Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/A1einRHLB7pBLD5iYY2Gxr7GP3M.roa
File: A1einRHLB7pBLD5iYY2Gxr7GP3M.roa (raw, json)
Hash identifier: wbqoQFBiGjg2FFh+H/Z4VOlDoX2qjTEwbOAEtSZ85PM=
Subject key identifier: 03:57:A2:9D:11:CB:07:BA:41:2C:3E:62:61:8D:86:C6:BE:C6:3F:73
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0186D662EEDD0F109713355A2E724F2690A1
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/A1einRHLB7pBLD5iYY2Gxr7GP3M.roa
Signing time: Sun 12 Mar 2023 15:14:13 +0000
ROA not before: Sun 12 Mar 2023 15:14:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:d6:62:ee:dd:0f:10:97:13:35:5a:2e:72:4f:26:90:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Mar 12 15:14:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0357a29d11cb07ba412c3e62618d86c6bec63f73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:da:ce:60:3e:d9:41:22:1d:8c:c7:1f:77:19:
89:bb:37:32:e9:2c:5e:66:47:e8:93:cb:46:e7:02:
46:77:99:00:29:3c:1e:4d:e5:4e:d2:5f:6e:0e:e2:
b4:68:dc:31:ed:c7:ee:a2:c8:bc:47:98:bc:05:37:
5e:a3:05:a0:f4:01:c3:b7:5a:3d:47:d0:d9:2c:aa:
9f:17:24:31:c6:e5:4a:96:2a:be:2b:57:e6:4e:46:
1a:0d:1d:b3:bf:dc:ad:aa:16:e2:c7:e7:b1:00:6d:
d6:56:45:2d:a2:57:a7:b7:2e:0d:d6:bc:21:f8:be:
90:06:4c:0c:a2:9a:f8:64:12:76:5d:d1:02:ca:4a:
7c:71:48:42:36:2a:4a:32:ff:b4:23:7e:c8:e9:68:
1f:bf:f8:a1:87:4d:d2:a0:cf:aa:80:ff:ee:2b:42:
bd:6f:38:d3:a3:bd:97:2b:87:9d:47:b2:99:4c:02:
5c:4d:c2:be:9e:02:e6:db:e0:0c:3c:24:13:0d:fd:
12:ac:e2:d5:87:19:b3:e7:95:03:1a:fe:b1:2f:c2:
8a:24:38:5f:8b:84:27:56:c5:03:2a:b5:72:c3:2d:
cd:cb:0e:4f:d1:a0:88:4d:81:20:5d:54:06:79:48:
38:fc:fe:2e:6d:63:85:aa:22:f1:0f:bc:90:6b:93:
f5:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:57:A2:9D:11:CB:07:BA:41:2C:3E:62:61:8D:86:C6:BE:C6:3F:73
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/A1einRHLB7pBLD5iYY2Gxr7GP3M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
a8:69:b7:ff:5f:e0:d2:14:83:c0:b7:34:e2:cf:33:a6:7c:c4:
62:45:df:eb:d3:0f:5e:9b:d1:3c:2d:54:e0:9f:fa:75:11:8e:
3c:0e:b6:87:7e:17:47:2b:58:ce:eb:a6:bb:76:f8:56:09:f8:
11:3b:33:00:a7:93:87:ae:c5:87:d9:2d:0d:b2:36:64:35:d3:
f9:bb:5f:c1:86:f1:b6:0d:e6:fb:32:a6:ba:a3:57:b9:c2:2a:
ff:75:4b:2d:73:fd:fb:d2:2e:fc:ba:fa:af:38:16:c5:8b:cb:
4c:de:d5:1a:8c:37:bb:60:69:1c:df:88:2e:ed:92:01:32:36:
0e:66:7c:0d:ea:76:4d:de:92:42:c8:bd:56:bd:17:0f:7c:61:
f7:ce:59:d9:20:00:b9:c4:fb:55:85:54:6e:b2:fa:3d:9d:63:
6c:4e:2a:6c:aa:b9:03:9b:31:e8:e6:6a:07:a1:e9:95:4b:6e:
a2:2b:30:19:3a:ce:80:41:e4:4c:f6:ea:66:62:e4:6f:c3:7a:
29:46:01:d8:1a:71:d8:c7:63:dd:f3:2d:8b:72:90:23:ea:0f:
d2:75:70:1a:98:6c:49:56:b0:63:bb:10:c5:2f:27:a5:8a:87:
d2:23:5b:9c:d1:f4:55:ed:b4:62:cb:3b:e4:d2:9d:4f:d3:51:
be:7a:ce:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 17:42:38 2025 by rpki-client