Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/JnaWYSit9V_cWZT94vRIPlZ5a88.roa
File: JnaWYSit9V_cWZT94vRIPlZ5a88.roa (raw, json)
Hash identifier: Rn/W8x2kIaS8XtNpH7SOMhpmcWsc0wiLyrAW/IyitNc=
Subject key identifier: 26:76:96:61:28:AD:F5:5F:DC:59:94:FD:E2:F4:48:3E:56:79:6B:CF
Certificate issuer: /CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Certificate serial: 018F8B9DC9335852CD82432DD9DD7C0BE23C
Authority key identifier: B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/JnaWYSit9V_cWZT94vRIPlZ5a88.roa
Signing time: Sat 18 May 2024 12:12:04 +0000
ROA not before: Sat 18 May 2024 12:12:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:8b:9d:c9:33:58:52:cd:82:43:2d:d9:dd:7c:0b:e2:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2bec41bd2f3b179de09514306530bd3fbac707b
Validity
Not Before: May 18 12:12:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2676966128adf55fdc5994fde2f4483e56796bcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:89:87:44:99:5c:de:de:54:92:f5:02:b7:44:
14:77:44:c1:f3:ea:39:1b:f2:69:06:4c:0b:d4:1e:
2b:e6:07:f2:b5:33:0e:fa:91:e1:3e:b2:d9:5d:32:
0d:3c:f3:12:fc:3a:ae:de:9a:50:76:18:b2:cb:43:
56:56:02:fd:ed:58:2f:56:c2:c3:dc:19:29:b1:39:
f6:de:18:cd:9c:41:f2:2d:b8:fd:71:b3:c0:45:35:
41:e6:75:54:e5:a7:09:b6:35:be:ed:d4:31:2f:32:
61:2e:f3:74:93:61:cf:92:e5:56:30:86:61:7d:00:
1a:50:0f:65:7e:55:1b:68:ac:c5:66:83:3a:58:0e:
98:a0:57:3c:c9:49:26:05:67:80:0c:91:9c:71:77:
d7:bb:3e:9e:7b:c0:b7:51:66:73:37:60:36:55:d7:
b0:8e:61:ab:28:1b:b0:6b:fc:8f:6a:4a:0b:4c:05:
9a:20:14:81:f4:ec:be:dc:32:6d:2d:30:2f:ad:08:
1e:3c:7b:5e:dd:17:ee:d8:59:dc:f9:87:a5:bd:4e:
f9:55:b4:f8:b0:b8:89:de:66:68:23:83:ae:e7:9c:
b0:fb:7b:b2:68:c7:9c:a5:6c:16:ee:17:bd:58:ad:
9f:8d:46:b2:db:10:7c:03:95:ca:15:29:fd:48:99:
cb:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:76:96:61:28:AD:F5:5F:DC:59:94:FD:E2:F4:48:3E:56:79:6B:CF
X509v3 Authority Key Identifier:
keyid:B2:BE:C4:1B:D2:F3:B1:79:DE:09:51:43:06:53:0B:D3:FB:AC:70:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sr7EG9LzsXneCVFDBlML0_uscHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/JnaWYSit9V_cWZT94vRIPlZ5a88.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d89025-d6f3-4891-9d86-d12f039db2c9/1/sr7EG9LzsXneCVFDBlML0_uscHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
86:cb:6a:71:f5:e5:25:57:ff:03:ef:c6:54:a2:7e:e6:0e:5b:
e0:d3:7c:d2:f9:a5:90:71:1b:15:0a:a8:b9:4c:8e:2a:72:73:
75:5a:8c:ac:93:a4:ad:bc:e5:d6:ff:f6:5c:8c:bc:91:5c:af:
9e:8c:f2:6b:3f:2b:d6:8c:34:02:68:88:97:05:59:2d:dc:b5:
5d:aa:30:19:d7:8d:ff:bc:8b:9f:61:5a:7f:ba:0e:b2:7f:9e:
e7:3c:ef:e7:cc:b3:f8:7e:c0:33:34:ae:0c:15:c0:c0:17:18:
54:ac:46:22:63:18:3d:27:27:30:60:c7:be:bb:1d:e8:01:33:
5f:56:ae:f2:93:9a:50:43:64:12:1a:65:5f:20:67:3d:17:b5:
d9:39:f9:79:6b:a5:93:fd:d6:c0:ee:9b:fd:9c:98:cd:27:09:
a1:c0:9e:a5:80:c0:df:98:0a:28:c4:49:88:04:40:f8:16:cd:
c3:21:10:6f:27:b9:85:1c:9b:cd:95:ea:26:a1:84:14:b9:c6:
a7:a6:e6:4d:a9:02:81:be:c1:60:48:cb:8d:3f:8b:9d:6a:63:
6d:f3:e8:07:68:ae:df:fc:ff:74:ea:4c:35:0c:72:7e:3e:d5:
f2:9d:5b:75:5f:83:c7:73:27:31:13:31:ad:4f:b6:82:97:6b:
34:db:10:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 21:05:15 2025 by rpki-client