Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/8Mu6Rw7ERrp5gy5QKL7tj6x6KIo.roa
File: 8Mu6Rw7ERrp5gy5QKL7tj6x6KIo.roa (raw, json)
Hash identifier: xvIU7r3BwbOoba9XLyNG0ibAu6y4Z3yJfha7t2Lh2VU=
Subject key identifier: F0:CB:BA:47:0E:C4:46:BA:79:83:2E:50:28:BE:ED:8F:AC:7A:28:8A
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018934C4A7F8988649996CA8FDF8E4F2F08B
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/8Mu6Rw7ERrp5gy5QKL7tj6x6KIo.roa
Signing time: Sat 08 Jul 2023 09:10:50 +0000
ROA not before: Sat 08 Jul 2023 09:10:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:188:5fe2:b396/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:34:c4:a7:f8:98:86:49:99:6c:a8:fd:f8:e4:f2:f0:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jul 8 09:10:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f0cbba470ec446ba79832e5028beed8fac7a288a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:62:48:03:a8:8b:8f:c1:e9:1d:d0:7f:8a:73:
70:48:c7:32:a2:7e:93:4e:bc:76:a8:95:f8:fe:1e:
a5:a3:b3:e1:3b:69:86:0c:0a:32:de:1e:7d:67:d7:
68:fe:05:db:35:c0:2b:79:06:97:3d:63:4f:50:3f:
1a:8c:dc:c6:21:a4:e3:2e:36:a0:ed:ea:4f:92:a0:
b0:6a:db:18:4d:d7:47:78:ed:d6:fc:da:4a:e5:65:
3d:44:d1:03:e8:50:10:aa:86:41:37:3a:cd:b5:f8:
e0:72:7b:40:17:36:18:18:2d:7a:df:88:13:e8:fc:
93:c5:c9:29:08:bd:39:01:14:bd:96:5b:7d:69:ff:
d3:b7:a6:cd:12:40:e4:7e:92:61:1f:3d:49:69:39:
c8:29:5c:de:de:ba:e7:21:5c:a6:15:fb:11:8f:38:
53:49:94:f5:59:95:13:b9:ce:98:e9:da:a4:86:8c:
94:47:88:5b:6d:c1:f0:e4:2c:f3:af:39:62:b6:f3:
c7:4e:3f:c2:80:de:3f:87:4e:bd:5a:5e:84:40:54:
38:db:fe:7b:55:10:77:7e:f2:f7:81:7a:7a:44:57:
fa:93:f0:5b:19:73:e1:89:13:51:bd:a5:4d:1b:32:
a9:34:7e:71:85:1e:14:b5:35:ee:7c:bb:99:08:ec:
b2:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:CB:BA:47:0E:C4:46:BA:79:83:2E:50:28:BE:ED:8F:AC:7A:28:8A
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/8Mu6Rw7ERrp5gy5QKL7tj6x6KIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
27:ea:9b:72:70:61:33:0c:9b:c8:e0:0e:11:c5:55:de:e7:72:
38:02:95:93:ac:e9:2b:b2:68:31:41:16:50:46:79:5a:78:6e:
e8:bb:b5:9f:f3:e4:a0:b8:44:2e:4a:91:2d:a3:be:c6:7d:a6:
6f:b7:08:54:21:36:e5:82:12:ba:0f:af:8f:fb:a7:6f:e7:c9:
e9:b4:52:9c:0f:67:39:6f:95:b9:c7:cc:7c:46:3a:77:cf:9e:
dc:5e:dd:b7:af:3a:69:5d:f4:36:d6:01:47:21:37:4c:1a:bc:
47:c6:b5:d8:f8:d0:60:81:f6:3d:47:e5:36:d6:2d:10:1f:35:
a9:61:f9:95:b2:1b:c8:0e:75:22:b5:40:94:4d:95:ad:67:1b:
fb:8b:36:64:03:09:fc:58:8e:f1:a5:bd:f6:6a:50:76:a7:7f:
28:dc:e6:4e:a9:d6:fa:67:1b:3e:f5:45:3f:b1:43:e8:1c:d2:
31:c1:df:25:6f:1f:7d:50:4d:26:6f:23:d9:0c:17:50:73:3b:
f9:6a:f6:82:6c:9c:d8:bc:c2:42:2a:44:e3:b5:9d:45:cb:6c:
d1:b3:8d:3c:29:f8:6e:73:5a:a4:cd:f5:44:ac:52:09:bf:12:
9c:85:e9:09:83:26:9c:1a:d5:60:42:42:03:1b:2d:c0:bf:68:
06:ba:31:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 4 06:41:04 2025 by rpki-client