:73:2f:47:be:43:7a:9b:
cd:6b:f0:5d:dc:61:8c:03:d4:03:05:b4:f2:4b:7a:
24:61:dd:a2:94:c8:b3:1c:a9:b9:6d:da:d2:5f:0c:
3e:70:e8:d7:9d:2c:d1:5b:5e:d6:1d:b2:91:39:00:
05:23:20:f0:d7:0e:76:e3:d1:e9:2e:8e:a2:6f:33:
b4:99:9c:e9:ad:ab:eb:9b:d0:db:b0:24:6a:8b:ea:
45:ea:c4:91:a5:3c:36:6c:5b:cb:e5:b1:b8:ac:62:
8e:92:e5:b7:a8:3f:61:a6:32:f3:c5:b2:e1:53:58:
2e:5d:34:a6:3a:b5:a3:b6:04:e1:45:ad:0f:24:7b:
4a:2f:66:f0:e1:8f:8f:f8:cc:ac:14:06:fd:e3:74:
8e:a6:4e:a0:96:a8:ba:f5:40:d7:b2:9c:e6:3a:e7:
9d:86:1d:d9:51:0c:d8:b4:c7:3f:3f:df:f3:10:97:
13:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:C4:3C:5D:13:C3:E6:3F:56:34:0D:9C:C1:2F:9C:BA:A3:82:E8:E2
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/kcQ8XRPD5j9WNA2cwS-cuqOC6OI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
44:9e:21:6d:70:11:ca:eb:40:a1:4d:d0:c2:41:d5:42:8d:18:
fa:3a:5e:0e:3a:df:d1:68:79:5d:45:35:38:ac:42:b9:73:b6:
6a:16:07:96:a6:10:92:f6:52:7f:83:a5:f5:b4:07:98:e3:77:
3e:16:2a:4f:a5:6e:d7:62:ff:8c:87:37:98:16:9b:da:c1:a6:
13:a3:9e:06:35:6c:6a:21:73:b6:63:37:0a:1b:3f:e0:ee:22:
0a:36:c2:58:93:59:23:d9:cb:47:79:71:e2:bd:aa:ef:66:94:
97:ff:52:f6:b2:6d:06:37:c7:e3:65:b1:ba:9f:09:a2:9e:7f:
b3:0e:f0:ba:8b:e2:c5:07:17:b0:04:5e:2a:2f:2a:6f:e2:8c:
df:7b:f9:18:0b:4a:f9:b1:9e:ee:5a:78:d2:90:ea:9f:f3:97:
1c:28:ae:de:af:85:22:45:40:ea:97:82:f0:d7:87:d1:04:e6:
89:88:0e:a2:81:e2:dd:30:8f:36:88:f2:17:4a:9d:1c:f0:f2:
10:36:31:b1:1b:7c:51:ca:af:8a:6a:58:b6:6a:42:78:50:ba:
53:58:08:b5:9e:b2:38:d6:29:f8:5c:19:47:84:32:05:c9:74:
f9:14:2d:65:9b:64:ca:6b:73:e1:ac:de:06:ad:1e:bd:b7:19:
12:3a:6d:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:59 2024 by rpki-client on console-ams.rpki-client.org