Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/3Dn6HqTEhN6Y6jiqbsnGhDktJ98.roa
File: 3Dn6HqTEhN6Y6jiqbsnGhDktJ98.roa (raw, json)
Hash identifier: J5Si7CP7nhGJztvq6JTuzQ9P5fEQ8p3e5DADugpHtC0=
Subject key identifier: DC:39:FA:1E:A4:C4:84:DE:98:EA:38:AA:6E:C9:C6:84:39:2D:27:DF
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0188C1F5AFC53EC6C6883BE8A3408032CF69
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/3Dn6HqTEhN6Y6jiqbsnGhDktJ98.roa
Signing time: Fri 16 Jun 2023 02:08:03 +0000
ROA not before: Fri 16 Jun 2023 02:08:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:188:5fe2:b396/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c1:f5:af:c5:3e:c6:c6:88:3b:e8:a3:40:80:32:cf:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jun 16 02:08:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dc39fa1ea4c484de98ea38aa6ec9c684392d27df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:6d:74:02:6d:51:d0:62:2a:15:4e:78:20:82:
59:60:d7:a5:02:95:5e:42:f2:a8:39:70:c4:a9:11:
e9:05:b8:0b:19:4b:cd:70:2c:13:cb:e8:68:83:ce:
8c:14:15:3e:32:7b:b7:42:54:aa:e9:c5:29:3b:1c:
39:f8:7f:f5:ea:30:92:a1:39:f4:71:45:5b:5e:94:
27:59:d6:f6:2f:6e:5b:6a:b5:22:9c:71:52:73:16:
09:f7:f9:36:c7:41:b7:36:61:d0:ad:aa:04:8d:cd:
9c:e7:24:22:67:a7:20:44:05:1c:9f:f0:85:cf:c0:
8f:34:a8:fd:7e:7e:c1:1a:e6:3f:5c:bc:66:ad:20:
31:37:bc:6c:70:8d:b5:54:05:aa:00:70:82:e7:55:
5d:45:98:56:97:d1:2f:d1:f2:89:ae:03:a1:d7:50:
eb:ed:3a:8c:c3:1e:26:88:1d:b0:eb:45:a9:19:ae:
8c:44:15:15:9a:01:45:be:97:1b:32:5e:fa:73:4e:
d8:fa:9f:64:ca:ba:97:8f:53:16:b0:77:8e:cb:26:
69:fc:b9:86:6d:32:97:50:fe:2c:66:b1:43:32:7c:
0b:0f:de:2c:85:32:ed:ea:19:f3:20:28:33:6d:18:
68:49:ee:78:ca:69:9e:2b:e1:df:e9:cd:a0:d2:0f:
e6:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:39:FA:1E:A4:C4:84:DE:98:EA:38:AA:6E:C9:C6:84:39:2D:27:DF
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/3Dn6HqTEhN6Y6jiqbsnGhDktJ98.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
48:bb:56:a8:20:84:2f:59:b0:62:41:2b:d1:f6:27:e1:03:ae:
fe:4a:f8:ed:9a:d4:79:f9:91:f9:6d:26:2f:13:bb:3a:6a:1d:
5e:95:73:a5:d5:9a:fb:11:6f:de:7f:dc:d9:47:02:2c:90:bf:
85:f1:84:9d:74:9b:ad:85:7a:07:64:18:18:60:93:ca:eb:6a:
63:56:07:06:2b:c9:0b:15:a7:0a:7f:79:c4:d2:25:7c:fd:97:
99:10:6c:67:64:51:af:a5:d2:34:8d:1a:ea:69:c1:3e:46:ef:
41:b3:2a:26:bc:f2:a2:6d:8a:e1:09:54:53:b1:7f:0d:49:66:
31:e4:0c:74:70:f9:b0:21:1e:5f:8b:75:63:86:68:8d:aa:e6:
a6:7a:4d:ed:c7:47:51:71:d5:b0:67:24:0f:6b:11:d5:07:fa:
dc:16:03:c6:11:55:e4:2f:72:87:29:96:0f:71:dd:11:6d:3e:
b2:7f:99:53:c7:10:4d:d5:b1:c1:09:4e:ba:bf:5f:75:04:07:
af:28:f1:af:b8:c6:99:ba:33:91:6d:c1:81:15:4e:73:24:5a:
69:58:d9:82:6c:72:bb:75:54:8a:69:3d:f9:9a:ab:89:88:a9:
94:ce:29:6a:f4:d0:45:4d:29:b8:07:1f:3b:44:0f:14:ab:42:
d7:d3:2d:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 17:51:05 2025 by rpki-client