Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/8s8-o_8AeleiVkhBtDH6-xywwsY.roa
File: 8s8-o_8AeleiVkhBtDH6-xywwsY.roa (raw, json)
Hash identifier: p4xm/IbyMUFdYs3nx62IzwZcfVzMd6tJkQDXT/x1OHs=
Subject key identifier: F2:CF:3E:A3:FF:00:7A:57:A2:56:48:41:B4:31:FA:FB:1C:B0:C2:C6
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01889DB431FF3AAA2BD4A1284F3E67F7AFB4
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/8s8-o_8AeleiVkhBtDH6-xywwsY.roa
Signing time: Fri 09 Jun 2023 01:10:12 +0000
ROA not before: Fri 09 Jun 2023 01:10:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:188:5fe2:b396/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9d:b4:31:ff:3a:aa:2b:d4:a1:28:4f:3e:67:f7:af:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jun 9 01:10:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f2cf3ea3ff007a57a2564841b431fafb1cb0c2c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:bd:83:7f:65:98:b4:de:c7:db:50:a8:f4:e6:
a5:71:77:9d:5f:5b:e7:e3:82:b8:5a:3b:38:73:16:
0c:8a:ec:c6:fd:1a:04:d1:89:5f:cd:a8:cd:be:d0:
95:94:85:2b:87:9c:cb:d9:d4:ff:a7:51:37:d1:2d:
c3:9c:06:6c:e8:ad:23:81:53:0a:e3:d9:2c:65:d6:
11:c6:a1:0b:7f:0c:4a:c8:80:ac:5e:0f:c4:1b:5c:
1f:20:f0:2d:e2:e4:5b:e7:47:72:54:b0:94:5d:f1:
04:35:50:3d:57:6c:fc:17:a8:41:24:8c:48:02:64:
85:63:a1:89:7f:62:1b:be:df:04:a2:73:ad:8b:83:
a8:22:85:1c:46:1f:f7:0e:1c:66:a4:82:ec:76:18:
37:8c:ff:26:76:63:ac:b3:79:22:83:a4:98:0b:57:
4e:c0:d0:88:65:b8:1e:85:a9:db:bb:2e:b0:d0:50:
ef:e6:1b:fd:bc:bd:36:d3:b5:58:2b:d2:70:7c:09:
57:cf:be:02:00:4d:82:3b:1a:2f:1e:d7:90:11:ce:
26:cf:74:19:e4:31:85:c8:42:ae:7c:16:d7:53:d9:
9b:a6:63:5c:fe:94:4e:e7:bf:a0:61:92:ec:8e:f2:
9f:ef:a1:40:83:49:0f:76:97:ec:cd:6d:a3:36:bc:
e3:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:CF:3E:A3:FF:00:7A:57:A2:56:48:41:B4:31:FA:FB:1C:B0:C2:C6
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/8s8-o_8AeleiVkhBtDH6-xywwsY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
46:25:7d:74:28:27:ca:82:e3:d5:43:be:30:5f:57:93:56:ef:
42:6a:cd:94:30:27:35:49:53:1a:6f:f6:3e:1a:0e:04:57:cf:
d0:44:70:43:2d:3a:eb:75:44:dc:2e:e2:df:f0:6f:f3:f5:79:
d9:91:74:b0:91:2c:56:cd:97:0a:f4:c4:9f:52:06:5c:a8:ce:
a6:00:8d:7b:d5:f8:fe:95:82:68:be:aa:99:5b:69:b4:ba:e6:
f3:4b:2d:bf:e6:4f:07:3c:8c:98:62:13:bc:4e:0b:82:31:e6:
fe:e7:44:90:fe:30:b3:8e:46:c6:70:eb:74:8b:c9:7b:6f:5f:
8e:31:57:15:2e:96:74:3d:27:37:18:ff:05:f7:6e:87:2b:e7:
7e:ec:83:43:b6:cf:df:f4:38:7e:d6:f8:94:92:fe:6c:d3:ce:
88:77:91:66:59:18:2a:20:a6:26:c6:29:2c:d6:96:ba:a9:11:
60:b5:57:6d:07:86:0e:1e:26:2d:ca:1a:b8:46:c8:1f:09:31:
45:15:73:ea:7e:eb:a2:10:b8:71:2a:ee:66:d7:11:c1:b2:fe:
93:1b:8d:f0:a6:2a:f1:ca:76:50:1c:a4:c4:90:fc:c1:be:bd:
88:a5:ca:7b:b6:47:ef:af:4c:98:dc:8d:ef:a7:c3:7c:84:0c:
4b:2d:81:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 17:29:07 2025 by rpki-client