Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/9Aa_Kr2svBRHusMaQKxn0_uE52g.roa
File: 9Aa_Kr2svBRHusMaQKxn0_uE52g.roa (raw, json)
Hash identifier: KptG/2Kf3sCtqam9d89k0eXLL9LTVNFhUM125M4gY44=
Subject key identifier: F4:06:BF:2A:BD:AC:BC:14:47:BA:C3:1A:40:AC:67:D3:FB:84:E7:68
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0189488438E019189712376D6E7159F8E871
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/9Aa_Kr2svBRHusMaQKxn0_uE52g.roa
Signing time: Wed 12 Jul 2023 05:12:52 +0000
ROA not before: Wed 12 Jul 2023 05:12:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:188:5fe2:b396/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:48:84:38:e0:19:18:97:12:37:6d:6e:71:59:f8:e8:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jul 12 05:12:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f406bf2abdacbc1447bac31a40ac67d3fb84e768
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:82:8b:d2:64:10:c2:38:0e:48:00:e5:d7:ee:
8e:d5:c1:0c:a5:99:b0:89:89:f2:e8:d6:d2:ec:c7:
27:4d:f5:76:d5:bd:9c:fb:c1:0d:03:71:cb:5a:00:
5e:bb:80:fd:c2:0d:2c:60:c9:61:97:d2:cf:96:de:
91:ca:39:a7:ef:00:37:7f:dc:57:50:3a:e1:62:f5:
0e:88:f6:a0:af:d2:63:87:0b:c4:1c:52:a4:01:ab:
11:bb:0e:6b:12:2e:34:35:db:88:de:d1:2b:a3:31:
78:5b:3a:0a:0a:6f:aa:63:d4:4b:48:1e:4d:a8:5a:
ea:d7:09:e9:65:5a:a4:cf:cd:59:c6:e9:35:99:8d:
c4:10:55:e9:3d:d6:5f:e0:ba:24:e0:65:2e:4b:3c:
49:0b:05:9e:c2:d3:fc:8a:73:cb:21:53:31:f8:f9:
cf:31:4a:dc:8d:93:af:45:d9:91:11:14:f9:07:ea:
4c:78:61:e4:d1:17:7e:c5:26:e8:eb:20:bc:57:09:
c2:08:74:07:99:fe:e2:d0:6f:a1:76:cb:04:1d:89:
9c:7a:7e:0a:ec:c0:bd:af:7b:d3:ec:56:c0:14:13:
d8:15:81:78:e0:c6:6b:12:21:90:6b:30:68:f3:3b:
03:81:af:53:07:c6:64:e9:44:d6:96:57:ec:83:df:
7f:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:06:BF:2A:BD:AC:BC:14:47:BA:C3:1A:40:AC:67:D3:FB:84:E7:68
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/9Aa_Kr2svBRHusMaQKxn0_uE52g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
44:c7:3a:97:9e:a7:46:8d:f9:90:31:c6:f5:22:e1:e8:a3:e4:
d9:97:06:a0:b9:fc:24:a3:5f:ba:44:e4:f0:c6:7c:63:43:dc:
11:b5:a3:74:77:d7:76:78:74:4a:44:7a:e8:24:1d:b9:5c:b5:
f1:bb:bc:72:9b:46:1c:0f:e4:f6:da:7c:8f:66:c9:a9:f2:88:
97:43:2e:88:28:17:19:2e:55:7c:1f:16:b6:ca:2c:6a:6b:c9:
ea:73:cc:1e:f3:09:46:82:84:4f:74:e1:56:68:72:36:0d:e7:
a7:5d:4f:5d:63:10:a8:d3:2d:b1:45:ac:71:fd:ab:bb:c0:b4:
e2:77:2c:35:5a:16:06:5d:e4:ab:e7:83:24:f6:90:69:4d:ce:
5c:6c:8e:b1:9c:26:6d:c0:e4:7c:05:f0:e2:7a:12:a5:e9:3a:
da:9d:d0:c7:eb:2d:33:51:08:d7:23:b4:33:15:f6:a1:9b:21:
4e:e7:a2:24:ec:76:70:33:4c:38:f7:48:41:54:17:3b:d5:3e:
e0:02:61:b1:50:ab:3a:2a:ca:08:6b:3b:b3:20:53:52:5e:f5:
54:01:f5:5f:2c:f8:bd:65:41:ba:25:19:ad:1d:06:01:81:1d:
dc:a5:2c:e7:ce:b3:d6:55:7d:bc:7f:46:fa:86:60:2d:4d:59:
e7:89:f7:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 21:52:09 2025 by rpki-client