Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/BqQbSQn5w36CxxhcLt9W4rsI2YQ.roa
File: BqQbSQn5w36CxxhcLt9W4rsI2YQ.roa (raw, json)
Hash identifier: ZdP5tV8wJoVp9UpjnofMn6N8OW7427XYYOM2gbe7atw=
Subject key identifier: 06:A4:1B:49:09:F9:C3:7E:82:C7:18:5C:2E:DF:56:E2:BB:08:D9:84
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0187D8127F09A4C3DFAC1F329D706FE8DA3A
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/BqQbSQn5w36CxxhcLt9W4rsI2YQ.roa
Signing time: Mon 01 May 2023 16:08:23 +0000
ROA not before: Mon 01 May 2023 16:08:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:d8:12:7f:09:a4:c3:df:ac:1f:32:9d:70:6f:e8:da:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 1 16:08:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=06a41b4909f9c37e82c7185c2edf56e2bb08d984
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:9f:73:59:81:e6:e9:e3:6d:38:26:3a:fb:d2:
56:f7:f9:3b:4d:c1:ad:72:27:9f:40:38:8a:2d:46:
93:ad:4c:0c:96:2e:e2:45:58:b2:e4:a5:5b:23:73:
24:88:61:25:85:3c:00:64:34:0f:74:dd:16:d0:f5:
28:ba:8f:4a:d2:37:43:01:57:f3:db:46:3c:d5:bd:
16:8f:69:9c:09:ee:2a:c0:2b:89:12:4e:34:19:77:
2f:75:ff:0f:88:b5:28:bc:87:88:30:30:ee:47:e4:
18:86:19:7c:a6:95:1e:f1:34:78:18:c1:10:4e:36:
8f:33:82:17:e4:fe:16:09:b0:dd:6e:cf:5f:88:be:
d4:6b:70:a6:d3:0b:db:03:b9:50:b3:8e:39:aa:37:
c0:83:34:bc:b0:47:72:37:42:9f:c1:43:eb:ff:ab:
19:37:c4:77:a9:43:3d:94:24:08:9c:2a:d9:04:07:
6f:f7:cd:2c:98:7a:36:58:e6:0d:6f:e2:33:7b:6a:
3a:45:b8:8c:c4:d4:70:85:5b:c8:c7:09:f0:bc:ef:
2d:11:3b:c7:af:1f:cf:57:e1:af:a4:50:ab:09:ec:
3d:74:11:cf:30:fc:c3:e6:80:e1:6e:8e:d0:59:e0:
2d:5e:39:d0:43:9a:f0:dc:b3:b3:b6:09:6c:4b:82:
00:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:A4:1B:49:09:F9:C3:7E:82:C7:18:5C:2E:DF:56:E2:BB:08:D9:84
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/BqQbSQn5w36CxxhcLt9W4rsI2YQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
ae:39:3d:4c:93:70:d0:bc:f1:0a:c4:9e:4e:df:e8:e9:dc:43:
7e:88:62:2b:ae:35:bf:42:29:1d:d4:7d:02:50:9f:8a:3a:b8:
53:5a:01:9e:92:4c:2e:2d:c9:c1:ae:eb:c8:d1:5d:6c:11:7d:
a3:2c:ad:1d:a2:e7:87:8a:0b:d0:7d:98:bf:ad:66:24:9a:36:
ed:09:42:9a:fb:a0:62:6f:0f:f1:91:32:c1:42:64:ac:ab:4f:
27:a1:6c:89:34:56:26:20:fb:6f:51:7c:0a:b6:88:c5:f8:9c:
61:ed:54:17:e0:1e:a6:e4:5a:d3:df:3a:09:61:cb:ec:8b:b2:
4e:20:f1:63:6e:a9:06:84:7e:06:4c:50:83:81:d1:f9:f6:4a:
4d:90:d4:6c:3f:50:eb:9b:42:c7:9e:33:b8:1a:47:49:e1:60:
f7:cd:c2:8f:b0:8b:b8:f9:4b:a9:c9:72:cf:8a:57:fa:4a:c3:
cd:e6:19:35:ef:37:11:e3:60:f3:d9:e9:90:20:66:7c:52:41:
67:2c:d9:a9:be:06:3d:c9:28:64:97:7a:6c:d0:3b:70:89:62:
10:71:3b:41:d3:e4:6b:33:0c:36:f9:a1:30:0e:ba:7f:8d:f1:
11:ee:0f:8c:dc:3c:41:2c:88:fd:fc:ff:d0:4e:d5:09:35:c8:
28:c0:90:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 22:48:21 2025 by rpki-client