Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/00fQcWhKrV2r_P-ThcSio_MBL4I.roa
File: 00fQcWhKrV2r_P-ThcSio_MBL4I.roa (raw, json)
Hash identifier: hcB6xtAtxUH+egrytb0HkZBhUy3gFlFrNKR5aFtrSQY=
Subject key identifier: D3:47:D0:71:68:4A:AD:5D:AB:FC:FF:93:85:C4:A2:A3:F3:01:2F:82
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0181CF2097F47348A7E525C9E6AFA16CB20B
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/00fQcWhKrV2r_P-ThcSio_MBL4I.roa
Signing time: Tue 05 Jul 2022 16:10:28 +0000
ROA not before: Tue 05 Jul 2022 16:10:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:cf:20:97:f4:73:48:a7:e5:25:c9:e6:af:a1:6c:b2:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jul 5 16:10:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d347d071684aad5dabfcff9385c4a2a3f3012f82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:8f:26:1d:58:92:cd:4e:16:9b:ab:23:bc:d2:
0a:95:7a:60:13:e3:a1:33:13:7a:72:8b:79:ff:cd:
7a:b7:29:8a:ad:8c:a0:53:a0:da:2a:8c:ac:e7:50:
71:60:b8:ba:df:52:27:83:ce:f8:6a:93:94:b3:3f:
e0:7b:3f:d3:f3:a0:01:76:ad:35:72:c8:af:c9:74:
7d:a3:87:39:cb:e4:45:a9:fe:ce:bb:b6:3e:c2:22:
92:c8:81:34:04:90:44:48:5d:87:4b:c2:d6:6e:f4:
79:36:7c:ae:e6:76:09:44:fb:fb:08:88:93:30:f7:
56:49:8d:9d:d1:54:3c:f2:20:b8:cf:11:e6:83:0a:
51:bf:81:2e:28:77:01:2c:cf:90:5e:d8:78:cb:53:
48:38:18:ce:6c:65:91:78:5d:67:31:85:36:b9:86:
23:f0:cd:c5:a6:ee:1f:34:28:2a:40:83:c2:99:af:
6a:6a:c2:7b:08:09:41:b9:7b:d3:1f:cb:dd:53:9d:
c0:2c:f7:14:d6:5f:f5:c0:f8:d5:fc:4c:86:11:e9:
42:22:6c:a7:b9:26:01:00:f2:a9:b8:c4:11:10:4a:
2d:f5:e1:ca:0c:f1:e3:e5:f3:e7:5b:b8:58:99:8e:
f1:04:4e:1f:3e:e2:02:71:33:8c:ac:36:c9:16:e9:
92:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:47:D0:71:68:4A:AD:5D:AB:FC:FF:93:85:C4:A2:A3:F3:01:2F:82
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/00fQcWhKrV2r_P-ThcSio_MBL4I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
36:e9:83:6b:7c:05:e9:2e:ca:9c:26:89:d2:74:5e:b4:01:f5:
b7:8a:54:cd:64:ca:44:65:53:1e:e8:22:03:34:21:48:4b:6e:
87:83:e6:eb:83:4c:a8:d9:91:d6:77:55:bb:a0:e7:48:0a:93:
d7:99:57:46:60:70:26:f0:1b:ed:8b:f0:16:f9:55:ce:10:9e:
53:11:38:75:2a:0a:1b:26:85:ff:18:f7:56:bd:7d:e3:80:7d:
38:a9:10:3c:1f:c9:52:c6:0e:f6:38:ea:00:7c:75:28:33:24:
31:49:f3:4a:42:21:ec:0e:11:a2:90:03:ba:42:31:fc:a4:45:
ba:00:03:a3:d2:e5:8e:ba:ee:08:01:99:64:58:23:33:76:d1:
bc:c4:dc:a7:ce:e4:a2:88:27:72:46:fc:4d:6c:77:0f:46:97:
08:2e:4f:84:39:4b:d8:98:dd:e5:17:9f:1a:ca:cb:41:eb:89:
80:84:75:81:b1:81:6f:f8:96:08:d9:86:f7:4c:99:52:9e:6e:
cd:1a:b7:15:c2:90:96:7a:b9:58:3d:2a:8f:de:c8:9e:7d:32:
3b:d3:9d:bb:53:5e:0f:66:be:d5:b5:4a:ed:80:18:87:66:09:
e8:61:ea:5c:0d:d9:ca:21:28:0c:1a:54:08:c5:9f:14:86:d9:
7c:65:d1:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 11:09:02 2025 by rpki-client