Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Bl34T8UqYI9dp2WJTKs_BY0vf8U.roa
File: Bl34T8UqYI9dp2WJTKs_BY0vf8U.roa (raw, json)
Hash identifier: 5G5hWIVPfZwxqeOFIf8sRE3l7Lb5lPwNhnRrrbJWs2E=
Subject key identifier: 06:5D:F8:4F:C5:2A:60:8F:5D:A7:65:89:4C:AB:3F:05:8D:2F:7F:C5
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0189DE4347ED37ECA8E54EEA8E3FF1F386C1
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Bl34T8UqYI9dp2WJTKs_BY0vf8U.roa
Signing time: Thu 10 Aug 2023 07:04:58 +0000
ROA not before: Thu 10 Aug 2023 07:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:189:de42:c569/128 maxlen: 128
2001:67c:64:ffff:0:189:a0e4:5c7d/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:de:43:47:ed:37:ec:a8:e5:4e:ea:8e:3f:f1:f3:86:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Aug 10 07:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=065df84fc52a608f5da765894cab3f058d2f7fc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d5:68:ad:18:8e:b8:3f:33:b6:56:90:63:0f:
23:71:f6:6e:66:b9:b6:01:25:da:46:68:dc:cd:36:
7a:71:b1:e3:f5:6e:8f:d2:5a:82:3e:79:2e:d7:3d:
55:60:2a:96:b1:0e:d5:8b:41:9f:0c:17:ac:a6:c6:
5f:72:05:d0:9c:ab:5f:66:f8:82:38:8d:91:2e:01:
07:a0:1b:59:55:df:4f:6e:13:74:73:86:61:b2:59:
58:c6:99:c8:1a:c6:23:e1:57:69:63:73:bf:e2:a5:
96:22:01:a4:6a:b5:58:a0:f4:03:4f:89:b9:54:48:
fa:b1:d0:06:05:7d:13:8c:92:4e:39:28:2d:ef:2b:
53:16:47:a6:08:55:a1:69:0b:fd:60:e6:5d:c0:a9:
d4:b2:fa:79:64:c8:77:17:c6:51:91:95:de:bb:65:
dd:5d:b5:7f:45:38:bf:85:3f:0d:44:a2:85:22:41:
16:ac:df:f4:db:dc:fe:4e:f5:2f:2c:f2:76:a3:91:
47:02:9a:2f:06:93:2f:55:c6:66:14:4d:86:31:f0:
2b:71:f4:ae:ba:17:8d:88:02:f5:b5:66:ce:10:9d:
97:66:e8:0b:6c:70:37:26:9e:39:05:da:65:9c:07:
d5:80:35:0b:b6:d6:46:75:a9:35:81:e0:69:51:e8:
f7:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:5D:F8:4F:C5:2A:60:8F:5D:A7:65:89:4C:AB:3F:05:8D:2F:7F:C5
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Bl34T8UqYI9dp2WJTKs_BY0vf8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
26:9f:d1:bb:56:e6:24:4a:f2:5e:d3:fc:67:08:ac:4f:00:18:
4a:64:b5:7c:55:29:b7:aa:3b:55:84:41:23:39:d5:0f:11:44:
39:ac:e6:bf:dc:20:8d:54:e4:b3:36:bf:a8:d2:9c:e4:eb:75:
20:0a:42:de:78:0f:96:79:02:63:23:90:fe:d6:31:e6:4a:66:
2f:57:6e:72:77:cb:5e:27:c6:f0:73:85:ef:c4:65:09:4a:5b:
34:0f:80:0d:b4:16:b2:8a:3c:ed:be:dd:21:e3:d9:d5:9b:ec:
0f:41:e9:9f:77:dc:6b:a1:9f:42:de:7b:0d:a0:5e:eb:59:af:
8e:84:ab:0c:e5:a3:0f:31:3d:a1:26:86:d4:ea:c3:7f:6b:6e:
28:cb:c9:ef:bb:46:56:51:c4:9e:f4:ad:d1:f9:b4:81:d6:6c:
a1:67:26:01:e3:ee:a6:13:90:5a:21:82:f9:8b:07:73:a0:d0:
98:8d:de:d5:06:35:8c:26:f1:7e:41:70:35:95:7b:fb:d2:90:
75:0c:bb:83:cf:05:52:0b:20:40:d2:51:38:8b:9a:6e:92:bb:
2c:a5:66:5e:b6:9e:1a:d8:ae:cb:f6:0e:7e:b1:8f:72:7b:ee:
a0:11:13:bd:1e:da:1e:c4:89:0f:a7:77:4a:3e:f6:f2:e6:19:
e6:33:83:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 20:40:07 2025 by rpki-client