Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/vaUQ66Wze3CMnH_IeClOHIYaGvo.roa
File: vaUQ66Wze3CMnH_IeClOHIYaGvo.roa (raw, json)
Hash identifier: vp/U2WBFfJsRmlIDvioI0D01O4bBpKECfXaR4osFxyc=
Subject key identifier: BD:A5:10:EB:A5:B3:7B:70:8C:9C:7F:C8:78:29:4E:1C:86:1A:1A:FA
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F6A1DEB34CBAA519BBA58C22ABCAF4D4A
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/vaUQ66Wze3CMnH_IeClOHIYaGvo.roa
Signing time: Sun 12 May 2024 00:04:56 +0000
ROA not before: Sun 12 May 2024 00:04:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18f:543:9e41/128 maxlen: 128
2001:67c:64:ffff:0:18f:6a1d:7935/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:6a:1d:eb:34:cb:aa:51:9b:ba:58:c2:2a:bc:af:4d:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 12 00:04:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bda510eba5b37b708c9c7fc878294e1c861a1afa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:7e:e8:e4:00:c2:f2:6e:7d:72:4e:02:3c:34:
4c:08:23:59:69:22:b9:35:41:6d:8e:45:27:36:24:
c7:d4:41:e8:25:7f:c0:fc:05:f6:95:8a:79:69:9b:
19:f4:7c:44:04:ce:4f:c0:74:2f:65:08:76:fd:9d:
61:ee:63:b6:3d:af:46:3b:ba:1c:57:65:f4:f0:53:
9b:76:b0:84:ec:4b:cf:a1:9c:11:2c:87:8a:a9:92:
18:3e:81:bd:7c:8d:01:e9:ec:e6:8b:37:b3:fd:da:
5e:d2:f1:56:23:58:7d:a4:07:55:aa:4f:17:96:da:
c6:dd:41:c7:7e:25:41:fb:8e:34:30:2b:23:7e:8b:
a9:9a:01:38:e6:ae:41:e2:db:ac:d0:0a:11:43:0c:
98:71:e9:ea:30:0e:43:1f:f1:98:66:62:97:c7:52:
e5:de:8a:e2:6e:10:5c:60:7a:03:e2:bb:4b:66:9d:
c5:9b:ce:f8:e5:45:59:7d:55:cf:65:5c:20:4b:08:
e9:65:2b:c3:38:2c:e9:57:7d:df:cf:5d:57:a0:d7:
46:13:50:70:8a:7e:f8:f5:e7:67:d3:5a:dc:f7:51:
71:98:3a:39:7d:f9:30:8c:6f:e9:a2:5d:7d:55:d2:
32:74:1d:e2:3b:b0:c1:e5:54:2e:f7:57:7b:18:8a:
96:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:A5:10:EB:A5:B3:7B:70:8C:9C:7F:C8:78:29:4E:1C:86:1A:1A:FA
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/vaUQ66Wze3CMnH_IeClOHIYaGvo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
6b:3d:62:2a:c8:0f:8f:42:6c:5f:ff:76:ee:a7:f0:6e:27:9d:
b6:d7:bd:b0:e1:64:f0:80:5d:54:4b:d9:3e:63:58:bf:4a:ae:
4b:3e:57:59:dc:da:a3:0c:b2:6c:81:1d:c1:50:1f:47:32:de:
9e:d2:02:da:19:b1:7b:85:bc:67:26:6c:98:03:3c:6d:21:f6:
b7:ab:47:e9:08:fb:6c:34:a7:8f:49:0e:3a:77:46:b8:53:ad:
85:6e:1e:7f:9c:03:24:a3:bc:48:ef:37:be:53:5a:9b:90:54:
bf:9a:0e:1e:5e:0d:47:75:71:cf:eb:75:39:92:6e:95:8f:32:
c6:c1:00:8a:5e:a0:54:d2:37:18:86:bd:e6:60:c1:e8:cb:08:
27:8d:17:7d:b5:48:8b:15:b5:6b:87:d8:0f:e6:07:84:02:7c:
68:b4:f3:22:26:02:14:04:a0:47:e6:bb:f8:af:7c:f4:4b:68:
0c:09:e3:66:85:ab:96:23:4d:a1:05:7e:a0:fc:70:39:6c:21:
cd:37:6f:ba:42:58:3f:ea:2f:b0:15:2e:ae:26:01:9e:46:09:
27:c3:c9:da:7f:5c:7a:e3:f9:b1:92:08:5d:b9:1e:9d:1d:70:
ef:64:56:f9:8d:5e:fa:82:82:33:50:b3:b9:2b:f9:60:14:44:
3a:a6:40:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:42:14 2025 by rpki-client