Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/66OXV-K_-wJ17jZgnZiYqQJyccI.roa
File: 66OXV-K_-wJ17jZgnZiYqQJyccI.roa (raw, json)
Hash identifier: KPI9/P2rhi56kK3oAMq+LMRNw/no3X+l7cLgxRUU3cs=
Subject key identifier: EB:A3:97:57:E2:BF:FB:02:75:EE:36:60:9D:98:98:A9:02:72:71:C2
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0182DDF0E9EFC33F813F25A620A8878E7977
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/66OXV-K_-wJ17jZgnZiYqQJyccI.roa
Signing time: Sat 27 Aug 2022 06:15:29 +0000
ROA not before: Sat 27 Aug 2022 06:15:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:182:3f1d:a803/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:182:7cb2:99d4/128 maxlen: 128
2001:67c:64:ffff:0:182:383f:6b78/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:dd:f0:e9:ef:c3:3f:81:3f:25:a6:20:a8:87:8e:79:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Aug 27 06:15:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eba39757e2bffb0275ee36609d9898a9027271c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:03:96:5e:31:de:8b:86:51:44:c0:fd:51:93:
4d:ec:76:a9:f6:81:50:05:fe:e2:c0:00:1b:71:c3:
38:17:3d:10:0c:30:5c:b9:e0:c3:42:5e:17:22:de:
05:4d:67:b3:16:80:77:06:b1:da:7f:e9:a7:78:cc:
8f:94:53:25:21:72:a7:f5:12:cd:3b:7a:bb:2a:89:
37:34:3d:57:f1:d6:90:af:4c:19:a3:1c:b8:9c:df:
7f:e6:bd:13:61:8b:b1:4b:0c:c6:f9:06:1b:46:11:
a4:02:84:41:7f:fb:4d:8e:d9:ea:fc:1b:13:07:17:
c8:2d:20:01:65:23:61:68:4d:9f:43:a4:c5:78:e8:
7b:6a:7b:c0:ed:e4:1a:47:eb:d4:d7:95:7f:63:39:
83:9f:87:1b:97:49:59:6f:b9:29:69:2e:b6:45:b1:
2a:2d:f0:1a:94:24:45:b1:14:e0:33:1d:f8:ae:14:
fe:73:c1:ae:64:7d:9d:d0:3a:26:c2:a5:c4:91:20:
af:81:f0:30:eb:f5:84:72:29:b8:6b:4e:7e:d5:cf:
76:9e:5d:73:5c:e7:c3:71:1d:e2:2a:62:b7:10:5c:
89:9d:e9:f5:ce:60:c9:04:29:64:cd:19:28:43:6d:
43:6c:6c:9f:2e:7b:8d:82:08:67:b7:4e:ce:bd:ed:
89:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:A3:97:57:E2:BF:FB:02:75:EE:36:60:9D:98:98:A9:02:72:71:C2
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/66OXV-K_-wJ17jZgnZiYqQJyccI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
74:fb:f3:86:4e:99:09:36:5f:23:ab:11:92:f9:ec:88:76:fe:
eb:ab:23:51:09:21:c9:1d:9c:7e:41:f0:5b:f3:5e:4d:bd:1f:
22:77:51:0f:5c:42:41:b4:d8:4e:6d:f9:7c:94:71:05:00:7e:
9f:6c:65:6c:be:0b:11:77:24:ba:93:89:f0:45:58:88:eb:3b:
03:1c:b7:c2:93:61:4e:5b:82:26:ae:f5:56:a2:4b:7d:14:af:
11:fd:1a:d2:28:b3:ca:93:d0:d3:fc:56:89:4d:16:28:62:47:
b1:b7:8d:06:10:f3:b6:6a:e0:31:48:50:33:2e:2e:35:6c:11:
65:bc:3f:d9:91:5d:ea:c6:f3:73:6d:84:d1:8b:59:ed:59:c7:
0f:00:f1:fb:a4:95:80:6f:77:b3:8e:10:4b:45:ab:b3:ab:5b:
14:4a:76:2d:01:ef:27:85:2c:7a:1b:87:d4:ad:5c:7f:89:7f:
17:13:4b:4f:70:9f:18:d7:28:a2:cf:7b:57:01:7a:6b:e4:33:
18:17:54:9d:43:94:23:fa:7e:61:b7:4f:91:09:9a:d6:df:da:
73:a6:6c:b2:d8:24:84:52:3d:19:ec:d8:00:ee:60:95:de:fb:
ee:69:3e:4d:52:ba:f4:16:bd:d8:20:96:e9:fc:98:1b:e3:4b:
9c:cd:63:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 14:59:19 2025 by rpki-client