Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/6wFrBvtkFhqLwLy9cPsy_x7f9Lk.roa
File: 6wFrBvtkFhqLwLy9cPsy_x7f9Lk.roa (raw, json)
Hash identifier: HcrOVADLroqsGTDCsgKzoDgHcmR1IwqG02h5S8UxsPc=
Subject key identifier: EB:01:6B:06:FB:64:16:1A:8B:C0:BC:BD:70:FB:32:FF:1E:DF:F4:B9
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0187138CCA919840A98100FAC1183C7FE86E
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/6wFrBvtkFhqLwLy9cPsy_x7f9Lk.roa
Signing time: Fri 24 Mar 2023 12:16:46 +0000
ROA not before: Fri 24 Mar 2023 12:16:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:13:8c:ca:91:98:40:a9:81:00:fa:c1:18:3c:7f:e8:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Mar 24 12:16:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eb016b06fb64161a8bc0bcbd70fb32ff1edff4b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:cd:95:28:9d:9b:c8:17:3c:10:ad:66:be:82:
f7:3f:e6:d1:3d:1b:8c:fb:8d:45:5c:53:61:86:33:
d8:c0:68:1f:24:94:08:40:34:f3:0c:67:10:18:c5:
9b:ff:0f:63:da:4f:08:ce:a3:d6:4c:e8:e9:29:ac:
98:9d:c2:33:6b:2b:35:a8:96:69:36:46:99:a5:20:
a5:3f:3c:8e:32:8d:e2:5c:ff:88:6e:22:30:0d:cc:
f7:f9:9a:53:83:5a:ef:3e:79:be:c4:2d:f3:67:07:
b8:f8:ac:c2:28:8c:80:bf:4a:a3:bc:fe:44:67:1d:
fe:52:e5:2b:a9:53:7d:c4:88:0d:81:a0:c2:13:6d:
c1:3c:ca:5f:06:b4:36:33:85:4e:4b:34:1b:f3:80:
b3:bc:27:02:64:0e:6d:6c:61:8a:ff:9a:f8:2b:61:
8b:d0:fe:53:56:81:f4:9e:9a:f5:94:40:62:0b:14:
0a:12:c8:f3:95:91:bb:d9:d3:d7:bb:24:8f:ce:14:
9d:21:20:6c:a7:26:65:f5:17:ce:70:6d:0d:35:9d:
05:90:55:aa:aa:11:9b:a0:82:9e:a2:a4:5c:c4:43:
cd:fd:d6:32:89:28:d5:c3:58:00:4b:c1:9c:8a:c7:
02:1a:27:1a:ee:f8:21:ac:61:99:61:c5:0a:11:6f:
28:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:01:6B:06:FB:64:16:1A:8B:C0:BC:BD:70:FB:32:FF:1E:DF:F4:B9
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/6wFrBvtkFhqLwLy9cPsy_x7f9Lk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
97:e3:2b:89:8e:4f:af:cf:7c:85:cd:d2:cb:ad:ae:d8:ef:19:
94:62:97:8b:fa:c2:90:f5:d8:21:a1:bd:4b:67:d1:e7:e9:6e:
a4:43:e2:2d:7d:f5:2c:c2:0e:c4:d5:c7:05:b6:73:06:a6:44:
f1:ed:30:4c:11:9f:cf:7c:35:cf:5d:0c:fd:d6:80:a9:fd:30:
f1:4a:f1:55:da:7c:72:9a:e3:98:50:69:42:0f:a0:28:97:aa:
fe:97:92:fd:87:e2:89:46:fe:1f:ba:16:9e:26:cb:e2:28:ce:
79:21:e5:77:de:77:96:b0:33:5a:10:a6:5e:cd:7a:e4:99:ab:
86:42:60:7b:ac:f7:19:03:1d:97:a2:d4:f5:14:94:0e:4a:da:
f6:36:0e:44:78:d3:77:85:44:95:f6:36:40:96:8a:11:0a:a8:
c4:37:ea:f2:66:46:44:d1:f5:ba:12:8b:07:7a:8a:2b:ab:f1:
af:b3:b0:a9:27:88:f4:77:cc:d6:ec:65:82:19:5f:47:21:05:
5f:31:42:9f:38:2d:79:9b:a0:8c:dc:df:89:15:18:06:1f:f2:
93:b3:1e:22:15:f8:25:2c:b6:66:0a:9d:24:63:41:68:87:62:
d0:ad:84:07:65:40:8e:d4:5f:fa:bd:61:71:e2:3f:f9:52:38:
84:ac:13:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 21:16:26 2025 by rpki-client