Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/5PYZN0RUAHjJA2CRG8rShV-heYw.roa
File: 5PYZN0RUAHjJA2CRG8rShV-heYw.roa (raw, json)
Hash identifier: JjhRGEof0e71NM7EXpPHVAywTO2JFgBNdhTjpPtVlqM=
Subject key identifier: E4:F6:19:37:44:54:00:78:C9:03:60:91:1B:CA:D2:85:5F:A1:79:8C
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01851CC64B8A93619168DA0A3855FE20A59E
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/5PYZN0RUAHjJA2CRG8rShV-heYw.roa
Signing time: Fri 16 Dec 2022 21:10:35 +0000
ROA not before: Fri 16 Dec 2022 21:10:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:1c:c6:4b:8a:93:61:91:68:da:0a:38:55:fe:20:a5:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Dec 16 21:10:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e4f6193744540078c90360911bcad2855fa1798c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:03:e6:a0:22:15:b9:01:3c:67:da:9f:9c:f1:
87:12:e9:1a:99:b9:1c:24:fc:66:0f:6c:b0:1f:6f:
d4:67:60:f9:24:89:3f:55:dc:e6:e6:cc:f9:5d:01:
c5:80:b9:97:4f:97:4b:de:29:da:36:25:06:a4:e5:
4d:4a:c2:6d:63:bc:d8:13:7e:36:29:9e:a3:5b:a0:
a5:a2:b5:9e:39:c4:ec:1d:77:af:a9:15:7b:9f:ba:
45:bb:4a:2c:f1:a8:41:b2:fe:3c:13:d1:2b:64:9e:
83:04:35:e2:05:f9:a7:3a:e8:49:ba:7b:5c:a9:c2:
0e:c8:37:69:65:07:5c:2d:54:c5:0c:8e:e7:c8:15:
59:b5:d8:94:05:17:bc:65:cc:6e:4c:84:da:a8:1f:
72:1b:c3:d8:96:fa:d5:77:a1:d6:7f:f5:96:42:fd:
eb:00:15:01:43:e9:bf:f5:0d:7a:22:e0:7b:65:09:
77:4d:11:b8:f4:80:e8:e9:f8:99:f6:f9:0a:f1:1a:
ce:ff:9c:43:7c:14:d5:65:f1:e7:d3:69:f6:e1:29:
aa:ec:84:ca:ac:c6:00:c4:bc:67:a5:73:5c:b4:af:
fa:0b:99:70:30:6c:24:36:09:41:71:d5:b7:4d:76:
0a:55:86:cc:1b:6c:aa:3b:09:5d:46:6d:aa:7e:f2:
ed:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:F6:19:37:44:54:00:78:C9:03:60:91:1B:CA:D2:85:5F:A1:79:8C
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/5PYZN0RUAHjJA2CRG8rShV-heYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
5e:5e:c3:07:40:91:e3:1e:dc:1d:78:e0:cf:77:19:87:b5:a3:
da:5a:74:51:ef:55:a3:93:80:f7:98:7b:47:9f:81:22:07:81:
56:23:48:27:c8:82:fd:17:82:ab:69:f3:70:d8:fd:f9:6b:62:
b0:4c:e8:fa:f0:e6:35:0e:84:d6:06:a6:34:ac:67:76:ce:0a:
33:de:ba:ef:80:98:41:cd:90:eb:99:82:5b:1d:b3:06:df:e8:
43:ba:fb:e2:64:21:3b:d9:e8:01:10:19:d6:9d:29:31:dd:c4:
3d:c4:25:9e:9d:bb:11:4b:c2:54:6f:08:53:89:cc:8c:8c:a5:
a9:c2:03:4f:f9:da:bc:a2:ff:14:b9:48:79:b5:ca:38:34:02:
00:b5:08:e2:5b:ce:ac:12:1c:60:c4:53:7b:f0:ec:02:8c:3f:
ba:ea:61:89:4f:4d:d7:b3:95:2d:79:17:db:23:84:6c:0c:39:
29:ac:3e:7e:36:5f:5a:e1:e0:8c:ff:66:2b:33:21:db:92:f9:
dd:cc:fa:01:7e:34:e6:af:d5:c5:1c:1c:59:fa:89:ce:cb:44:
f3:83:23:8c:38:22:07:e3:c3:b2:7e:6b:80:a3:b0:e9:89:3a:
51:39:1e:c5:b5:fa:6d:b4:26:a0:b7:a2:0d:51:55:6b:b9:6b:
35:be:00:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 21:24:22 2025 by rpki-client