Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/06yUzuZ_Fe5i-ZVuAlfcGLrjXsM.roa
File: 06yUzuZ_Fe5i-ZVuAlfcGLrjXsM.roa (raw, json)
Hash identifier: A122SYc/nBnJwfjuXzSJwzjFTTvzhj7G2qXE6dDltzM=
Subject key identifier: D3:AC:94:CE:E6:7F:15:EE:62:F9:95:6E:02:57:DC:18:BA:E3:5E:C3
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018773A4BB989C9ED06C1400ADE4A8E30901
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/06yUzuZ_Fe5i-ZVuAlfcGLrjXsM.roa
Signing time: Wed 12 Apr 2023 04:06:28 +0000
ROA not before: Wed 12 Apr 2023 04:06:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:73a3:e867/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:73:a4:bb:98:9c:9e:d0:6c:14:00:ad:e4:a8:e3:09:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Apr 12 04:06:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d3ac94cee67f15ee62f9956e0257dc18bae35ec3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:57:96:2c:a5:76:68:70:c2:72:9e:e5:48:f9:
69:b1:c1:7f:fc:b7:bf:98:f1:61:9d:1f:6a:b1:bb:
12:1b:b2:0a:d8:71:98:47:24:f5:30:f4:a0:56:2b:
ca:eb:25:23:6d:d4:31:6d:16:44:56:ce:9a:0e:f4:
b9:ee:0f:3d:63:aa:b2:2a:59:05:e4:2c:38:44:4f:
88:46:e4:d4:ef:9b:8e:be:b3:95:f0:32:21:8a:6a:
00:75:09:51:54:b9:44:d8:ba:31:6e:0e:28:48:71:
af:96:1f:1b:93:48:4b:9d:bd:54:8b:4d:98:9c:c1:
0f:71:58:c0:2e:32:49:73:7d:a9:c6:ce:31:ec:67:
e1:82:c9:1b:a0:b6:02:a8:44:4b:bf:5f:f0:af:45:
77:af:ce:b5:53:99:bf:f5:40:3e:96:a9:19:0c:3b:
b4:d3:39:81:10:b1:07:05:38:58:ad:7a:8a:62:92:
d7:1e:14:00:d5:0c:c5:44:ed:d4:f6:3b:f0:9e:74:
06:4f:0c:29:76:f6:92:56:29:75:d4:e0:eb:23:1a:
34:af:02:5d:a5:fc:2a:ad:c4:ac:6f:2b:2a:e8:c1:
f4:af:35:9d:71:53:91:4d:d6:76:2a:65:0b:ab:6b:
9b:17:29:32:1d:2d:2f:d1:a1:84:34:87:45:61:b4:
ee:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:AC:94:CE:E6:7F:15:EE:62:F9:95:6E:02:57:DC:18:BA:E3:5E:C3
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/06yUzuZ_Fe5i-ZVuAlfcGLrjXsM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
1f:14:19:d0:0c:48:1b:0d:24:19:29:09:33:f9:ee:b9:c8:e2:
5f:bb:96:ae:d1:3f:4e:46:d5:c0:6d:05:77:ab:5e:a7:e6:b5:
b3:52:73:59:92:97:eb:41:7c:a5:6b:94:af:cb:75:0a:ae:20:
a2:8f:b4:71:23:b3:ef:ca:09:67:3b:76:20:73:39:43:39:a3:
a8:0b:00:7a:67:c8:2c:2e:a1:5f:5d:68:3e:a6:21:af:e2:79:
dc:5f:88:b0:c5:d1:d1:f1:b1:f7:2f:b6:d5:33:b1:b6:3b:13:
c3:c7:8b:15:05:90:9e:04:cb:a4:c1:fa:8b:28:3b:0f:52:49:
62:0e:aa:24:8f:f3:b3:e4:d8:79:d4:b3:f2:02:42:8c:63:0f:
47:bc:c6:89:19:34:dd:3c:63:97:c9:a9:97:1e:2d:db:d9:72:
34:e9:e6:7d:87:55:79:39:2e:e0:e4:da:74:d5:df:61:ab:0e:
38:fb:ac:63:67:ab:43:76:41:b1:72:fa:07:9e:3a:61:06:9b:
bb:6f:b0:ff:cc:a5:b6:6f:aa:46:b7:e6:dd:73:e1:cc:dc:d3:
b3:35:10:29:4c:e5:6b:f4:df:5d:67:7b:bd:73:08:4c:15:59:
c3:e8:8f:8d:67:7e:86:51:50:c9:c8:2a:6b:e7:82:2c:be:dc:
10:7d:26:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 03:00:12 2025 by rpki-client