Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/2YREJUOZRaRE2GmflYddGz0c5gU.roa
File: 2YREJUOZRaRE2GmflYddGz0c5gU.roa (raw, json)
Hash identifier: AWl39yzxjwj1Kc97BhbqFLOBjQ2hAWP1BrWtAvl5Ev0=
Subject key identifier: D9:84:44:25:43:99:45:A4:44:D8:69:9F:95:87:5D:1B:3D:1C:E6:05
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 786C20C5
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/2YREJUOZRaRE2GmflYddGz0c5gU.roa
Signing time: Mon 04 Apr 2022 16:11:20 +0000
ROA not before: Mon 04 Apr 2022 16:11:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2020352197 (0x786c20c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Apr 4 16:11:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d9844425439945a444d8699f95875d1b3d1ce605
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:85:3a:85:a3:a4:e8:48:89:51:ce:9a:6a:8e:
f2:81:bc:7c:bf:c4:fc:84:80:df:4c:2f:70:c4:5a:
db:18:b4:de:92:05:49:9c:20:6c:e4:42:c6:98:6a:
4d:ac:54:5e:af:dd:ba:8d:8d:fb:9a:70:6f:ba:b5:
37:c0:54:04:98:de:6c:29:36:ed:e3:f0:ed:e6:32:
9b:dd:65:96:2a:8d:48:0d:4d:af:8c:55:90:87:ff:
1b:0c:b1:d4:4d:41:5a:be:1f:b2:92:a5:2c:34:0f:
94:1a:62:f9:27:28:32:5b:9a:bb:f2:94:f7:83:5e:
74:49:58:d1:d7:f5:93:77:90:48:c9:c4:92:c2:ba:
8a:8f:f6:ba:4e:6c:8b:33:33:49:c5:94:42:41:75:
d6:6f:d7:cc:cd:b1:39:03:b0:4a:53:c6:5f:d6:7d:
73:d9:ae:e3:bf:26:f0:04:c1:de:ac:70:7c:50:d1:
e6:e1:1e:b3:68:42:3b:70:50:f0:03:a6:2c:40:83:
77:41:20:a9:18:11:95:68:20:22:03:bf:98:66:e9:
dc:df:b9:af:7a:18:4f:0e:0d:32:2c:d7:da:d4:35:
74:04:d5:c6:9a:f2:a2:30:c2:df:1f:ec:f1:ef:46:
54:3e:3b:cf:ff:f2:a2:61:01:48:44:6c:2f:19:f4:
4f:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:84:44:25:43:99:45:A4:44:D8:69:9F:95:87:5D:1B:3D:1C:E6:05
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/2YREJUOZRaRE2GmflYddGz0c5gU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
13:fe:a5:a6:a2:f2:7f:79:5b:7a:c4:a2:77:d4:03:66:0d:f1:
e7:79:42:bb:7e:de:a2:bb:94:cf:c6:13:77:de:39:ac:8d:de:
c3:65:63:d3:2e:ee:a4:68:a2:99:65:90:b4:cc:66:6a:e1:e4:
30:31:f2:ca:14:ad:0a:39:73:e6:1b:e8:39:5c:fa:4f:e4:6a:
f7:90:e8:e7:c3:65:fc:46:4a:1c:a4:59:64:8e:fd:10:e3:a8:
2f:67:f1:df:c2:0b:0b:3b:a8:d0:05:3a:ab:80:86:a9:5b:82:
03:97:84:e4:fb:89:fc:a1:8d:79:32:fb:72:57:93:26:83:d9:
34:7a:a4:cc:73:53:62:d9:9d:6d:64:0a:3f:25:bb:25:9b:51:
e2:02:6f:4c:aa:41:c0:77:ca:45:65:cb:87:6f:64:8f:fe:36:
bc:b6:f7:0a:c0:d0:aa:40:47:aa:1b:af:fd:54:13:4b:5b:66:
c8:7c:e3:11:95:84:25:92:ab:67:93:40:e4:ae:ec:c8:e1:c3:
ed:03:3b:01:07:2e:7c:72:34:08:56:f1:14:ec:3d:1e:67:b0:
68:4f:f0:84:60:2c:af:c4:f8:2d:dc:d6:3e:71:94:1b:3d:bd:
aa:a8:47:85:1b:c0:28:8d:7e:f7:15:cd:44:22:61:07:b0:27:
80:fb:f4:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 00:27:07 2025 by rpki-client