Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/B007h11lTZiCjRjzAew88Zofz5w.roa
File: B007h11lTZiCjRjzAew88Zofz5w.roa (raw, json)
Hash identifier: HxtMP+0bwrno+7F+bn3QAQ430XmG588nLvmcu/J1IUM=
Subject key identifier: 07:4D:3B:87:5D:65:4D:98:82:8D:18:F3:01:EC:3C:F1:9A:1F:CF:9C
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 8ACC3C27
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/B007h11lTZiCjRjzAew88Zofz5w.roa
Signing time: Tue 07 Jun 2022 21:15:02 +0000
ROA not before: Tue 07 Jun 2022 21:15:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:181:22f:7a99/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2328640551 (0x8acc3c27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Jun 7 21:15:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=074d3b875d654d98828d18f301ec3cf19a1fcf9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:fb:a5:a6:b1:d5:b9:fa:fd:f2:a3:d8:ee:be:
86:63:2b:12:1a:05:a6:f2:d3:63:59:71:24:a7:96:
98:73:18:55:b5:6c:3f:32:ef:af:3e:94:e3:1e:86:
03:f3:06:13:b9:b5:8f:c3:d1:ae:36:07:9c:07:36:
33:49:a4:b4:53:2d:37:b5:c3:cc:11:10:5b:76:f8:
aa:ba:8c:4f:49:47:b4:5b:8b:da:f8:83:2d:fc:47:
77:a2:32:22:0f:e7:68:66:3c:3d:6d:4f:7d:22:31:
86:fc:01:ba:18:59:28:fd:d5:b7:81:f4:ab:e8:7c:
25:59:66:1a:2c:f7:7c:56:97:89:b0:cd:a0:d5:25:
30:e3:52:83:ec:7d:11:eb:54:08:88:e5:2a:74:fe:
e0:24:0c:a4:ce:87:1a:be:b0:e3:dc:d2:73:41:18:
53:3f:93:15:a6:88:40:38:fe:00:36:55:11:30:a5:
fa:62:b0:25:d6:16:ac:67:6e:47:c9:37:74:0f:9f:
83:43:ac:9b:fe:72:9a:91:c2:02:77:8e:32:98:e3:
d3:58:f1:b7:8c:ba:7b:7a:b6:94:29:18:e3:44:34:
81:bb:a5:44:25:76:75:6f:99:1f:12:53:c1:15:74:
be:71:25:aa:54:a0:4e:1f:63:38:43:49:16:f1:85:
63:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:4D:3B:87:5D:65:4D:98:82:8D:18:F3:01:EC:3C:F1:9A:1F:CF:9C
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/B007h11lTZiCjRjzAew88Zofz5w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
72:14:5d:2d:d5:b0:67:cc:bd:73:3b:7e:67:8f:14:1a:40:09:
51:38:30:ba:50:44:90:59:f9:77:09:fa:f7:66:08:36:aa:2b:
61:c6:4d:4d:13:47:7e:21:60:1f:e4:0f:a7:63:2d:77:47:7a:
35:be:42:4b:f9:45:b6:34:0c:7f:43:bb:f1:0b:55:8d:49:89:
33:e6:32:72:cd:fb:db:94:b7:70:63:0b:ad:fd:35:96:c3:c6:
fe:e4:2c:0e:2d:6f:0d:4d:5e:c1:97:e3:47:34:80:91:42:1f:
3c:3a:b6:8d:62:98:28:ae:0e:d6:35:91:96:62:48:23:8e:d5:
3d:01:3e:ec:e3:3e:15:b0:5d:15:87:b8:06:9e:b9:65:ad:ce:
d1:5f:16:48:15:25:74:8e:94:34:81:6c:22:3a:cb:5f:96:87:
bd:04:fb:cd:c5:b8:53:03:0a:f9:c5:d2:40:44:46:57:60:4b:
fd:eb:4c:30:26:24:6e:b6:90:1e:38:41:48:45:ee:6b:14:16:
65:d5:a1:d9:1f:c6:5e:a4:41:9c:fa:f9:0c:c2:88:63:8c:23:
cd:74:66:02:07:ad:80:1d:7a:5f:2f:57:53:5b:32:82:a4:17:
eb:4a:aa:6a:3b:0b:24:5e:d2:9b:3e:78:bd:af:49:58:14:2b:
87:7d:7f:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 02:25:28 2025 by rpki-client