Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/1aiu0q1I8cxNpBfEl3FwROw_fbw.roa
File: 1aiu0q1I8cxNpBfEl3FwROw_fbw.roa (raw, json)
Hash identifier: h3DL9hD2PxxZ14NwQ09PxLMkADTFEFD5fRdB4mmfZrA=
Subject key identifier: D5:A8:AE:D2:AD:48:F1:CC:4D:A4:17:C4:97:71:70:44:EC:3F:7D:BC
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01885B6682641704643C1774AF7D7FCED5DF
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/1aiu0q1I8cxNpBfEl3FwROw_fbw.roa
Signing time: Sat 27 May 2023 04:10:24 +0000
ROA not before: Sat 27 May 2023 04:10:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:5b:66:82:64:17:04:64:3c:17:74:af:7d:7f:ce:d5:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 27 04:10:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d5a8aed2ad48f1cc4da417c497717044ec3f7dbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a5:51:31:c5:8d:9a:e8:13:c3:ba:24:e7:d9:
f9:af:a9:e6:b5:6a:83:ba:0d:4b:ed:a3:62:d0:1e:
e0:a8:ca:0f:0a:4c:0a:5a:10:62:6f:fc:9b:c5:e2:
00:69:55:09:0c:5f:79:97:39:78:95:6c:40:0a:05:
34:7e:f3:65:b8:4a:db:df:25:74:7f:da:b1:d0:1d:
a7:ea:9c:32:a3:1a:ce:28:08:79:f7:1d:2b:07:4c:
2c:a3:ae:38:cf:67:41:0b:dc:66:7e:cd:cd:51:9c:
42:a8:05:94:44:3c:ae:cc:ca:fe:d0:79:28:c9:28:
e9:ac:96:62:ad:c1:b4:50:5d:a0:b7:1c:96:d3:13:
5a:78:46:0a:1e:b1:3c:55:6e:2c:a3:d0:4e:66:32:
a3:63:8e:00:16:1d:17:b8:30:ed:d0:d9:1d:b5:57:
64:21:f1:74:c7:19:bd:96:e0:3b:1e:d7:35:a3:88:
37:6f:9b:6c:b0:74:a8:0e:b0:1f:52:dd:0f:17:a1:
b0:4c:2c:9a:e7:d1:8c:5f:0f:b6:83:80:e3:a3:d5:
54:74:2d:4d:59:c1:94:c3:97:47:ff:44:aa:ec:a4:
3e:19:b4:cf:12:5d:ea:f4:ad:78:bb:d2:c7:1c:7b:
4f:ba:ca:a4:13:ec:22:6b:92:b0:f0:d0:f9:c2:d3:
6d:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:A8:AE:D2:AD:48:F1:CC:4D:A4:17:C4:97:71:70:44:EC:3F:7D:BC
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/1aiu0q1I8cxNpBfEl3FwROw_fbw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
8c:2e:4a:2d:a2:f1:a4:28:45:60:0c:43:5e:53:86:7c:2c:d6:
89:dd:37:56:b8:fd:e9:49:d6:5a:bb:45:2a:6d:01:4e:6a:28:
7d:58:ce:a4:6e:5c:e6:f4:eb:86:41:ba:d6:bd:5d:de:9f:ac:
e2:8a:3f:f1:fe:cb:f4:15:9d:d7:aa:9a:dc:47:2d:27:6b:3e:
09:09:fb:6b:91:5a:70:ec:a5:c9:bd:e8:65:85:55:42:74:a7:
89:cc:90:dd:88:37:a0:7f:a9:c2:40:27:4d:ee:05:eb:15:7c:
c6:e4:01:2d:ef:13:15:52:0e:d1:92:bf:7e:d5:f7:ce:cc:12:
e1:c6:cb:68:5f:23:46:d3:bf:ae:1b:38:95:8f:a6:6c:fd:bc:
e1:74:c8:fa:9c:31:fc:ac:cd:f3:78:6e:fb:05:55:67:c3:42:
69:81:c2:5e:ef:2c:65:af:80:20:ea:20:7e:47:c6:ee:61:43:
6e:03:0b:42:2e:53:fd:15:64:af:a3:ea:5b:d7:05:85:a6:49:
98:7a:85:fd:84:e3:b7:86:60:de:62:e9:24:56:12:13:3a:b9:
3d:4a:16:78:57:e6:67:e7:8a:bd:43:18:62:26:a2:3a:82:78:
cf:49:49:3b:f1:9d:7c:ac:48:30:2c:08:c2:6b:28:d3:9b:2b:
42:9f:41:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 08:36:02 2025 by rpki-client