Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/zII4utTlaiTGZ4OxNCsV2E6QDqs.roa
File: zII4utTlaiTGZ4OxNCsV2E6QDqs.roa (raw, json)
Hash identifier: EpBd6qixgzKTbaTcTxnVWdrELbLnGvpok6/eBy6/6z8=
Subject key identifier: CC:82:38:BA:D4:E5:6A:24:C6:67:83:B1:34:2B:15:D8:4E:90:0E:AB
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F8CB15C072FA13CB23F081044938E8D7E
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/zII4utTlaiTGZ4OxNCsV2E6QDqs.roa
Signing time: Sat 18 May 2024 17:13:04 +0000
ROA not before: Sat 18 May 2024 17:13:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:8c:b1:5c:07:2f:a1:3c:b2:3f:08:10:44:93:8e:8d:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 18 17:13:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cc8238bad4e56a24c66783b1342b15d84e900eab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:76:2e:41:fd:92:41:42:e5:5b:80:bc:aa:0e:
87:f2:5a:5e:f2:e0:54:cc:35:dd:cc:a3:c5:76:b2:
83:eb:58:7f:f3:fd:e2:c0:b4:a5:ac:b0:69:81:9a:
6f:71:68:0a:81:04:3f:a3:c3:f1:79:0a:34:79:5f:
ce:6c:4b:07:71:7b:70:b3:b2:d2:4f:61:06:11:0c:
94:4e:5c:51:c0:78:f0:4d:e8:6a:83:3e:88:7b:09:
b6:23:13:a7:ba:c3:ab:04:58:7a:32:e8:7a:f0:78:
f7:62:5f:bf:d3:8a:12:6e:6b:f6:fd:4e:7e:c7:31:
a3:16:3c:95:b0:a3:70:9f:a0:ee:07:b7:61:bb:16:
38:6a:df:48:29:eb:f6:01:8f:24:7e:78:37:75:b1:
6c:1c:08:07:03:84:c4:f9:bf:66:be:d8:31:66:d1:
70:6e:93:d4:c9:9e:65:74:cd:fb:6c:7e:de:44:16:
0d:6e:bb:0f:af:38:79:36:b4:6a:fd:c4:55:7b:ce:
76:ad:39:30:53:93:cb:6f:a7:14:03:9f:3e:aa:ad:
8e:d0:49:06:78:f0:42:c2:29:b2:f8:a5:f7:99:1d:
e7:6f:f6:60:0e:c5:b5:b1:35:f7:c9:71:5b:00:a0:
75:ea:82:6d:a1:88:14:da:ad:eb:63:79:01:06:d4:
cb:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:82:38:BA:D4:E5:6A:24:C6:67:83:B1:34:2B:15:D8:4E:90:0E:AB
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/zII4utTlaiTGZ4OxNCsV2E6QDqs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
45:2e:a5:10:8a:45:04:ed:a0:d8:36:6e:67:74:e8:7e:e6:9a:
25:fb:a4:59:c8:3a:bb:64:dd:7b:2a:53:8f:6b:47:b8:47:70:
63:c3:79:5f:fd:44:4f:95:87:98:94:01:bc:34:45:34:bd:66:
15:df:11:8b:82:b0:c9:d8:ec:4a:a1:76:a2:1a:44:9b:47:a6:
b4:fa:4d:4f:51:23:37:3d:ab:56:24:d5:5c:52:35:a7:dd:48:
55:76:16:e8:5e:22:c7:74:58:c5:13:03:05:81:0c:56:d4:54:
57:ef:70:32:c3:b1:e8:76:d4:0e:ac:aa:3e:29:9b:d1:a2:75:
5c:fc:e7:e7:8e:0e:9b:21:e2:0b:1f:ac:57:0d:cb:25:5f:3d:
4d:79:6b:da:57:39:47:3d:74:15:f0:95:19:70:0d:ea:5d:a8:
75:8e:51:c6:9c:ec:ca:72:84:2b:6d:12:06:04:a6:8f:5a:ea:
a7:30:79:98:df:a3:a5:69:b9:f7:46:52:30:92:c7:55:46:28:
74:98:55:98:0b:fa:d4:26:f1:4c:ea:b8:f2:eb:74:9e:b6:25:
69:a2:e1:11:bf:31:7f:4a:3f:a6:ff:9c:ef:17:16:fc:47:39:
f3:05:47:31:35:b9:ed:36:05:73:18:83:62:fc:f1:39:ae:56:
93:3b:5d:18
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY+MsVwHL6E8sj8IEESTjo1+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyYmVjNDFiZDJmM2IxNzlkZTA5NTE0MzA2NTMwYmQzZmJh
YzcwN2IwHhcNMjQwNTE4MTcxMzA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYzgyMzhiYWQ0ZTU2YTI0YzY2NzgzYjEzNDJiMTVkODRlOTAwZWFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAunYuQf2SQULlW4C8qg6H8lpe8uBU
zDXdzKPFdrKD61h/8/3iwLSlrLBpgZpvcWgKgQQ/o8PxeQo0eV/ObEsHcXtws7LS
T2EGEQyUTlxRwHjwTehqgz6Iewm2IxOnusOrBFh6Muh68Hj3Yl+/04oSbmv2/U5+
xzGjFjyVsKNwn6DuB7dhuxY4at9IKev2AY8kfng3dbFsHAgHA4TE+b9mvtgxZtFw
bpPUyZ5ldM37bH7eRBYNbrsPrzh5NrRq/cRVe852rTkwU5PLb6cUA58+qq2O0EkG
ePBCwimy+KX3mR3nb/ZgDsW1sTX3yXFbAKB16oJtoYgU2q3rY3kBBtTLSQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFMyCOLrU5WokxmeDsTQrFdhOkA6rMB8GA1UdIwQY
MBaAFLK+xBvS87F53glRQwZTC9P7rHB7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYt
ZDEyZjAzOWRiMmM5LzEveklJNHV0VGxhaVRHWjRPeE5Dc1YyRTZRRHFzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS9kODkwMjUtZDZmMy00ODkxLTlkODYtZDEyZjAzOWRiMmM5
LzEvc3I3RUc5THpzWG5lQ1ZGREJsTUwwX3VzY0hzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAEUupRCKRQTtoNg2bmd0
6H7mmiX7pFnIOrtk3XsqU49rR7hHcGPDeV/9RE+Vh5iUAbw0RTS9ZhXfEYuCsMnY
7EqhdqIaRJtHprT6TU9RIzc9q1Yk1VxSNafdSFV2FuheIsd0WMUTAwWBDFbUVFfv
cDLDseh21A6sqj4pm9GidVz85+eODpsh4gsfrFcNyyVfPU15a9pXOUc9dBXwlRlw
DepdqHWOUcac7MpyhCttEgYEpo9a6qcweZjfo6VpufdGUjCSx1VGKHSYVZgL+tQm
8UzquPLrdJ62JWmi4RG/MX9KP6b/nO8XFvxHOfMFRzE1ue02BXMYg2L88TmuVpM7
XRg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:59 2024 by rpki-client on console-ams.rpki-client.org