Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/12Y87LReo8ebSvFNr7OoG49Pva8.roa
File: 12Y87LReo8ebSvFNr7OoG49Pva8.roa (raw, json)
Hash identifier: 0RbPY6cgE5hvoIITaLL6v+78QoyzjTFfWJxT1vqH+GY=
Subject key identifier: D7:66:3C:EC:B4:5E:A3:C7:9B:4A:F1:4D:AF:B3:A8:1B:8F:4F:BD:AF
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01880524AC9C6FB3C160DCA8AA35B4D6081D
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/12Y87LReo8ebSvFNr7OoG49Pva8.roa
Signing time: Wed 10 May 2023 10:11:09 +0000
ROA not before: Wed 10 May 2023 10:11:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:05:24:ac:9c:6f:b3:c1:60:dc:a8:aa:35:b4:d6:08:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 10 10:11:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d7663cecb45ea3c79b4af14dafb3a81b8f4fbdaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:6b:30:c3:3e:74:ba:cf:7e:c0:ea:b1:1f:74:
0a:0b:82:5e:f9:94:dd:14:be:fc:57:55:07:58:6e:
76:25:5f:bb:21:0d:e1:2f:ac:59:f0:d0:80:d7:b8:
b3:df:af:5b:8d:51:1b:21:ff:80:1e:46:1a:fe:d2:
58:16:26:11:f5:04:84:49:7f:6a:d8:d7:e2:f7:0d:
07:c5:4f:69:1e:07:77:ba:83:0a:99:82:f6:7e:ba:
2f:fd:16:9b:94:ee:bb:6b:5c:11:df:80:6e:25:11:
a1:ec:12:68:52:ec:fc:eb:9a:3e:d5:5c:dc:0f:23:
e9:6a:8e:93:61:4f:1a:4e:46:ff:50:bf:81:66:fe:
3e:68:d8:85:ea:db:65:05:51:9c:51:d9:61:2c:ff:
b7:38:4e:67:1e:bf:00:2a:b0:c0:da:e7:00:67:44:
bc:a8:4f:20:81:48:90:98:cc:b5:07:2e:c5:86:da:
f9:44:a0:c3:13:0d:5f:3f:24:3e:89:c9:91:6a:f5:
f7:a9:bd:b2:df:d4:ab:6f:d0:a8:f1:c1:27:b0:30:
8d:38:a7:8b:b2:6b:b8:87:ad:9d:f8:ec:32:3f:47:
27:0d:76:3c:82:93:02:14:02:35:60:ff:99:83:e4:
e6:ee:ad:94:66:b9:02:35:99:e1:bc:80:36:62:1b:
87:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:66:3C:EC:B4:5E:A3:C7:9B:4A:F1:4D:AF:B3:A8:1B:8F:4F:BD:AF
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/12Y87LReo8ebSvFNr7OoG49Pva8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
9d:ae:c8:0e:6d:fa:92:3a:67:7a:bf:55:84:76:8e:1e:a9:43:
b2:d2:55:da:16:f4:0c:e4:ed:57:cb:ab:ab:74:d9:c2:4b:f0:
1a:a5:37:e4:ea:db:d1:88:6a:e9:bd:f7:94:23:f1:31:dd:cd:
80:5b:d2:61:d9:ea:6b:16:00:cc:6c:b0:55:b9:17:e1:82:3a:
86:0c:bf:76:63:07:e9:2d:41:9c:2b:ab:52:d0:63:77:e9:53:
37:f4:cb:aa:18:da:74:4a:9d:9c:e9:62:73:09:b7:fc:20:54:
44:21:15:92:9d:88:25:19:5e:27:e4:e5:41:d5:97:47:5b:c1:
d9:f4:2b:3a:b8:5b:0c:93:27:0c:39:6d:97:0f:5e:b1:2e:33:
10:32:55:c2:12:61:94:ea:e8:67:ab:15:a3:b6:4d:fd:c6:80:
d3:2b:7e:15:d5:78:1c:0a:52:e1:80:78:39:36:54:e1:f9:56:
2a:b1:8e:6a:29:cb:7c:16:65:4d:56:53:84:c6:6b:79:7a:59:
ce:70:84:68:b6:7d:c5:ce:b3:5c:aa:51:c8:e5:23:84:db:ec:
f7:b5:de:67:0e:3b:a4:2a:7d:8d:a1:e1:6b:8a:e8:37:e2:07:
77:4f:a1:f3:bf:c3:96:fc:d9:5c:e0:f8:60:58:d6:41:6e:a6:
ff:45:c6:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 03:21:17 2025 by rpki-client