Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/5T8fiy2C0CsBDEg2wV09k279Ij0.roa
File: 5T8fiy2C0CsBDEg2wV09k279Ij0.roa (raw, json)
Hash identifier: F8X0afPb6xMCyMKyVC4cevmM+49K1fRn0egN8G5RXqM=
Subject key identifier: E5:3F:1F:8B:2D:82:D0:2B:01:0C:48:36:C1:5D:3D:93:6E:FD:22:3D
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01898D65CDC5B3AEE76355FE855C8F5E87F6
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/5T8fiy2C0CsBDEg2wV09k279Ij0.roa
Signing time: Tue 25 Jul 2023 14:13:26 +0000
ROA not before: Tue 25 Jul 2023 14:13:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:8d:65:cd:c5:b3:ae:e7:63:55:fe:85:5c:8f:5e:87:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jul 25 14:13:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e53f1f8b2d82d02b010c4836c15d3d936efd223d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:7a:cb:8b:7c:62:fb:d5:01:a5:a1:01:10:c2:
1f:77:cd:6c:3b:9b:e1:d8:00:ed:a4:71:c0:4a:50:
20:6b:5e:07:1e:95:00:de:35:dc:7c:92:67:c5:e2:
5b:d2:2d:7d:74:1a:05:11:9e:f3:29:38:c0:18:bc:
3c:cf:26:62:6e:b3:b1:9d:14:04:39:fc:fc:1d:4b:
f9:90:b7:33:81:40:45:13:86:11:23:58:11:64:4a:
63:01:58:22:bc:70:1b:04:92:c8:f5:2f:83:53:2b:
cf:10:5e:74:9d:90:9d:9b:d6:09:a9:52:a1:da:57:
d9:e0:1a:8c:13:59:1e:bc:0c:ae:cd:8e:24:85:2f:
fb:dd:06:88:40:35:d3:43:4b:fd:36:9a:5b:df:ea:
11:ca:5e:42:18:ca:bf:ca:5a:c1:e7:a9:51:17:a3:
a0:76:16:5b:d3:60:bf:61:68:02:16:8f:35:e6:39:
59:77:0e:46:64:5e:26:dc:cf:f2:8b:f7:bb:0c:8d:
0e:41:99:bb:b9:50:91:d0:1f:d1:04:48:84:4c:c8:
c0:2e:95:78:b9:a7:c6:a0:38:11:fe:49:23:3f:89:
8a:2e:55:f3:1a:67:15:fc:3e:62:3a:84:b4:0d:c9:
8d:8a:22:3d:b2:9a:60:b5:d4:ab:10:a6:86:8c:85:
11:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:3F:1F:8B:2D:82:D0:2B:01:0C:48:36:C1:5D:3D:93:6E:FD:22:3D
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/5T8fiy2C0CsBDEg2wV09k279Ij0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
62:92:35:8f:66:47:b4:cd:62:a9:c8:eb:7d:7c:77:d2:37:c2:
58:65:fc:74:ba:5c:8d:e2:46:24:c5:0c:9e:09:12:a4:e3:d3:
3d:86:99:93:f5:d7:9e:e6:be:eb:d3:0e:c4:bd:34:91:79:30:
7d:d8:4c:f8:e9:ff:22:24:75:54:6a:ad:86:c5:c4:08:6c:8b:
2c:50:36:84:5f:09:06:b3:9d:8d:95:8c:a4:2a:17:77:cd:3f:
10:5a:97:49:8c:c5:72:a6:cd:84:1c:da:48:b7:b9:7f:c1:d2:
36:9e:a8:4d:82:aa:d8:fe:2a:fb:de:4b:b4:92:98:89:c0:6d:
f3:b8:72:62:dc:6a:e8:37:07:1b:12:e9:f7:56:b3:33:e0:a5:
c6:9b:94:bc:9e:20:2a:44:69:27:bc:bc:61:fa:a5:3b:e3:3b:
6b:36:e9:58:70:52:08:86:64:6e:6d:3a:dc:7b:fe:7b:5f:dd:
19:cc:7e:01:fd:df:0a:ea:fc:2b:bf:c3:cb:ba:8a:79:70:3a:
cb:30:0f:ce:a3:b2:92:39:b1:57:d8:e1:d3:a8:1c:b0:ad:2e:
2a:9c:fa:84:d8:8c:30:4d:c1:85:e1:78:e5:2e:15:2a:50:0a:
bc:bc:d3:57:aa:fc:d2:2b:33:30:16:92:87:2c:6a:bb:81:2c:
a5:dc:c9:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 4 05:09:23 2025 by rpki-client