Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/BSJYfGUr7i1FrZwYg6jPhWbjNbs.roa
File: BSJYfGUr7i1FrZwYg6jPhWbjNbs.roa (raw, json)
Hash identifier: M2qrULDij3mHNFe9tq/fWSrMz5cN1Zsy2mCmojUkwKI=
Subject key identifier: 05:22:58:7C:65:2B:EE:2D:45:AD:9C:18:83:A8:CF:85:66:E3:35:BB
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0183CC22CE38A29AC0DF367A5130322882D3
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/BSJYfGUr7i1FrZwYg6jPhWbjNbs.roa
Signing time: Wed 12 Oct 2022 12:19:36 +0000
ROA not before: Wed 12 Oct 2022 12:19:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:cc:22:ce:38:a2:9a:c0:df:36:7a:51:30:32:28:82:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Oct 12 12:19:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0522587c652bee2d45ad9c1883a8cf8566e335bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:79:13:2a:e4:33:e1:0b:bc:c9:ef:58:24:f3:
1c:4d:af:97:f9:36:20:33:06:3d:65:60:79:67:b4:
9f:b7:45:fd:25:68:71:62:c5:0c:6a:1e:57:af:48:
6f:b7:c5:66:55:86:b9:06:de:c3:69:80:20:27:e0:
d7:b1:60:f7:05:cd:7e:44:a6:fb:ef:f6:e3:bf:8b:
c7:56:7d:82:f4:1b:1b:12:a3:55:3b:56:97:5d:9d:
18:1b:39:9a:49:df:57:4a:31:53:a9:cd:36:91:a8:
c0:67:d8:f1:3b:bf:f3:a3:c6:f0:dc:67:9f:09:d4:
d6:39:6c:7f:75:85:27:87:d1:d9:1e:38:9a:ba:d1:
3c:eb:7b:a9:5b:bd:b4:d9:da:b0:bf:99:61:0b:dc:
5c:39:5b:e6:32:49:57:96:64:25:7b:ba:26:95:76:
68:5a:fd:be:01:fa:72:06:0f:7c:ae:45:ce:1e:be:
ce:d4:da:6f:a7:2e:f2:fd:d7:da:ad:77:57:ce:28:
bd:2a:aa:af:8b:79:af:f7:fc:e1:ad:ed:03:9a:89:
6d:0c:16:97:80:c7:76:01:6f:aa:6c:d7:f8:88:65:
f2:d0:21:5e:d3:64:8d:40:1a:e1:33:a0:03:1f:2f:
9c:ff:40:78:f0:53:f3:e6:66:72:4c:76:b4:96:42:
a8:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:22:58:7C:65:2B:EE:2D:45:AD:9C:18:83:A8:CF:85:66:E3:35:BB
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/BSJYfGUr7i1FrZwYg6jPhWbjNbs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
7a:c2:a4:0a:07:b3:c9:a9:99:16:28:f6:a0:59:ca:3d:3e:06:
bf:89:07:da:aa:e0:25:08:7a:93:1c:0e:0d:7e:bf:e8:e0:6d:
2b:a7:8c:fd:93:44:86:9e:4e:8a:4a:44:75:e3:31:8f:b7:2c:
b8:c0:f8:3a:dc:43:f3:b7:b3:f0:57:25:b2:a6:4b:f1:58:38:
d1:ba:26:31:15:f3:76:9d:48:1c:9d:cc:25:0a:3c:27:33:81:
f2:33:e4:5c:e4:85:6a:0f:09:97:99:13:68:50:78:0e:81:d0:
0c:9d:fc:07:4f:b5:b0:04:16:bd:ec:17:15:c6:36:04:9f:3c:
29:7a:57:ca:2b:85:18:9d:a9:c6:4b:26:1c:28:86:8d:6a:b9:
74:70:11:b8:f7:32:c8:9d:32:7d:2b:61:dd:e4:ab:2c:e3:08:
60:bb:37:e5:42:8e:e4:2f:a7:8b:0d:44:f9:12:b6:f2:dc:1a:
45:1d:d6:02:03:7e:cf:a4:b1:fd:2b:50:ab:90:2a:d3:4e:93:
c4:e7:c2:37:7d:1c:24:ca:b2:3f:e7:75:8a:84:0b:74:5a:4f:
fb:eb:17:8a:9e:62:0a:a3:23:3a:94:51:70:65:bc:1c:22:cf:
c8:79:cc:26:2f:b9:43:e6:66:22:b6:30:28:f5:94:a3:6d:fc:
96:c4:93:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 00:42:12 2025 by rpki-client