Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/AsCzgvO6QVEysnPEcvZX357pI6s.roa
File: AsCzgvO6QVEysnPEcvZX357pI6s.roa (raw, json)
Hash identifier: 9824JssAuRuWF2kag7pHiu1OoASRwVg723qhzEVhS2g=
Subject key identifier: 02:C0:B3:82:F3:BA:41:51:32:B2:73:C4:72:F6:57:DF:9E:E9:23:AB
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 018A3BDDB22795BB1EE1571DC62206187581
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/AsCzgvO6QVEysnPEcvZX357pI6s.roa
Signing time: Mon 28 Aug 2023 11:18:19 +0000
ROA not before: Mon 28 Aug 2023 11:18:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:3b:dd:b2:27:95:bb:1e:e1:57:1d:c6:22:06:18:75:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Aug 28 11:18:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=02c0b382f3ba415132b273c472f657df9ee923ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:77:3d:4a:85:bd:d2:d6:0e:08:33:7e:12:2d:
0f:6b:4d:de:d8:92:91:c8:e8:a1:d8:fe:97:3e:52:
b0:4f:c6:fb:70:30:6f:bf:83:8e:81:1f:6f:14:5a:
11:a6:c6:86:0a:64:ef:97:2d:91:bf:6a:40:ec:f3:
30:7f:e5:22:75:ca:c9:cc:c1:1e:39:30:01:b8:7b:
67:5e:6b:55:e2:6e:f4:93:0f:c8:08:a1:39:e4:d8:
d3:ac:4a:6d:e5:f6:36:86:c5:ea:6b:6a:7a:49:03:
96:00:31:2e:0a:18:90:bb:47:cb:e7:98:2c:27:43:
1f:32:f6:61:c2:d5:a3:f6:ba:0a:4d:67:ae:83:36:
f5:d7:d9:67:9d:f2:43:6a:47:f1:9f:27:c1:83:ae:
f0:13:da:58:52:f4:47:76:c5:ac:c0:d6:c3:85:44:
1e:56:dd:f9:af:2e:fc:53:f6:fc:ff:e4:87:dd:74:
9a:4d:09:3c:d8:0c:8c:96:a2:de:27:e7:00:26:c4:
8b:7b:22:29:f2:ec:ea:4a:21:42:b6:d7:e9:7d:64:
5d:92:bb:c9:b2:b5:54:b6:67:ed:da:30:c6:df:38:
d6:6d:20:bd:3f:d9:41:7a:9e:d1:de:68:04:6f:21:
a2:b5:c3:5d:38:f8:a9:b2:e2:e0:88:c2:18:a5:93:
e2:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:C0:B3:82:F3:BA:41:51:32:B2:73:C4:72:F6:57:DF:9E:E9:23:AB
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/AsCzgvO6QVEysnPEcvZX357pI6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
86:32:c2:41:1b:e0:e4:76:47:4c:6d:44:6c:2e:b7:a8:fb:1e:
b7:74:23:23:1a:10:78:fd:47:42:db:06:55:90:f1:a2:c1:c9:
43:de:16:f9:db:46:87:8b:e1:5d:0b:eb:a3:35:db:3b:df:90:
85:cc:23:f7:c8:ab:87:35:02:ad:d5:66:1f:b4:db:4c:ba:0d:
bb:fa:53:85:8d:ec:e0:cd:f8:39:43:80:5a:91:6d:f6:72:e3:
d2:82:38:7e:6e:ea:59:73:d2:17:4e:b5:f5:be:c1:56:cd:07:
07:41:c8:4f:f7:81:3e:08:c9:ae:49:cd:44:24:f2:e2:d7:41:
f6:79:e2:a0:b5:35:32:f7:40:f3:1b:c4:a2:8d:17:37:ad:28:
50:29:94:27:99:10:d7:c8:1e:51:b0:26:b2:1f:ae:4e:e3:95:
1f:23:2f:47:79:9a:42:74:96:95:13:8f:89:cf:86:69:b7:f0:
fa:7c:9a:07:5e:8e:03:81:30:19:32:72:9f:6f:31:be:84:4b:
a2:0f:7d:7a:c4:a7:a2:8b:8d:2f:f9:4e:e3:0d:c4:0a:90:3f:
7d:7d:f5:b7:38:8c:02:b0:c7:63:a8:c6:59:af:75:16:07:fe:
bb:52:c7:e0:af:b9:c6:b4:d9:45:c9:7d:ad:2c:e0:08:dd:3c:
b7:7e:84:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 07:10:33 2025 by rpki-client