Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/50zz3ih_2yuld-UNhOW2w2srYfY.roa
File: 50zz3ih_2yuld-UNhOW2w2srYfY.roa (raw, json)
Hash identifier: zzRNvZVjgvVDo3ajW0kzmdrqxxvLVYrxt2puB8yDV7M=
Subject key identifier: E7:4C:F3:DE:28:7F:DB:2B:A5:77:E5:0D:84:E5:B6:C3:6B:2B:61:F6
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0188221C751B39E456F6E123811DA254B72A
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/50zz3ih_2yuld-UNhOW2w2srYfY.roa
Signing time: Tue 16 May 2023 01:11:10 +0000
ROA not before: Tue 16 May 2023 01:11:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:22:1c:75:1b:39:e4:56:f6:e1:23:81:1d:a2:54:b7:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 16 01:11:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e74cf3de287fdb2ba577e50d84e5b6c36b2b61f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:09:a9:67:07:cf:3a:68:b6:9b:c1:e3:7d:3a:
a0:1f:9a:c7:6c:7b:e7:b8:26:1f:17:e7:db:47:ca:
00:8d:10:1e:49:24:43:fe:0e:1a:11:2a:53:28:61:
8b:a5:b7:f2:d2:85:c7:b3:c0:6b:33:79:62:53:7d:
b9:3f:76:59:2e:8d:f4:e4:ff:07:47:bf:3c:f5:ae:
19:bf:ea:4c:9d:57:22:cb:74:3c:8a:18:4f:e6:71:
c4:bb:7c:5c:38:c3:77:45:49:f6:a6:9f:83:6b:b0:
e2:36:a7:87:3b:b4:3e:00:06:d4:38:01:4c:18:82:
0e:d7:e9:61:ac:fc:bc:13:ad:5f:5e:cb:a2:40:98:
2c:72:1b:6c:03:f4:ed:fb:96:45:0f:00:bb:3d:cc:
fc:40:0d:af:2d:62:68:75:41:c4:ea:f1:8e:4c:65:
88:59:c2:32:c4:0c:be:3f:80:7d:85:8c:09:a9:09:
96:79:eb:0e:f1:ae:15:bd:f8:86:10:a1:18:57:08:
37:28:30:0c:b3:85:e5:9c:80:b8:f3:a6:c0:4b:c3:
86:2f:5b:bb:95:42:36:30:6a:70:7e:11:a0:43:7f:
05:e2:ee:17:33:0b:26:8e:42:13:25:f1:bf:33:fd:
46:16:9f:52:5c:70:59:e9:24:dd:28:ba:ba:79:05:
23:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:4C:F3:DE:28:7F:DB:2B:A5:77:E5:0D:84:E5:B6:C3:6B:2B:61:F6
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/50zz3ih_2yuld-UNhOW2w2srYfY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
01:7c:b5:f9:b3:78:73:9c:e2:55:ef:97:c0:6e:da:01:65:8d:
f1:3c:13:6a:b3:15:e6:2c:54:25:ed:7f:61:48:be:b7:52:c6:
b9:8e:b6:81:4e:15:05:18:6c:47:92:4f:61:fb:cf:f9:01:d5:
7e:ab:eb:c0:83:b6:4a:28:1f:00:d3:f0:89:fa:9a:09:75:f7:
13:27:78:06:8a:32:b7:0e:2f:d4:62:9b:b5:c2:e7:48:b3:3c:
5d:16:ad:59:ec:91:5e:c3:87:7b:e0:85:0d:eb:3c:55:31:a2:
9d:ad:16:33:fd:2b:10:4c:07:3c:00:9f:c0:1a:06:39:29:0c:
46:67:21:f6:a4:23:21:ef:05:bc:91:d8:af:3f:7f:63:08:18:
d8:27:27:10:be:71:01:e5:81:3a:64:82:70:96:b7:dd:4f:40:
96:d0:79:a8:b7:aa:37:b6:95:0b:b0:45:30:21:b9:16:64:62:
33:52:84:b8:8f:e1:42:e0:19:16:e6:fd:50:a2:36:b5:f9:33:
ab:e8:20:7a:ba:32:9e:a9:08:17:82:98:a0:fd:da:2f:39:b7:
fa:a5:cd:79:48:16:25:17:17:5d:66:ea:af:bf:23:e3:f3:df:
65:c8:0e:79:be:d3:32:0e:78:e2:0b:5a:48:ca:36:c4:32:de:
a6:78:ca:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 08:56:56 2025 by rpki-client