Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/391FGVHjWEiLFlCTCmhnsmQ3qfQ.roa
File: 391FGVHjWEiLFlCTCmhnsmQ3qfQ.roa (raw, json)
Hash identifier: a6UQSMTSX7xxFt5CsqdZlRfZYSE4X6eGhMFuJa6IYE4=
Subject key identifier: DF:DD:45:19:51:E3:58:48:8B:16:50:93:0A:68:67:B2:64:37:A9:F4
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 6BF279EA
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/391FGVHjWEiLFlCTCmhnsmQ3qfQ.roa
Signing time: Sat 19 Feb 2022 11:18:24 +0000
ROA not before: Sat 19 Feb 2022 11:18:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1811053034 (0x6bf279ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Feb 19 11:18:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dfdd451951e358488b1650930a6867b26437a9f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:7c:2f:1c:d6:7f:2f:8a:32:f8:2e:7b:4b:ff:
6f:29:5f:cd:76:6f:3e:89:75:cd:9e:2d:6e:7b:95:
dc:5e:e7:6d:a1:55:9f:33:7e:53:ab:6b:3e:ea:5e:
2e:3d:02:b5:7f:c2:3e:5f:5f:f3:0d:71:be:97:5e:
8f:a1:a8:50:91:58:b5:a9:fc:64:b0:4d:66:8b:fc:
bc:f7:40:73:0e:6d:8c:96:8f:50:c1:1d:84:f0:92:
12:a5:4f:80:3e:de:1b:25:e8:c1:e4:d6:13:28:0a:
05:0c:fd:7f:b9:73:8f:06:70:4c:5c:c4:8d:59:d0:
82:32:cf:41:d9:84:53:52:fb:af:a2:97:cd:85:09:
18:12:cd:6e:a0:ff:13:12:f6:92:23:de:1a:e1:b2:
51:9b:d8:7f:8a:df:f5:8b:8b:eb:2f:3e:26:87:21:
8e:70:95:83:13:b6:34:3d:aa:01:99:86:5c:8a:32:
a6:f9:ab:51:26:97:8b:1b:1c:ac:1b:f8:a8:e1:ef:
96:8f:96:f5:aa:e3:40:08:41:ef:8b:5e:a2:1f:f6:
0d:15:34:74:e6:58:f8:08:a1:28:a5:42:e2:53:54:
ec:ab:39:48:4f:1e:4f:ca:c5:59:1e:eb:64:f0:91:
99:be:33:1c:5e:08:f5:67:5e:a5:ce:ed:dd:da:74:
53:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:DD:45:19:51:E3:58:48:8B:16:50:93:0A:68:67:B2:64:37:A9:F4
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/391FGVHjWEiLFlCTCmhnsmQ3qfQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
76:10:5a:0f:ef:6b:26:ef:0f:d5:97:b2:cd:dd:79:bf:66:c1:
f5:1d:6e:29:58:59:69:47:ee:44:23:64:6a:c4:b4:9f:e7:55:
88:0f:0f:42:62:2f:d2:d5:11:c6:cf:ca:d5:b8:db:de:b0:ef:
e7:75:ca:64:ba:a8:e9:b5:46:ab:53:c6:b3:a5:b0:9d:c5:c1:
d3:68:ef:77:d8:d7:1f:f4:2c:cc:a4:69:31:87:a0:58:88:d0:
fd:a6:71:15:8d:05:79:4d:0f:81:d6:77:fb:6d:92:1d:e3:1f:
84:7a:50:8c:13:28:c2:92:38:13:c7:09:cd:16:f1:ac:c1:61:
8d:c7:24:ed:a5:4c:7f:af:bf:4f:f6:0a:1c:3b:b8:a7:5b:f1:
1b:e2:f7:a7:8c:f8:da:c8:a6:77:17:ed:c1:c0:54:a7:bc:ac:
e0:57:21:9e:da:7d:e0:4c:f1:cb:d6:38:60:64:a2:fb:da:2a:
59:37:16:6f:a5:c8:1d:d2:45:cb:79:52:4e:d8:5b:5a:12:f7:
ae:13:03:1d:8e:2a:59:1d:77:78:9a:cc:8e:b4:60:c7:54:6b:
50:d3:f4:8e:c8:42:95:8a:54:7f:16:cc:b9:55:e1:7a:f4:71:
f4:df:a6:d5:c3:75:88:72:58:24:d8:96:a9:59:b7:e7:27:37:
37:8c:e4:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 05:52:32 2025 by rpki-client