Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/2eTOpMsHatBmznnF9-pYcwPSBVA.roa
File: 2eTOpMsHatBmznnF9-pYcwPSBVA.roa (raw, json)
Hash identifier: T/2/mJbQIPaHorbplh1UHDHO4PbIZ/tchng4iJMew8w=
Subject key identifier: D9:E4:CE:A4:CB:07:6A:D0:66:CE:79:C5:F7:EA:58:73:03:D2:05:50
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01881A98018F51451174E68B5D176F1A4259
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/2eTOpMsHatBmznnF9-pYcwPSBVA.roa
Signing time: Sun 14 May 2023 14:09:09 +0000
ROA not before: Sun 14 May 2023 14:09:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1a:98:01:8f:51:45:11:74:e6:8b:5d:17:6f:1a:42:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 14 14:09:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d9e4cea4cb076ad066ce79c5f7ea587303d20550
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:b7:db:41:e0:d7:b7:49:65:1f:42:82:a8:a0:
67:4e:fd:b8:6d:29:8c:60:3e:ff:9f:ea:ea:20:79:
61:27:f7:0b:6f:d0:a3:f7:ca:6c:cf:66:0b:fe:f0:
27:63:32:06:d2:6d:b5:79:cc:5d:7a:d3:16:70:b2:
19:36:d8:24:92:08:3c:35:76:f4:35:88:8c:7d:0e:
00:c1:6c:61:98:fd:c3:0a:2e:41:3f:b2:cf:83:e9:
ac:64:2b:d5:48:b4:8e:0f:23:fc:44:19:aa:d1:5e:
60:55:fe:b8:e2:d9:65:71:0e:91:1d:27:e7:2e:dc:
01:ed:c7:54:90:76:35:29:78:01:67:ae:a2:a2:6b:
04:97:75:50:09:67:cd:da:d6:cc:d8:5f:f0:02:65:
be:4d:ff:0d:e4:6a:1d:05:61:d4:08:8f:07:d0:52:
29:e6:e6:41:e4:f9:7e:7c:32:37:c0:b3:9d:14:52:
29:5d:b2:b8:9b:5e:50:6f:b5:5a:d8:73:27:f2:34:
a6:fc:71:1c:5f:3e:94:1f:92:64:ff:4d:f7:4a:e5:
8a:63:de:14:a3:ca:39:86:b0:3d:0a:56:23:6e:3c:
ca:35:6a:93:33:2b:42:65:94:f1:8b:1f:1d:e9:29:
b0:d0:1e:3d:6a:55:93:5b:14:16:58:f4:21:f3:7e:
29:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:E4:CE:A4:CB:07:6A:D0:66:CE:79:C5:F7:EA:58:73:03:D2:05:50
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/2eTOpMsHatBmznnF9-pYcwPSBVA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
05:73:8a:c8:cd:a6:0b:b8:b7:1b:12:99:e8:4c:bc:49:47:6f:
f6:30:2d:6e:03:ae:aa:48:c3:45:e0:63:31:b4:e1:8e:7d:4d:
b0:91:a9:6a:e0:27:74:c3:9f:e4:7f:c5:ba:b8:02:4f:cb:80:
dc:c1:bb:a7:33:67:d1:9a:7e:fe:d5:5b:90:be:bc:32:bf:c4:
ec:b1:d1:18:65:27:d4:90:32:5a:4c:fb:cf:0f:07:00:02:9a:
cf:e5:80:57:cb:2e:2f:bc:83:11:ce:d1:7b:04:25:46:ae:53:
2f:ca:62:44:b6:08:d5:ec:1c:0b:c7:d6:15:f4:de:a5:ce:b8:
2f:33:89:14:77:01:c2:9d:69:2c:10:7d:41:d6:28:fd:67:a1:
e6:9f:dd:75:d7:d3:b3:dd:0b:fc:c5:5d:33:ac:2b:a8:cf:2a:
e1:d9:5c:c4:0d:05:ff:5d:22:bf:fa:d2:b7:fb:08:31:9d:e4:
fc:9c:fe:c7:4f:92:65:53:9f:b3:f4:d8:16:07:c7:74:28:80:
46:46:a7:ca:55:38:9d:5a:f7:4a:32:d5:c9:6b:c2:fe:38:23:
96:a7:f8:16:41:dd:bd:a7:5e:40:5a:a2:75:82:c2:a7:63:aa:
0b:d9:5d:d1:ec:5f:c3:c4:ca:1d:a9:c1:f2:77:d8:c1:85:27:
8b:19:64:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 18:49:57 2025 by rpki-client