Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/7pIjDBBauzSCWmipCpVsizL3HeI.roa
File: 7pIjDBBauzSCWmipCpVsizL3HeI.roa (raw, json)
Hash identifier: 96R7bUm6NmKwstQkHNn51PPBbE87+NsKqPsuOurRsro=
Subject key identifier: EE:92:23:0C:10:5A:BB:34:82:5A:68:A9:0A:95:6C:8B:32:F7:1D:E2
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0189405DB83A99CB4DF9328239A7E4B5D886
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/7pIjDBBauzSCWmipCpVsizL3HeI.roa
Signing time: Mon 10 Jul 2023 15:13:51 +0000
ROA not before: Mon 10 Jul 2023 15:13:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:188:5fe2:b396/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:40:5d:b8:3a:99:cb:4d:f9:32:82:39:a7:e4:b5:d8:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jul 10 15:13:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ee92230c105abb34825a68a90a956c8b32f71de2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b0:12:c7:ec:72:07:e9:7e:c6:76:8e:a7:83:
cf:39:8a:4f:27:16:21:93:b0:cb:a0:87:26:d9:4b:
99:fd:d2:27:a0:ae:35:27:13:78:37:92:39:e0:bc:
5c:5d:52:e3:ae:25:6c:3a:1c:64:43:8b:50:bb:50:
0d:22:1d:c3:f9:de:d6:fe:95:7a:26:b0:c7:99:fe:
e6:9c:74:53:c2:9d:25:fe:1f:03:20:8e:21:22:6a:
bd:b4:eb:77:82:a1:d7:60:79:f0:90:f2:e9:11:ba:
3d:08:77:e7:40:63:ad:87:ad:ed:47:ca:cc:84:fa:
86:9f:39:05:64:bf:c0:18:f6:91:a6:1b:37:3f:ec:
05:81:6a:cc:c0:59:eb:d7:67:a6:98:07:fd:6a:31:
5b:fa:56:4d:44:41:87:9a:f4:c5:63:a3:90:02:40:
f9:eb:52:81:fa:5b:70:b4:9d:e8:7c:af:20:e9:4a:
ee:7f:34:a0:07:ba:d6:b5:2a:15:9c:24:ec:d9:04:
62:41:46:15:3f:2e:a1:39:18:8b:2c:fe:04:2d:6c:
b6:b1:6f:59:27:d6:aa:7e:c5:fe:5c:b0:21:de:12:
e5:08:40:93:9f:4e:8c:aa:37:48:df:f8:35:0c:9a:
4c:c9:c1:f6:6d:30:d8:3a:88:92:6b:d1:02:98:e8:
73:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:92:23:0C:10:5A:BB:34:82:5A:68:A9:0A:95:6C:8B:32:F7:1D:E2
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/7pIjDBBauzSCWmipCpVsizL3HeI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
68:57:5a:f8:cd:5b:7c:d9:f5:0d:33:03:1a:3f:1e:79:84:88:
19:32:fe:71:c7:71:70:71:81:60:d9:51:15:b3:d9:3e:2b:2e:
e1:a0:1c:2c:65:d7:00:23:c9:db:57:93:35:6f:e3:96:e6:32:
b4:a1:52:3f:14:29:77:79:d6:e9:54:83:79:61:d4:4d:fb:e7:
3c:3e:74:5e:23:b4:f2:d5:0b:24:af:40:90:6c:6f:ae:71:2c:
54:a0:f9:2a:4a:69:f6:72:ba:8e:70:e5:6b:11:b2:fc:51:4d:
b1:dd:9f:f7:15:21:84:33:52:39:c8:d3:e5:08:be:71:1b:2c:
db:fd:18:d9:1d:d7:cd:c0:53:40:05:f5:a7:92:7b:3c:b3:b4:
33:85:53:d6:d7:cc:d3:d2:1b:54:35:8c:e1:a8:f8:79:40:d6:
58:9f:b0:4a:28:d7:f3:a4:96:32:e6:de:e9:dc:5d:bb:f3:5f:
6d:f8:1e:c0:8b:b9:4f:29:c0:02:ba:c0:f2:6e:0b:2a:58:68:
bc:cb:f4:1e:af:e6:3f:9e:c7:6d:ed:3b:92:34:3b:ed:96:35:
0b:50:37:ca:5a:dd:46:17:81:9f:9c:ca:7b:88:8f:47:75:c7:
b2:c9:32:7e:51:89:81:8e:21:14:54:df:b4:4d:63:d3:4c:01:
f3:19:ea:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 10:22:40 2025 by rpki-client