Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/31QgJl1S10pAdrOWhFID41bBOps.roa
File: 31QgJl1S10pAdrOWhFID41bBOps.roa (raw, json)
Hash identifier: JK+dEK6J8tfzhYzPwpojkCqHDYJmpeGlNGIGf8em9tA=
Subject key identifier: DF:54:20:26:5D:52:D7:4A:40:76:B3:96:84:52:03:E3:56:C1:3A:9B
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0188649FA7D67DBFC27CD3C773F524DAE658
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/31QgJl1S10pAdrOWhFID41bBOps.roa
Signing time: Sun 28 May 2023 23:09:24 +0000
ROA not before: Sun 28 May 2023 23:09:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:188:5fe2:b396/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:64:9f:a7:d6:7d:bf:c2:7c:d3:c7:73:f5:24:da:e6:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 28 23:09:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=df5420265d52d74a4076b396845203e356c13a9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:e7:e6:07:76:d5:43:24:ee:fe:7e:84:54:65:
54:31:0e:fd:07:07:46:b9:c6:45:f2:ce:f1:b5:33:
44:bf:5d:5f:0c:7a:68:de:b5:af:b4:25:7d:7f:6a:
51:7a:83:b0:78:62:f0:19:c6:1b:6f:bb:c4:26:f5:
63:95:58:02:aa:df:6b:0a:c5:73:70:75:f2:5d:0f:
ae:19:54:5f:9b:68:26:ba:2f:54:dd:1d:b7:bd:e7:
6d:55:ba:b4:5f:59:98:6e:46:6f:af:66:85:71:09:
f1:48:68:24:29:bc:ff:f8:51:0f:f7:d9:ca:4d:a0:
74:29:15:e9:43:f5:f0:9e:13:e6:80:13:4f:1e:02:
8f:f0:a7:10:51:8e:b9:da:00:b8:6c:c8:6e:03:32:
a8:29:4f:60:4e:41:88:c5:58:56:30:8e:bb:b1:8e:
cd:29:35:a6:88:d4:9d:ba:13:73:8f:03:df:27:5c:
d0:09:24:9f:a1:12:4d:d1:d3:ca:32:78:4d:6e:31:
5a:37:38:68:ac:40:e2:b0:e5:6b:67:50:cc:d7:79:
b8:26:d3:53:e2:b5:49:3b:31:7a:19:48:60:1b:9c:
cf:15:c9:e3:9d:72:e7:c1:db:d6:1d:c8:38:fd:84:
fc:bb:97:2d:e2:19:3b:c9:47:f9:9e:ec:f2:bf:47:
ac:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:54:20:26:5D:52:D7:4A:40:76:B3:96:84:52:03:E3:56:C1:3A:9B
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/31QgJl1S10pAdrOWhFID41bBOps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
10:15:15:13:34:e6:e0:6a:aa:61:07:b2:65:90:5e:8f:b0:be:
e2:2b:2c:34:6e:de:56:95:3d:1b:f1:6c:13:f3:23:02:17:53:
eb:ba:90:36:c4:26:7a:b8:2e:d2:c5:dd:ae:0e:63:e9:e4:29:
0e:32:57:35:c3:75:f1:cd:13:c2:0f:da:7a:69:ba:b7:f0:25:
03:b0:ed:32:70:21:c3:9c:ee:21:3f:11:b4:8e:69:d4:fb:13:
7e:13:b7:e8:4f:3a:51:88:28:4a:f3:2b:46:77:b4:d1:97:72:
86:2c:16:3b:3e:96:ed:9f:a9:ed:68:b1:3a:79:9f:0b:db:25:
2d:d9:9a:42:43:8a:35:9f:02:9f:71:b0:18:29:60:e4:51:f0:
f6:cd:ba:22:b4:61:92:16:88:30:93:e0:af:70:fe:6d:58:a3:
29:5e:e5:3d:9e:5e:c3:25:b8:c6:87:5b:b6:f3:c8:af:e2:79:
e5:e0:15:fe:aa:6b:2d:cd:53:2f:3b:d2:fd:d5:5c:9c:e0:5f:
3f:f3:e0:1e:0b:63:aa:78:a0:f5:70:57:43:9c:13:78:e2:3c:
3c:46:ca:04:38:cb:83:99:a1:58:52:98:42:0e:8e:be:97:d3:
c8:67:30:d7:94:9e:6a:32:8b:5a:f7:32:88:b9:86:51:e8:65:
26:2f:cf:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 20:19:13 2025 by rpki-client