Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/4UlgLfFm8PiZ2wHqivsFf7FwLrU.roa
File: 4UlgLfFm8PiZ2wHqivsFf7FwLrU.roa (raw, json)
Hash identifier: lalFWyYKfXuVf2dZORE9k0OPjTmb8eY8MOqkgiBnGvk=
Subject key identifier: E1:49:60:2D:F1:66:F0:F8:99:DB:01:EA:8A:FB:05:7F:B1:70:2E:B5
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F7F99EF13A55BFB5865ECC9E4E609CA65
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/4UlgLfFm8PiZ2wHqivsFf7FwLrU.roa
Signing time: Thu 16 May 2024 04:12:25 +0000
ROA not before: Thu 16 May 2024 04:12:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:7f:99:ef:13:a5:5b:fb:58:65:ec:c9:e4:e6:09:ca:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 16 04:12:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e149602df166f0f899db01ea8afb057fb1702eb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:26:c5:47:ab:ba:c2:8d:a1:64:52:bc:3d:07:
41:08:c3:d3:ad:c3:b2:3c:08:46:8c:98:e0:3d:2a:
4b:83:03:2d:8d:7a:34:04:e4:d0:ef:d0:8e:44:17:
03:94:3b:f4:90:7f:4b:bd:7b:b5:3a:eb:01:cc:52:
2b:3f:50:61:13:fb:7e:3d:40:58:26:bb:f1:85:dc:
06:e0:96:57:14:98:67:d4:51:4d:87:7e:b3:1d:79:
dd:fa:f4:e0:68:e8:20:6c:ba:36:32:ba:a2:65:45:
c6:c5:11:06:ad:28:cd:b1:0d:6d:05:20:c3:70:e4:
19:2e:cd:00:be:7c:aa:f1:7a:cc:22:18:35:e7:ae:
53:60:c2:67:a7:f7:64:1c:6d:48:6e:f5:b2:b8:48:
3b:f9:d9:74:6e:6b:60:52:6e:03:ee:ce:83:93:c8:
7f:da:b3:99:43:9d:84:41:dc:4d:86:f2:cd:aa:d7:
7e:66:be:a0:8c:64:63:6f:7a:8e:69:cd:df:e1:f8:
92:82:8b:70:41:08:90:6d:e3:3f:87:bc:21:56:4a:
69:6b:64:87:d3:08:ef:ef:d0:21:39:47:91:2c:28:
d1:53:14:6b:99:76:16:21:ec:1b:18:e1:ec:46:e4:
4c:49:70:07:aa:ac:94:f9:63:20:4d:6c:e8:31:da:
fd:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:49:60:2D:F1:66:F0:F8:99:DB:01:EA:8A:FB:05:7F:B1:70:2E:B5
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/4UlgLfFm8PiZ2wHqivsFf7FwLrU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
c8:8d:3b:3f:cd:8e:46:ba:4c:10:75:5d:32:f5:b8:04:c5:e5:
67:b1:a8:7c:bf:d8:d0:9b:d4:8a:d1:fe:0b:8a:83:6b:d7:a6:
af:d3:dc:53:58:65:c8:30:f6:a8:fe:72:c4:c6:a3:07:a8:9d:
cf:7e:22:1f:f5:f8:dd:08:48:60:47:c6:b6:ab:df:30:6e:d7:
87:a3:71:40:e8:c5:a7:b3:6d:85:3e:0a:db:08:8f:fe:85:e5:
97:4a:9f:61:9d:c7:20:c2:2a:e5:76:38:22:db:ca:2f:0b:aa:
dc:65:bf:5a:d6:f7:6b:d1:be:cb:91:3c:7d:30:7f:f6:3c:84:
7b:9a:e8:7c:7b:25:97:0f:6d:26:88:33:4f:31:88:81:c0:d3:
d9:78:d4:ad:fa:de:f4:01:68:d7:37:d0:bd:0f:27:73:17:29:
02:c4:ea:f2:5e:6b:2e:f1:f9:69:80:e3:14:df:cd:99:64:99:
2f:7c:c6:e7:c0:5e:e1:49:75:5e:61:12:8d:cb:ee:e3:df:f0:
95:19:8d:c6:3b:47:d5:7e:3c:c7:1a:73:cc:d0:2c:7c:13:7c:
57:78:bf:93:56:b3:28:27:84:93:22:8d:5b:94:6a:13:a9:29:
58:3f:94:7e:2c:17:94:15:f1:31:9e:cc:7c:3e:54:5f:f3:c5:
7f:a8:64:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 16 10:52:18 2024 by rpki-client on console.sobornost.net