Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/37_wg5aLux7PXO8RBKiYaR6X_GE.roa
File: 37_wg5aLux7PXO8RBKiYaR6X_GE.roa (raw, json)
Hash identifier: ZjyPJCqZmptji2Nd2ebmSXhIRFiaeVhHGFUuZFffNVg=
Subject key identifier: DF:BF:F0:83:96:8B:BB:1E:CF:5C:EF:11:04:A8:98:69:1E:97:FC:61
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0189B5859723225E19D33CE2376D6EE370FC
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/37_wg5aLux7PXO8RBKiYaR6X_GE.roa
Signing time: Wed 02 Aug 2023 09:12:58 +0000
ROA not before: Wed 02 Aug 2023 09:12:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:189:a0e4:5c7d/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b5:85:97:23:22:5e:19:d3:3c:e2:37:6d:6e:e3:70:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Aug 2 09:12:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dfbff083968bbb1ecf5cef1104a898691e97fc61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:0e:9a:64:98:e9:ca:24:e1:00:fd:c1:1c:b0:
1c:24:3d:4e:6a:69:22:45:34:50:c8:96:9c:7a:a4:
fe:8b:10:03:d0:be:51:66:0c:91:b9:23:6d:b7:d2:
73:44:26:ac:1a:66:5c:9d:71:b2:f7:d9:10:27:8b:
7c:63:9d:9e:b0:25:9b:71:79:e5:87:fb:f5:8a:cb:
d1:b8:fc:59:fd:aa:9e:e4:67:0c:e4:fd:4c:95:d9:
54:04:e4:44:c6:b7:b1:f0:53:b0:66:2f:f6:54:56:
34:51:99:89:c7:e1:d8:93:6b:dc:07:5f:1d:6d:05:
55:37:6f:8a:07:6c:ee:4b:fb:4f:9e:60:86:81:a9:
53:26:4f:e9:68:17:cb:27:dd:ef:88:4b:f7:5d:cf:
83:84:a2:9b:ba:47:6a:a6:fc:4a:f5:e7:93:80:32:
db:3c:c9:ed:e3:4e:83:0b:71:ff:1e:9a:c3:f1:1e:
ed:fe:00:92:58:3b:62:af:72:77:73:61:a8:85:80:
30:9c:a7:ba:bb:14:ff:a7:27:77:92:3b:a6:a2:11:
a2:87:36:dc:06:20:83:b1:68:99:15:3d:ba:4e:b2:
ee:5f:cf:6d:a8:07:6c:51:a6:33:05:d2:f5:5e:f6:
ec:55:c5:58:e0:64:2f:df:02:6b:79:f6:cf:94:bc:
db:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:BF:F0:83:96:8B:BB:1E:CF:5C:EF:11:04:A8:98:69:1E:97:FC:61
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/37_wg5aLux7PXO8RBKiYaR6X_GE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
6d:63:b1:7d:72:42:c1:e9:ae:fe:a2:d4:b6:68:97:9d:e1:1a:
ae:5f:c8:e3:dd:cc:6b:66:2b:0d:e5:e9:2a:4a:cd:22:92:63:
9e:82:a5:15:34:34:37:59:ab:7d:bc:62:ca:54:f3:aa:27:65:
b0:d0:00:5f:39:6f:bd:20:d8:29:a3:d3:da:f7:7d:7d:30:a0:
d9:d6:e5:5d:90:db:70:0b:c8:18:2e:08:b3:29:eb:ce:2f:f0:
6f:12:fa:33:7a:ce:4f:16:4c:dc:df:e4:61:3e:89:f3:3c:7e:
00:64:95:79:70:aa:a3:ed:64:03:80:9a:ab:af:f1:a9:ed:df:
5d:07:c1:91:35:4c:f5:74:e6:b0:2c:78:a7:1a:34:be:dc:84:
df:af:2c:a8:3a:17:68:2a:53:43:b1:84:c4:a1:3a:98:e7:fe:
4e:47:07:98:7e:5d:16:50:f4:98:21:6a:8b:53:43:c7:35:27:
90:24:5c:e0:d7:ae:a7:d0:9f:e8:77:41:61:44:49:8f:72:83:
28:58:b2:b3:3a:94:e6:61:fc:48:c2:13:c6:e1:41:fd:8f:c8:
91:be:91:f9:a3:cc:36:45:ac:68:bf:d4:c3:03:8a:10:51:93:
23:b9:fa:46:9f:3d:b0:3c:76:8e:6c:31:30:5f:37:08:49:2a:
c9:b7:b2:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 21:08:24 2025 by rpki-client