Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/85P4TZOm6rua9zXIyaWwsb9eLEs.roa
File: 85P4TZOm6rua9zXIyaWwsb9eLEs.roa (raw, json)
Hash identifier: 3LWxX7DuHbv0/5LMV8rOOGpTARwY1R2YaMf4iQ/zxyw=
Subject key identifier: F3:93:F8:4D:93:A6:EA:BB:9A:F7:35:C8:C9:A5:B0:B1:BF:5E:2C:4B
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01896C89F328A41234A532DB1B2A07141D76
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/85P4TZOm6rua9zXIyaWwsb9eLEs.roa
Signing time: Wed 19 Jul 2023 05:05:27 +0000
ROA not before: Wed 19 Jul 2023 05:05:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:189:6c89:3bfe/128 maxlen: 128
2001:67c:64:ffff:0:188:5fe2:b396/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:6c:89:f3:28:a4:12:34:a5:32:db:1b:2a:07:14:1d:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jul 19 05:05:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f393f84d93a6eabb9af735c8c9a5b0b1bf5e2c4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:46:59:6c:ce:48:fd:27:54:59:34:12:0e:7d:
a3:1e:bf:a8:c1:d6:35:c8:ce:c3:8e:7f:b6:4f:5b:
7c:bc:c8:84:64:b3:6c:3a:6c:0f:db:9b:1a:41:26:
88:19:75:c1:7b:23:0b:fe:70:49:8c:9d:e9:a0:04:
49:48:bd:84:e5:9a:3a:33:b9:6a:bf:95:81:60:be:
d2:6a:12:bb:16:44:f8:4f:0b:bd:4c:8d:a8:74:be:
f3:4e:b4:6a:70:0c:9f:e2:6b:d6:e3:42:91:1c:ac:
36:19:1b:90:a2:32:5e:e7:91:18:d7:3f:52:84:eb:
5c:49:4b:e1:6b:05:38:01:d5:1f:db:3a:18:53:5e:
49:2d:07:f0:43:ae:ef:62:db:11:5b:a5:5e:1b:10:
44:df:d9:17:ea:47:c1:9f:d4:7d:39:0c:09:68:c3:
03:65:5a:40:07:33:47:1c:cc:3d:98:89:41:20:ec:
1a:92:94:34:c0:fa:cf:24:e8:06:76:84:0c:7b:d7:
91:95:21:b0:85:ea:83:fb:49:cf:bd:c8:68:d1:f4:
0e:5f:4f:09:d1:d6:f0:a9:9b:46:48:5a:80:56:9d:
41:e0:b5:39:30:74:bc:57:ef:19:1d:44:08:73:58:
10:03:97:59:00:85:d8:7c:fd:e0:1e:bc:b3:41:d9:
e2:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:93:F8:4D:93:A6:EA:BB:9A:F7:35:C8:C9:A5:B0:B1:BF:5E:2C:4B
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/85P4TZOm6rua9zXIyaWwsb9eLEs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
26:83:1f:f6:c7:6b:ff:c2:d1:83:eb:be:84:dc:90:21:eb:f0:
cf:4f:72:87:c8:b6:05:d5:27:44:7b:b7:96:66:b2:d5:55:f4:
c5:f1:84:bc:86:53:1d:36:85:e6:3f:17:93:c0:ad:bd:31:5b:
4b:11:ad:fb:12:b3:e9:ea:25:ac:55:36:18:e7:c5:23:79:47:
80:32:a6:47:5a:68:f9:83:f0:47:c2:50:83:85:08:d4:73:5f:
ab:45:40:8f:34:0a:e5:a8:ad:f0:75:64:3a:48:e6:9c:7a:5e:
7a:db:a0:81:05:5a:d8:fc:7e:d3:ad:cf:58:66:81:8e:79:97:
ec:7a:09:1d:67:ce:37:3e:e9:98:7a:e7:66:ee:74:e7:15:1b:
f4:15:f0:b5:d3:3a:b6:03:a9:14:d6:77:11:62:55:b5:72:46:
bb:c3:01:43:3e:ff:5d:f5:b4:d6:85:58:98:a4:ee:b9:c1:63:
31:78:7b:0e:a1:a6:a4:1e:89:e7:f8:dd:89:59:1d:be:3e:3d:
bb:7c:33:9f:48:42:20:9f:b1:57:79:e2:55:0b:45:b9:da:63:
ea:07:65:98:fd:f4:3b:fe:29:d8:8e:38:96:40:7f:29:2b:3f:
6e:30:44:f0:28:b8:ba:9b:61:b3:e4:82:66:6c:f5:16:a8:ce:
5d:3e:57:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 18:48:51 2025 by rpki-client