Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/9sp0ipc7oWZv7ZLHoFrhkAXvfpc.roa
File: 9sp0ipc7oWZv7ZLHoFrhkAXvfpc.roa (raw, json)
Hash identifier: x5UCLP+79BwioKHKZBtWK5s+KBaEzR91tYKXNXqxEIM=
Subject key identifier: F6:CA:74:8A:97:3B:A1:66:6F:ED:92:C7:A0:5A:E1:90:05:EF:7E:97
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 7A1DC906
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/9sp0ipc7oWZv7ZLHoFrhkAXvfpc.roa
Signing time: Sun 10 Apr 2022 11:09:35 +0000
ROA not before: Sun 10 Apr 2022 11:09:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:180:457:1e3f/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2048772358 (0x7a1dc906)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Apr 10 11:09:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f6ca748a973ba1666fed92c7a05ae19005ef7e97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:62:e6:90:a7:57:41:d7:4f:8a:c1:b1:e7:6f:
3f:78:90:07:22:27:88:48:03:38:56:29:8d:17:bb:
47:bf:b1:0b:6b:bd:05:04:eb:56:dc:90:5f:0d:c9:
8e:83:15:c9:99:8b:3f:c5:d1:2e:c1:34:1d:35:21:
26:41:07:00:4c:97:e9:b3:9d:6e:a0:c8:e1:7d:49:
68:45:24:b7:45:ff:d2:f0:54:b4:58:1d:8f:e4:af:
2c:4f:67:f5:79:f9:55:ac:79:00:5c:ae:5a:02:d4:
65:ce:13:44:08:b8:17:2a:3c:12:20:d9:f2:e5:cc:
33:f1:9f:f6:94:2b:e8:51:e4:4e:43:5a:12:d7:5b:
0d:ff:69:c6:8a:55:79:49:a9:bf:6c:f7:e1:b8:2a:
e9:27:2b:b5:2b:54:f2:1a:76:ac:f3:61:46:44:7d:
86:b6:54:bc:99:6a:82:af:aa:ae:51:40:75:9a:50:
8c:15:d4:e7:3d:a7:58:55:eb:4f:40:db:71:0a:97:
92:29:2d:a0:40:68:73:d5:fc:23:3e:d4:d2:b7:f8:
48:49:a0:1b:72:3a:79:33:01:fe:62:f3:b5:50:50:
7c:f5:7a:9e:2a:b4:db:e6:1e:b7:32:d7:0f:03:37:
84:8f:9a:f3:69:78:31:91:94:17:26:c3:b6:60:8e:
49:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:CA:74:8A:97:3B:A1:66:6F:ED:92:C7:A0:5A:E1:90:05:EF:7E:97
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/9sp0ipc7oWZv7ZLHoFrhkAXvfpc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
a7:a9:51:ea:1f:7c:3a:96:74:9c:02:90:38:b7:a7:f3:01:49:
3c:34:d3:d6:11:1f:b3:76:b0:c1:a1:41:c7:d1:57:a8:6c:17:
03:cc:20:76:56:54:65:2d:d2:39:37:fb:a8:0b:5a:c2:4c:6e:
86:73:67:4e:b2:91:8a:91:6e:2e:c1:f3:3d:ae:64:9f:f6:52:
29:c9:d0:43:7f:7b:59:d7:3d:bb:28:19:d0:04:11:92:b6:e4:
40:b1:7f:ee:dd:47:50:d7:80:49:6d:53:85:e2:83:b0:97:9a:
92:e8:31:25:0f:5c:57:05:47:b8:69:87:6c:83:2d:47:10:f4:
d6:19:52:9b:02:37:08:50:05:fa:e5:bc:ea:79:8c:4d:88:27:
ca:f0:e9:9d:57:4a:68:f7:90:5e:e6:e7:37:ea:9a:6a:43:e8:
14:03:9f:27:45:96:14:c9:b0:3b:6d:14:15:27:a9:c0:dd:62:
fc:94:77:aa:32:7e:ae:19:36:9c:9a:ca:bb:79:36:61:f9:65:
30:7d:1d:8d:ab:b0:32:d2:a8:f2:b4:b7:0f:22:e3:6d:79:3c:
8e:a7:d2:6f:41:6d:7b:90:d7:2f:a8:97:79:f2:e5:d7:cc:63:
1d:e4:95:0f:52:5c:e0:2f:84:ef:cd:35:64:4c:86:29:8e:9a:
bd:a3:17:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 18:44:31 2025 by rpki-client