Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/1Ni9OVYM34yvNJ-cv8rkCSNz3r0.roa
File: 1Ni9OVYM34yvNJ-cv8rkCSNz3r0.roa (raw, json)
Hash identifier: uO6/2J15mDJGZGh90ZeNdPGMprWVpUQsH9/0bRph3Jc=
Subject key identifier: D4:D8:BD:39:56:0C:DF:8C:AF:34:9F:9C:BF:CA:E4:09:23:73:DE:BD
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01863D2BD6AD4770015AEB4AABCB6A8BC37D
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/1Ni9OVYM34yvNJ-cv8rkCSNz3r0.roa
Signing time: Fri 10 Feb 2023 21:12:08 +0000
ROA not before: Fri 10 Feb 2023 21:12:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:3d:2b:d6:ad:47:70:01:5a:eb:4a:ab:cb:6a:8b:c3:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Feb 10 21:12:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d4d8bd39560cdf8caf349f9cbfcae4092373debd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a8:c6:7a:df:09:93:c3:12:a9:db:c3:85:6b:
60:21:a4:58:84:43:3f:b5:63:6d:82:a6:9e:0d:cc:
db:3a:92:d5:b0:30:f0:79:c7:f6:32:e2:f6:a6:29:
3b:69:21:00:90:a1:c5:50:bb:b6:5f:b5:1d:62:4a:
43:65:b3:85:ff:f0:53:4e:56:eb:e7:b2:73:cf:e6:
be:8f:92:10:12:48:7b:bf:49:e0:39:6a:1c:dd:0e:
66:ae:97:e2:16:de:e0:cc:84:e1:7c:d7:c1:28:7f:
7a:bd:1d:f7:6b:1f:a3:3b:c6:86:e2:7d:ca:a3:0f:
ce:fd:a5:dd:b1:1c:7d:3b:2d:fc:15:db:7e:92:27:
58:e4:9a:44:d9:06:e4:50:a7:43:89:b9:74:fe:60:
b3:c2:22:e8:db:c5:bb:7a:0c:55:bc:ff:d0:21:c1:
b3:fb:e6:14:65:dc:e3:6f:92:0d:ff:df:91:f9:59:
49:c0:bc:92:54:48:c5:ff:27:b2:08:b4:2a:ab:f3:
c1:c7:5c:15:f0:b2:97:c2:14:3d:ad:0a:6d:68:3d:
20:d2:7e:fd:91:1c:89:de:ff:71:3e:cc:14:90:30:
5c:4f:10:60:fb:92:36:7c:30:e3:e7:e6:c0:e0:83:
59:a5:55:9c:6b:2e:66:54:98:ba:a8:6d:4d:80:24:
f7:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:D8:BD:39:56:0C:DF:8C:AF:34:9F:9C:BF:CA:E4:09:23:73:DE:BD
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/1Ni9OVYM34yvNJ-cv8rkCSNz3r0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
5c:4e:b5:5c:22:a3:d8:d6:e4:20:88:0b:d7:8c:76:eb:a8:9c:
86:bd:07:50:35:e1:2e:67:ac:bd:84:fa:bf:46:1c:10:63:ae:
a2:67:51:c9:97:57:e9:92:e5:4e:61:21:fc:94:7d:57:00:c0:
54:1b:5a:f8:c5:40:cc:8a:6a:38:ba:2f:8c:16:96:01:d6:44:
96:fb:ca:a3:c3:34:48:a3:02:dd:9b:95:a4:e6:62:b4:a4:13:
33:2c:f0:b2:80:26:3a:23:0b:38:70:5a:76:d7:ce:c2:b0:2f:
2c:e6:31:b7:10:de:a2:93:d9:15:9e:e3:9e:f8:d2:67:2f:36:
ae:a9:14:4f:5a:26:ca:0a:c5:21:11:2b:d2:05:07:41:ec:fa:
aa:ed:7a:8c:0b:d6:70:1c:72:24:da:6f:e5:ef:5a:ad:da:a2:
dd:d9:9c:6d:98:5d:a9:62:35:52:4d:c9:5f:76:e6:d8:12:31:
55:c7:e9:4e:c9:64:c3:07:18:ed:60:39:b3:6a:95:ed:95:56:
60:41:bb:ab:a2:84:f0:ec:2e:05:47:a0:58:e2:af:f5:8c:10:
b7:d8:9d:df:31:78:8a:9c:42:f1:5a:cd:bf:c8:9d:8d:e9:e8:
e9:de:c0:4b:01:15:3f:cf:23:d5:d5:bc:98:fe:f0:3d:f0:ff:
d7:c5:89:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 01:50:17 2025 by rpki-client