Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/EiYUCmreY5G3zEMJgq-a53q79Lc.roa
File: EiYUCmreY5G3zEMJgq-a53q79Lc.roa (raw, json)
Hash identifier: 69hzornazAplqfJBQFQfoU5WPWL9YQ7nXxIcCWmg2h8=
Subject key identifier: 12:26:14:0A:6A:DE:63:91:B7:CC:43:09:82:AF:9A:E7:7A:BB:F4:B7
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018EF6B0CD80AE6DF7E298D4AC0D71FEC8A2
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/EiYUCmreY5G3zEMJgq-a53q79Lc.roa
Signing time: Fri 19 Apr 2024 14:09:25 +0000
ROA not before: Fri 19 Apr 2024 14:09:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:f6:b0:cd:80:ae:6d:f7:e2:98:d4:ac:0d:71:fe:c8:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: Apr 19 14:09:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1226140a6ade6391b7cc430982af9ae77abbf4b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:74:2e:85:27:53:99:49:e0:41:99:24:1f:10:
78:54:70:64:de:8c:57:98:b4:6e:72:29:fa:db:b6:
65:e0:88:d5:1a:b0:48:3f:b6:9f:09:06:f0:48:36:
a3:3f:83:a3:75:aa:99:24:a9:01:2d:12:d9:2d:dd:
c2:f1:3c:a8:3a:8d:9b:da:5f:fe:ee:3e:7d:6b:17:
3d:39:57:62:86:bb:49:41:b3:64:4c:67:a8:05:2a:
9e:2b:ec:65:58:ee:a4:d8:95:b8:94:d2:c2:59:0c:
aa:31:49:87:ff:db:6f:1f:53:39:78:73:5d:cd:d5:
aa:64:ae:11:10:21:eb:c1:09:54:81:96:41:5c:b7:
31:b7:60:c3:97:5e:0d:8f:87:d4:20:d1:ab:00:a8:
09:c8:9f:49:85:b0:42:e8:76:11:3b:15:27:9a:23:
93:ea:bf:ec:8c:ea:bc:6e:39:9b:1e:3b:ab:48:28:
29:0a:e3:03:91:59:b6:4d:3c:ec:c2:c3:75:6f:b1:
d6:40:ac:42:56:fc:37:79:0a:07:0e:4e:e3:9c:40:
90:68:16:c8:33:2d:39:7a:ad:bc:ca:30:5d:76:3f:
9d:dc:42:2b:36:6e:74:34:78:62:bd:c7:cb:9f:5e:
ac:0f:1f:b1:ae:34:6b:9f:33:2d:e1:10:f6:9b:81:
13:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:26:14:0A:6A:DE:63:91:B7:CC:43:09:82:AF:9A:E7:7A:BB:F4:B7
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/EiYUCmreY5G3zEMJgq-a53q79Lc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
Signature Algorithm: sha256WithRSAEncryption
57:52:9e:ee:de:40:d9:2c:e9:16:f1:2f:0d:3d:8a:69:0a:58:
94:54:bc:48:95:90:10:22:fe:e2:af:8f:e8:aa:88:13:ec:3e:
57:0b:bd:82:47:1e:b0:5a:d8:4b:fb:ee:cc:99:c7:89:e6:0e:
6b:28:b0:a0:65:84:ee:db:8a:bb:f3:b0:12:4f:1b:dc:2e:03:
c5:0b:97:df:1b:36:2c:23:81:4e:a6:26:c3:dd:38:a7:60:f3:
b9:c9:c5:bd:52:34:3b:63:5f:51:bf:23:2e:c8:33:2e:de:f8:
d5:b7:32:be:a5:1f:e3:23:ef:c3:1f:98:63:7c:9f:47:40:f1:
e4:c8:15:09:9f:64:f5:6b:13:7b:d0:fe:b0:b7:d2:74:e3:59:
ef:e4:a8:6f:37:18:4a:60:1c:41:cf:d6:46:db:3f:07:ae:a8:
0f:3e:f9:63:27:b6:96:b9:97:00:f8:02:ab:23:44:be:66:57:
d8:db:03:da:fd:89:c7:29:f7:38:7c:f4:ac:54:dd:20:19:ba:
3d:40:64:87:e7:f9:a0:02:3a:0d:00:9c:75:d1:47:19:c8:4b:
e5:eb:4e:e6:8f:84:e5:28:e7:0b:98:f2:be:45:e2:f3:27:be:
ca:27:f9:f7:b0:98:c6:85:68:34:60:57:4e:cb:11:16:50:05:
eb:75:f4:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 18:01:37 2025 by rpki-client