Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/1oDzr6P9N1AcgfGAIL8Fxr9i2fg.roa
File: 1oDzr6P9N1AcgfGAIL8Fxr9i2fg.roa (raw, json)
Hash identifier: e+aLnuhjfeJZfUDAEPsd2WUpRJhjeExtcBCHGn2KRB8=
Subject key identifier: D6:80:F3:AF:A3:FD:37:50:1C:81:F1:80:20:BF:05:C6:BF:62:D9:F8
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018892C1C3AD51A3178D8EA6812E763729E0
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/1oDzr6P9N1AcgfGAIL8Fxr9i2fg.roa
Signing time: Tue 06 Jun 2023 22:09:12 +0000
ROA not before: Tue 06 Jun 2023 22:09:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:188:5fe2:b396/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:92:c1:c3:ad:51:a3:17:8d:8e:a6:81:2e:76:37:29:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jun 6 22:09:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d680f3afa3fd37501c81f18020bf05c6bf62d9f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:e6:24:34:5d:e3:cf:14:8e:ba:59:93:81:fb:
a9:6f:1b:ce:f9:5e:da:c8:41:f6:84:0e:e0:7a:d7:
e8:e7:64:a3:31:98:a3:68:1e:44:42:1b:f7:e6:ae:
86:b4:42:b1:46:e2:f7:c8:f3:0f:0b:b4:c3:10:d5:
b4:e6:39:43:56:3e:32:1f:5f:ef:0c:52:bf:6d:7d:
0b:b2:f5:8c:8a:cc:70:b7:1d:7e:24:c1:3b:c6:6d:
32:78:4b:bc:b3:05:cf:2e:ee:b6:8c:24:4d:49:07:
c5:3b:93:51:e0:8e:bb:25:7e:22:ba:72:11:ca:0b:
89:21:0f:2f:00:9f:4c:dc:a0:2c:7a:69:13:27:80:
5b:28:b4:3a:2b:eb:67:41:18:7e:03:b9:5d:e5:0a:
a6:8c:bd:e6:1f:6d:02:84:47:b4:1c:5a:1a:4a:e4:
8d:01:bb:28:af:10:c5:d8:a7:cb:18:9e:4a:8b:62:
39:cd:2d:58:83:4b:55:cd:6e:b2:a0:a6:5d:49:6c:
5a:71:2b:c7:d5:77:5f:9f:8f:83:79:23:04:fa:2e:
f3:24:e4:b1:40:15:eb:f2:dd:dd:7b:05:04:e9:45:
42:78:f8:d2:38:8e:cc:79:a1:47:6e:db:e7:7a:12:
1e:a2:41:a6:f1:88:f2:aa:34:3d:28:34:82:7f:0c:
aa:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:80:F3:AF:A3:FD:37:50:1C:81:F1:80:20:BF:05:C6:BF:62:D9:F8
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/1oDzr6P9N1AcgfGAIL8Fxr9i2fg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
1d:d8:3f:44:86:2e:0c:b7:d3:9c:7e:8e:8d:fc:43:f2:39:8f:
58:b1:d1:1e:a0:aa:e8:42:6c:cf:5e:24:fd:6c:78:82:16:49:
49:54:15:42:c4:74:4f:61:c2:ed:3f:83:38:f9:35:de:90:54:
e9:24:39:ea:c5:38:30:e1:cc:05:55:8f:61:e7:c6:c1:83:25:
81:77:db:a6:37:ca:20:98:c4:97:80:72:45:d8:44:4b:c1:60:
62:90:13:af:9b:94:e3:8d:22:0c:38:82:df:47:eb:70:be:67:
c0:05:3d:0b:a4:2f:e5:bc:e9:41:cf:fb:da:13:9b:d7:b9:be:
a6:14:6f:65:1f:1d:9f:e2:ea:3b:c3:8c:4f:ca:8d:27:08:4a:
c2:1d:9c:1b:3d:86:73:93:dc:07:f2:48:44:a9:7f:1f:11:d0:
7a:df:a0:b6:c1:54:0a:24:8c:00:ce:f7:63:57:a1:ea:2a:40:
7f:2e:e8:8e:93:68:33:dd:de:a4:17:5b:e5:5b:74:98:06:f6:
03:e0:aa:07:28:04:dd:01:2e:d9:72:42:79:be:22:57:db:e2:
c8:ed:47:35:f4:ef:e1:73:ae:ef:20:71:2e:52:42:ec:2c:f9:
7c:c7:9c:70:a2:cf:7b:6b:c9:01:3c:75:c1:26:d5:4d:2d:bb:
12:93:56:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 21:27:31 2025 by rpki-client