Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/9u5IRj894wOvJaL0ksv1XckUyuM.roa
File: 9u5IRj894wOvJaL0ksv1XckUyuM.roa (raw, json)
Hash identifier: +9nt9+tUDLUrQEszvXxfK8gdA+REK6PNguLxA2/2a14=
Subject key identifier: F6:EE:48:46:3F:3D:E3:03:AF:25:A2:F4:92:CB:F5:5D:C9:14:CA:E3
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018327861982B83EA920261F034C142BE1DC
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/9u5IRj894wOvJaL0ksv1XckUyuM.roa
Signing time: Sat 10 Sep 2022 13:10:43 +0000
ROA not before: Sat 10 Sep 2022 13:10:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:182:3f1d:a803/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:182:7cb2:99d4/128 maxlen: 128
2001:67c:64:ffff:0:183:1279:659d/128 maxlen: 128
2001:67c:64:ffff:0:182:383f:6b78/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:27:86:19:82:b8:3e:a9:20:26:1f:03:4c:14:2b:e1:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Sep 10 13:10:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f6ee48463f3de303af25a2f492cbf55dc914cae3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:2f:e9:65:b7:af:2b:dd:46:35:ef:47:6e:36:
a5:31:94:2d:4e:73:02:d5:ad:90:07:64:f8:bd:5e:
5b:7e:7a:da:e1:c3:db:b3:68:26:72:4a:54:7a:2c:
8a:93:14:1d:bc:07:57:57:6f:53:44:56:b0:ae:82:
74:f1:36:73:71:1f:79:c4:c7:a8:46:f8:21:54:06:
46:8b:2d:21:e7:cd:99:2e:ce:ec:a9:4e:8d:7a:d2:
22:a4:7a:91:61:9a:31:28:9c:57:36:f5:ae:46:08:
78:2c:8a:52:f3:11:c9:ab:7c:67:be:a9:f3:4d:bc:
97:7d:b1:30:98:5b:44:14:0b:a7:81:8c:9b:c7:68:
62:f4:8a:0e:f0:97:78:dc:22:25:81:e2:bc:c9:45:
8c:77:5a:a8:16:d5:83:fd:47:df:db:e4:a9:9d:f2:
b6:15:a0:26:66:06:f0:9d:ba:59:67:30:40:2b:83:
e9:97:3d:a3:7a:3f:86:9e:64:20:99:07:bc:89:03:
6c:1b:47:a5:81:57:c0:05:d3:82:24:99:7d:5d:c2:
a4:34:75:3f:5d:e3:ea:8f:f3:8d:51:38:32:1c:9a:
45:56:fe:b3:cc:dd:25:f2:70:b1:a5:01:94:0a:50:
63:38:d9:3e:ce:1c:1e:20:89:c7:2e:40:5e:9c:3c:
e6:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:EE:48:46:3F:3D:E3:03:AF:25:A2:F4:92:CB:F5:5D:C9:14:CA:E3
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/9u5IRj894wOvJaL0ksv1XckUyuM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
a1:48:91:42:99:d1:7e:8f:99:b3:a5:2e:f6:6d:fa:4b:bc:e3:
63:3f:0c:40:ec:ed:a5:9f:b4:13:bb:32:31:eb:4e:9c:11:70:
e4:bf:f5:2b:07:94:ae:ce:1b:31:06:73:e4:b2:f8:52:37:45:
c7:67:a6:63:f3:48:f7:f4:da:9f:6e:9d:69:eb:4f:14:46:05:
57:98:dc:75:3f:4c:d8:a7:6a:34:42:e8:3c:de:bb:af:46:bd:
3a:e9:57:4a:1c:e3:ab:a1:d2:1c:4e:13:1d:c2:13:17:f2:63:
1a:84:0e:01:8d:c5:80:f3:fa:b4:61:73:ff:14:7b:77:35:2d:
61:e3:d0:79:9f:b8:0d:29:7f:a0:54:f9:40:37:bb:37:0a:a6:
81:fd:5b:ba:ee:ed:2d:41:06:a6:40:47:32:9d:cc:97:bf:ac:
48:7a:c0:dc:56:fb:0a:fb:bd:fe:0f:6c:a5:26:7c:d0:79:4b:
06:eb:c0:b9:ff:8e:c1:0b:50:da:65:55:b5:0f:58:6f:2e:1f:
cc:0a:3a:1f:af:fd:3e:53:26:40:dd:2f:db:a3:5f:c6:35:cf:
0a:10:df:20:58:ee:c9:38:88:92:e8:a3:6d:ec:d7:ad:eb:65:
00:a3:a8:35:28:86:3b:26:5c:2e:8b:b0:81:0c:e0:9e:89:41:
43:81:97:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 16:06:09 2025 by rpki-client