Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/uAySh68KJE6zwEd5aeXKob5_GvY.roa
File: uAySh68KJE6zwEd5aeXKob5_GvY.roa (raw, json)
Hash identifier: kSiktFbsybb1qiXNUguYKxjRu5gxfUIUxqTGPPT/fB8=
Subject key identifier: B8:0C:92:87:AF:0A:24:4E:B3:C0:47:79:69:E5:CA:A1:BE:7F:1A:F6
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018EFEA59684DA70DE9B6DA87B11151318FA
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/uAySh68KJE6zwEd5aeXKob5_GvY.roa
Signing time: Sun 21 Apr 2024 03:14:08 +0000
ROA not before: Sun 21 Apr 2024 03:14:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:fe:a5:96:84:da:70:de:9b:6d:a8:7b:11:15:13:18:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: Apr 21 03:14:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b80c9287af0a244eb3c0477969e5caa1be7f1af6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:6c:55:f0:3a:16:0e:3b:75:45:62:e3:4f:55:
6f:0a:ce:42:35:3b:11:fb:1b:d9:0f:fc:05:69:b2:
9b:d9:5f:4e:6c:a1:96:3c:a1:3c:89:2b:90:b4:2a:
75:9c:e3:5c:02:49:c7:58:90:0b:b9:83:bf:de:08:
dc:50:15:f1:32:3b:1e:77:a1:ae:fa:0d:fc:4a:13:
0b:0a:56:0d:87:8f:05:a3:3a:fe:bd:cf:a6:22:eb:
50:56:3b:81:8f:3e:38:f4:73:4f:da:0a:40:62:b8:
73:3b:5c:2f:d1:ca:e6:16:75:97:93:8f:14:cd:b9:
0f:d3:cb:a0:11:89:5b:91:3a:b4:42:8c:19:a1:57:
e6:cf:e8:b0:dd:1d:b2:93:7c:0d:b1:44:a9:08:9b:
6b:b8:50:0b:ff:38:59:f3:e2:14:a2:41:5b:16:6c:
8d:79:6d:27:3c:d2:36:bc:eb:a7:cc:fc:31:25:36:
04:19:d2:92:02:97:44:c9:9f:d1:76:f8:b8:8f:9e:
4a:66:2c:b8:71:99:19:c7:d8:6d:4d:3f:ec:0b:57:
c8:1a:b7:0b:1c:69:0f:72:25:d3:c1:c1:f0:2f:33:
b8:52:f1:14:bb:c6:8b:6a:ac:26:96:a6:43:b3:aa:
9c:1e:d2:b3:e4:d5:4f:99:31:bb:ef:69:42:66:60:
d7:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:0C:92:87:AF:0A:24:4E:B3:C0:47:79:69:E5:CA:A1:BE:7F:1A:F6
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/uAySh68KJE6zwEd5aeXKob5_GvY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
Signature Algorithm: sha256WithRSAEncryption
b6:54:f3:40:b3:bf:47:3e:42:3f:b5:04:2f:d1:ee:4b:86:95:
b4:c0:2d:22:85:68:76:ea:9b:6c:38:8f:22:69:4f:f6:a8:43:
d2:4f:d2:c7:78:74:03:ac:6b:51:21:62:53:46:20:fe:17:de:
a5:50:0f:1f:3e:6b:bc:af:e3:8b:58:c0:22:1f:ab:9d:d2:e3:
0d:41:cc:39:5a:20:4e:06:bd:3d:7c:e5:9a:93:22:c6:6e:07:
a7:e7:c4:af:a3:2d:90:4c:0a:a8:6a:ae:15:44:83:5d:79:22:
c6:5a:57:96:bf:71:0d:7f:fb:f0:e0:42:72:00:e8:ae:54:b9:
08:b0:74:76:90:10:58:7b:75:f1:d2:1d:63:bd:86:a0:94:c6:
47:cc:27:df:64:a8:f5:09:e3:9b:44:e2:04:45:2c:bd:36:b6:
80:db:99:66:a4:bc:01:06:a2:fb:6c:a6:ea:8e:88:cd:15:e2:
6a:d0:70:81:96:0a:5a:01:1b:f1:8b:e3:11:e7:1e:8b:8f:6a:
21:9f:43:de:3b:29:ba:a6:ec:ef:b3:05:67:43:5f:21:87:ac:
ef:49:26:12:04:71:f0:9f:3e:2e:a1:f1:60:b9:7d:6d:7c:97:
5e:b2:d6:6a:8c:b9:90:31:0b:cb:0a:f5:cc:74:5c:27:25:3d:
1f:ba:45:07
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY7+pZaE2nDem22oexEVExj6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyYmVjNDFiZDJmM2IxNzlkZTA5NTE0MzA2NTMwYmQzZmJh
YzcwN2IwHhcNMjQwNDIxMDMxNDA4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiODBjOTI4N2FmMGEyNDRlYjNjMDQ3Nzk2OWU1Y2FhMWJlN2YxYWY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjmxV8DoWDjt1RWLjT1VvCs5CNTsR
+xvZD/wFabKb2V9ObKGWPKE8iSuQtCp1nONcAknHWJALuYO/3gjcUBXxMjsed6Gu
+g38ShMLClYNh48Fozr+vc+mIutQVjuBjz449HNP2gpAYrhzO1wv0crmFnWXk48U
zbkP08ugEYlbkTq0QowZoVfmz+iw3R2yk3wNsUSpCJtruFAL/zhZ8+IUokFbFmyN
eW0nPNI2vOunzPwxJTYEGdKSApdEyZ/Rdvi4j55KZiy4cZkZx9htTT/sC1fIGrcL
HGkPciXTwcHwLzO4UvEUu8aLaqwmlqZDs6qcHtKz5NVPmTG772lCZmDX6wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLgMkoevCiROs8BHeWnlyqG+fxr2MB8GA1UdIwQY
MBaAFLK+xBvS87F53glRQwZTC9P7rHB7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYt
ZDEyZjAzOWRiMmM5LzEvdUF5U2g2OEtKRTZ6d0VkNWFlWEtvYjVfR3ZZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYtZDEyZjAzOWRiMmM5
LzEvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDwQAYMA0G
CSqGSIb3DQEBCwUAA4IBAQC2VPNAs79HPkI/tQQv0e5LhpW0wC0ihWh26ptsOI8i
aU/2qEPST9LHeHQDrGtRIWJTRiD+F96lUA8fPmu8r+OLWMAiH6ud0uMNQcw5WiBO
Br09fOWakyLGbgen58Svoy2QTAqoaq4VRINdeSLGWleWv3ENf/vw4EJyAOiuVLkI
sHR2kBBYe3Xx0h1jvYaglMZHzCffZKj1CeObROIERSy9NraA25lmpLwBBqL7bKbq
jojNFeJq0HCBlgpaARvxi+MR5x6Lj2ohn0PeOym6puzvswVnQ18hh6zvSSYSBHHw
nz4uofFguX1tfJdestZqjLmQMQvLCvXMdFwnJT0fukUH
-----END CERTIFICATE-----
Generated at Sun Apr 20 15:01:15 2025 by rpki-client