Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/51iPs2DjIR6Cqj4fdJwp3ZYo0SQ.roa
File: 51iPs2DjIR6Cqj4fdJwp3ZYo0SQ.roa (raw, json)
Hash identifier: HNgRQPx5Y0IeLdK/q0cCXMZ3B0o6fJIW6LgtWwrAr20=
Subject key identifier: E7:58:8F:B3:60:E3:21:1E:82:AA:3E:1F:74:9C:29:DD:96:28:D1:24
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018606713756B49B474557225B1B2DCB9671
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/51iPs2DjIR6Cqj4fdJwp3ZYo0SQ.roa
Signing time: Tue 31 Jan 2023 06:08:48 +0000
ROA not before: Tue 31 Jan 2023 06:08:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:06:71:37:56:b4:9b:47:45:57:22:5b:1b:2d:cb:96:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jan 31 06:08:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7588fb360e3211e82aa3e1f749c29dd9628d124
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a8:37:53:a1:82:a1:a4:f6:a7:87:02:36:60:
7b:61:02:53:de:21:83:51:75:f0:9a:cb:db:b4:6d:
b0:15:dc:ea:d4:70:07:b7:9e:8e:40:37:1f:ef:d7:
fc:e8:90:a9:e2:a9:03:b1:97:01:e8:c7:b6:eb:f1:
28:f5:bf:8f:a2:5e:6c:50:a5:1f:1d:d6:b5:05:47:
3a:25:0f:90:7c:2b:fe:99:e1:a3:3f:a1:6d:51:a3:
1d:c2:b8:18:fc:94:90:3c:c8:48:6b:c7:e1:4e:32:
85:87:48:dd:5f:33:e9:29:73:8f:34:cf:f9:6e:ca:
82:52:32:be:a0:3c:c3:41:a5:8f:f5:66:a4:d2:e8:
de:70:05:c4:55:bb:be:62:82:3c:b9:a6:91:c1:38:
09:60:33:03:43:97:2a:7c:89:49:c9:d2:c0:9b:d4:
92:c9:cd:7b:b2:9f:f5:d3:97:62:cf:d8:b5:16:a2:
8b:51:c5:c3:79:e6:50:65:82:19:37:b3:59:46:6d:
c7:94:66:17:a4:22:43:d5:bd:10:6d:0c:b9:cf:c5:
f5:c0:31:98:df:c5:4a:6c:cf:6a:94:b0:98:bb:bf:
98:a9:ac:d2:54:00:52:fe:02:6e:39:2c:ed:3a:75:
69:28:ae:8e:37:5e:b9:b1:ff:1d:82:bf:da:e9:03:
48:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:58:8F:B3:60:E3:21:1E:82:AA:3E:1F:74:9C:29:DD:96:28:D1:24
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/51iPs2DjIR6Cqj4fdJwp3ZYo0SQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
72:38:b2:2b:c3:5e:0f:07:ec:fa:8e:b5:44:0c:cd:e1:b2:40:
6f:2e:17:f7:3a:b3:e1:72:3e:dd:81:96:04:8e:58:40:65:02:
bc:ee:a8:37:46:59:16:60:29:72:6b:21:ea:c9:de:97:19:d1:
04:d1:28:29:4a:2f:b3:ac:92:c8:30:7b:84:2e:4b:ba:13:b6:
6e:0b:be:29:95:f2:96:5f:fd:34:e5:82:df:f1:ab:ac:6d:3d:
41:86:50:7c:cb:a2:01:72:78:b6:3e:36:7b:3b:49:d9:dc:54:
6a:20:7f:98:af:9b:bf:3b:33:1e:72:91:1f:99:9e:c4:97:45:
15:2e:71:3c:90:38:59:b8:9b:0e:09:cf:17:40:7e:24:e4:5b:
41:8b:6d:3e:91:72:14:5d:3b:03:b5:4b:8d:51:ca:7a:57:bb:
44:7b:ac:60:dc:b7:56:d0:2b:2b:ac:38:57:2c:22:3f:ba:90:
23:ca:76:ee:3a:f7:1d:f9:cd:88:ed:10:83:cf:d6:f8:7f:66:
45:81:b5:11:fa:c6:f8:0c:4b:4d:52:62:fb:27:12:ec:8f:f5:
42:b8:e6:6d:70:ef:3f:99:72:fb:50:3d:18:22:d0:18:c4:70:
5d:70:62:ef:64:54:97:c2:a1:e3:75:ae:83:71:72:ee:46:1d:
cd:08:c9:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 17:34:52 2025 by rpki-client