Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/PuP5_P1PUlybpFXxmPzsT6mAhBc.roa
File: PuP5_P1PUlybpFXxmPzsT6mAhBc.roa (raw, json)
Hash identifier: qSZkS3oH5YOGqVmint2hWb+qchspoqkiSCuNfTHpKFI=
Subject key identifier: 3E:E3:F9:FC:FD:4F:52:5C:9B:A4:55:F1:98:FC:EC:4F:A9:80:84:17
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F35F98843C439267B0ACA0859D73DD42F
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/PuP5_P1PUlybpFXxmPzsT6mAhBc.roa
Signing time: Wed 01 May 2024 21:04:56 +0000
ROA not before: Wed 01 May 2024 21:04:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18f:543:9e41/128 maxlen: 128
2001:67c:64:ffff:0:18f:35f8:f651/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:35:f9:88:43:c4:39:26:7b:0a:ca:08:59:d7:3d:d4:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 1 21:04:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3ee3f9fcfd4f525c9ba455f198fcec4fa9808417
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:fa:11:e1:b6:1c:28:a7:ab:53:1b:8c:96:51:
cc:2b:7d:bc:a8:20:88:4b:aa:ed:ce:2a:23:26:a4:
80:83:a6:b2:ab:02:6a:70:43:e2:8c:fc:24:95:ad:
38:87:15:44:95:bc:44:3c:74:b4:b1:95:7c:0a:3f:
7a:1e:7d:4c:2a:0f:00:64:bc:63:13:fa:4d:4c:4a:
b1:30:78:ea:32:6e:3b:ad:08:cd:e0:be:20:f7:3b:
1c:f9:30:3a:15:c9:59:18:11:47:b5:4c:52:db:1d:
6f:a1:08:da:36:3f:41:53:be:38:5b:cb:e3:10:3f:
32:53:d0:07:35:a2:f0:44:fe:35:b9:e1:b1:60:98:
70:fd:89:4f:c9:e3:d3:3c:93:9b:d8:66:81:ab:63:
7d:e0:24:89:20:4e:ff:86:36:9f:5b:0f:80:b0:46:
06:34:d4:5c:a9:81:bc:6b:eb:62:0b:8c:28:11:4a:
2f:53:ae:7c:3b:21:1f:cc:bb:8b:58:4c:e2:da:69:
31:35:fd:4a:71:0d:85:43:8d:46:0b:99:12:9e:56:
94:11:dd:06:bb:02:60:cd:21:a1:07:ca:ad:ca:6a:
9c:4f:d1:ad:8b:66:f1:fb:a7:c1:ed:12:fa:fb:5e:
7d:9c:37:5a:39:dc:51:e3:1c:27:ba:c3:b2:e9:5f:
17:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:E3:F9:FC:FD:4F:52:5C:9B:A4:55:F1:98:FC:EC:4F:A9:80:84:17
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/PuP5_P1PUlybpFXxmPzsT6mAhBc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
78:7f:9a:95:c1:ad:b1:da:0b:1e:64:64:f6:c8:0e:24:ad:c6:
86:bc:31:2b:5d:d7:02:48:5b:34:6f:c7:f8:72:e3:5e:0f:3b:
f6:6c:51:18:14:f9:87:d1:e9:12:95:3a:0b:bb:db:06:c5:cf:
0f:17:42:b4:46:04:9e:76:50:da:e1:02:f0:a2:27:97:e7:90:
db:da:f9:84:02:ca:24:38:88:e2:6a:52:6e:c7:69:21:6b:da:
45:7d:eb:73:88:2f:ef:dd:0b:f8:f4:1c:05:42:89:55:91:c3:
eb:9a:3e:37:da:24:a6:12:bd:f7:0c:16:d0:86:e2:bb:78:7d:
bb:c1:2d:12:9d:88:a8:17:87:00:91:70:a9:60:d1:ab:83:47:
04:17:1b:84:56:20:c2:11:35:4a:85:a3:ce:a1:a4:1f:28:87:
32:9f:64:f0:34:17:44:1c:b6:82:1a:b6:83:6c:57:a4:a4:04:
a5:7e:3e:af:11:04:c1:4a:97:31:14:8d:7d:21:06:7e:4d:eb:
e1:43:de:98:7b:be:d8:c1:b2:09:dd:a5:28:5a:20:d3:42:64:
ca:50:48:74:02:1e:b1:2e:c8:c2:2d:e8:59:10:17:08:fb:f5:
2c:1c:38:7d:c5:0d:21:30:ba:64:e2:27:ba:93:74:97:ab:cb:
f5:55:7b:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 16:09:34 2024 by rpki-client on console.sobornost.net