Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/vlLVHRcxGV2HgZEmT0hF4gu_wQM.roa
File: vlLVHRcxGV2HgZEmT0hF4gu_wQM.roa (raw, json)
Hash identifier: iCBghChiKt1qQNDAbnNFhubz2bwoZFdX4eo63G5uEpw=
Subject key identifier: BE:52:D5:1D:17:31:19:5D:87:81:91:26:4F:48:45:E2:0B:BF:C1:03
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F94D6EE06CBC00DF3A683F3DF20861466
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/vlLVHRcxGV2HgZEmT0hF4gu_wQM.roa
Signing time: Mon 20 May 2024 07:11:04 +0000
ROA not before: Mon 20 May 2024 07:11:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:94:d6:ee:06:cb:c0:0d:f3:a6:83:f3:df:20:86:14:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 20 07:11:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=be52d51d1731195d878191264f4845e20bbfc103
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e4:6e:f9:0e:45:ec:65:a8:13:1e:ca:01:e6:
da:6f:d1:68:0f:7b:97:93:c5:50:a4:85:ad:96:ed:
fa:3f:34:03:2c:9a:4e:c1:a6:f8:b2:01:47:be:2f:
9b:a6:69:e2:69:2c:11:9d:c9:4f:6b:ce:14:b5:f3:
4c:80:e7:8b:c1:9c:72:6a:b5:7f:3a:64:8f:fa:e3:
89:92:f8:98:44:71:ab:73:0b:8d:b5:fa:9c:4b:c9:
98:45:52:2d:7b:0e:75:98:5b:3b:d1:4c:eb:df:06:
c7:76:a5:22:c1:3b:43:0f:d5:be:80:47:d8:c2:2e:
31:4e:48:56:e8:1c:85:86:0b:ae:84:12:ea:a0:d6:
7c:a6:4c:5c:20:17:cc:02:ab:c3:ef:47:4d:6e:7e:
c8:fa:6e:e7:cd:c5:7e:6f:13:38:4f:37:8f:45:2a:
8a:3c:a9:42:71:4a:3d:e9:0b:fd:3b:98:0b:31:8c:
d6:fa:b6:fe:a3:e2:4f:c2:6e:a0:3b:33:7e:59:a3:
59:af:5a:05:9e:9e:ad:fd:c9:ca:c0:e3:79:ad:ea:
61:f4:23:a5:7a:de:8e:fc:9d:23:3d:04:3a:64:80:
96:4c:47:77:22:72:7e:14:68:a7:66:58:c4:5e:49:
de:56:5c:67:7a:06:a8:97:0f:87:75:b7:d6:4d:2e:
c4:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:52:D5:1D:17:31:19:5D:87:81:91:26:4F:48:45:E2:0B:BF:C1:03
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/vlLVHRcxGV2HgZEmT0hF4gu_wQM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
b8:4a:78:3f:45:f6:8a:4f:8b:03:35:c7:d2:c3:44:9f:e5:92:
58:3b:9b:28:9b:ee:31:ce:43:98:a3:ff:6c:e4:7b:7d:84:af:
a5:71:d5:09:8d:a8:d0:a0:84:d4:c2:62:65:0b:8e:61:64:d7:
08:fa:f2:d7:f6:52:99:b1:f5:b0:95:51:93:b1:ca:85:e8:30:
e7:d9:72:02:c4:42:75:ac:04:9f:ed:5c:f1:c9:08:40:c5:ba:
df:c8:10:11:93:84:eb:86:13:41:8a:08:7f:b0:c6:3c:4d:e5:
9d:c5:25:36:5f:f9:ea:e7:55:73:13:6b:71:f9:95:37:dc:96:
6f:99:58:06:92:dd:54:fc:b4:5b:5e:fe:80:a7:dc:df:d2:0f:
b4:57:dd:27:ba:3f:13:19:67:c1:4f:93:43:c2:fc:21:ff:5e:
6d:a8:6b:1c:67:02:a7:dc:08:a2:da:d6:ea:17:73:68:8b:af:
3f:77:dc:fb:49:2c:27:f9:8b:98:b9:eb:07:10:08:1e:41:a0:
2e:da:13:5e:5d:dd:bb:1b:88:ce:55:f1:77:02:d3:fd:4c:ab:
48:bd:42:79:82:63:b2:e2:ae:0f:34:99:3a:c5:0b:fd:e3:ba:
63:6d:a0:e6:7b:e5:1f:62:e1:5d:7b:5b:d7:02:f2:cd:da:f9:
21:c2:69:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:07 2024 by rpki-client on console-fra.rpki-client.org