Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/4RbftR7pYJGbDEiKpjFOZG--Pug.roa
File: 4RbftR7pYJGbDEiKpjFOZG--Pug.roa (raw, json)
Hash identifier: QBO9j9x0s4lmUjw6xuRQfUb67SNw4r70ImgWdPXFb2I=
Subject key identifier: E1:16:DF:B5:1E:E9:60:91:9B:0C:48:8A:A6:31:4E:64:6F:BE:3E:E8
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018817D2791C9D25AF5F9328D303A47D62B6
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/4RbftR7pYJGbDEiKpjFOZG--Pug.roa
Signing time: Sun 14 May 2023 01:14:09 +0000
ROA not before: Sun 14 May 2023 01:14:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:17:d2:79:1c:9d:25:af:5f:93:28:d3:03:a4:7d:62:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 14 01:14:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e116dfb51ee960919b0c488aa6314e646fbe3ee8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f4:31:4b:5b:16:3f:cf:95:56:6f:d6:ef:4d:
83:7b:14:76:cf:40:ed:59:e4:f1:66:30:c0:c9:c6:
c9:2e:e3:9f:94:47:7b:97:cc:fa:54:07:05:f0:f4:
d6:5b:1f:d6:9e:0a:f4:e8:24:ee:8d:d9:88:0e:47:
c8:75:f3:e6:15:6c:20:26:53:a4:5a:49:4b:74:74:
c9:ae:d5:ed:9f:0c:5e:90:05:5f:17:fc:87:c1:25:
df:e5:7d:9d:34:8e:99:51:51:6d:1e:cb:8a:6f:1d:
3e:ba:93:b9:8b:b5:31:f6:e0:83:b8:c2:76:00:74:
6b:c7:96:81:0a:8d:34:8f:08:54:e4:56:2d:e1:d5:
80:c4:b8:b9:b8:7c:55:b9:8e:6c:2f:96:06:28:9f:
42:fe:4e:35:c4:27:68:cf:8f:3b:20:6e:e7:b0:54:
8e:0d:f9:ae:23:ab:59:3f:f4:89:44:28:36:3b:9c:
0c:94:d3:b1:9c:68:e2:4e:f4:29:31:c6:b6:b8:2f:
21:9a:06:d2:4e:22:d5:05:94:fe:bd:2b:c1:e6:5e:
99:ca:86:cf:0d:7d:9c:f0:79:10:c4:a4:41:a1:68:
9f:be:ca:17:0a:bf:22:ac:1e:7a:1d:4f:b6:c6:86:
7e:72:7b:50:2d:0b:d6:ce:cc:f9:dc:45:43:ea:ab:
52:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:16:DF:B5:1E:E9:60:91:9B:0C:48:8A:A6:31:4E:64:6F:BE:3E:E8
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/4RbftR7pYJGbDEiKpjFOZG--Pug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
75:7f:f6:a2:50:9c:23:e1:dc:99:08:fa:99:1b:24:11:6f:9a:
36:21:ef:b0:49:61:1f:34:45:f4:9c:6b:16:65:6e:2f:db:de:
79:93:9e:6c:cd:20:8c:8f:4c:01:36:de:71:60:d3:37:09:c9:
75:b4:d9:d2:c4:4c:ab:87:7d:d5:eb:fd:46:23:de:b0:d8:85:
31:fc:4d:02:04:42:fa:2e:39:e8:89:eb:99:c7:11:25:7d:01:
32:6c:bc:34:51:b9:0a:1f:cd:18:57:3b:a4:c3:0e:72:3c:9a:
06:6a:64:b2:7a:b4:a9:8b:58:b4:32:74:0c:38:6b:d1:07:f2:
d9:4f:03:54:14:a8:12:50:82:38:05:69:82:99:c9:8a:05:7f:
74:11:a1:a7:a4:62:4e:7a:cd:26:61:1e:98:5d:b3:2e:97:15:
06:56:9a:74:ca:c7:1a:70:66:ea:9f:28:2a:94:ce:b7:f3:52:
1b:6c:32:d5:5f:78:ff:1a:c5:95:67:f8:db:fd:0e:4a:f3:80:
ab:f7:e4:c8:3a:66:dd:7b:f5:32:40:a1:8a:32:8a:3a:89:03:
6a:50:5f:08:68:99:4f:07:6f:0d:1d:27:16:4f:a0:c3:6c:69:
01:14:4a:64:62:9b:c0:2d:2a:14:85:0c:61:1e:c8:7a:a0:0b:
63:c7:7e:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 10:38:02 2025 by rpki-client