Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Ce3GBME19WY0DL13_qRp2ZtlpNc.roa
File: Ce3GBME19WY0DL13_qRp2ZtlpNc.roa (raw, json)
Hash identifier: iDIeLmdOgFlGJyIlioHuKqc4fZMBXp5L3NFhn1X9Y2w=
Subject key identifier: 09:ED:C6:04:C1:35:F5:66:34:0C:BD:77:FE:A4:69:D9:9B:65:A4:D7
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 01883D243EF76464AF2021DC3EAA74F4683D
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Ce3GBME19WY0DL13_qRp2ZtlpNc.roa
Signing time: Sun 21 May 2023 07:09:25 +0000
ROA not before: Sun 21 May 2023 07:09:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:186:d20f:1e28/128 maxlen: 128
2001:67c:64:ffff:0:186:a1c7:a442/128 maxlen: 128
2001:67c:64:ffff:0:186:92f9:8437/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64:ffff:0:186:6f5a:adbb/128 maxlen: 128
2001:67c:64:ffff:0:186:7ecd:cc90/128 maxlen: 128
2001:67c:64:ffff:0:187:4695:a68a/128 maxlen: 128
2001:67c:64:ffff:0:186:6e7e:de02/128 maxlen: 128
2001:67c:64:ffff:0:186:9e58:8c82/128 maxlen: 128
2001:67c:64:ffff:0:186:cfe9:cd16/128 maxlen: 128
2001:67c:64:ffff:0:187:fa9a:b088/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:186:c678:c9dc/128 maxlen: 128
2001:67c:64:ffff:0:187:b2b8:a7dd/128 maxlen: 128
2001:67c:64:ffff:0:186:620c:ed81/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:3d:24:3e:f7:64:64:af:20:21:dc:3e:aa:74:f4:68:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: May 21 07:09:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=09edc604c135f566340cbd77fea469d99b65a4d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:5b:ec:0e:40:94:5b:5d:e4:f2:ad:f4:55:0f:
e2:98:23:9d:bc:e4:bf:f4:2b:c8:78:f9:03:c4:56:
0f:fd:c5:07:b4:28:39:e0:d1:ac:00:2b:6a:7e:2c:
dd:c2:05:98:ad:22:7b:41:64:f4:e5:30:5a:7c:8a:
19:1a:dd:86:b5:19:e0:20:70:7f:e0:59:88:35:36:
5e:cc:ec:59:4f:4f:c9:a3:52:9a:64:f3:80:00:8d:
c0:07:2b:da:ae:5d:25:48:20:73:b4:0f:f5:82:99:
35:95:0e:44:0a:80:6d:f4:29:c9:8f:31:2f:64:ff:
0a:3e:83:77:cf:a7:55:82:b1:b3:84:4f:e0:1b:1b:
f1:b8:5d:79:3e:07:9e:8e:b7:b4:30:e3:83:ee:d6:
4d:e1:9d:3e:f4:c6:5a:eb:d5:e4:f5:1a:f5:f5:bf:
fd:2c:5a:d2:31:4b:f0:a4:08:eb:96:a8:48:51:f2:
97:8c:36:df:fe:61:da:95:d1:dc:08:b4:74:95:a1:
a9:69:9f:e0:a3:f7:99:6b:9b:28:29:28:33:13:03:
73:40:0d:19:80:e4:61:37:7c:5a:27:13:29:c1:21:
e5:73:56:a5:e9:63:1e:80:b5:8b:0d:a0:18:87:91:
7c:0d:f6:bf:a0:14:94:b3:29:8b:1b:29:94:ab:83:
5a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:ED:C6:04:C1:35:F5:66:34:0C:BD:77:FE:A4:69:D9:9B:65:A4:D7
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/Ce3GBME19WY0DL13_qRp2ZtlpNc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
78:4b:74:aa:79:8c:99:e1:6b:9c:ee:a0:e3:67:aa:93:be:8f:
02:1c:1e:37:ea:61:4b:57:3d:10:7a:52:71:d6:17:15:c9:ef:
23:6a:53:53:a7:a5:4d:22:3d:da:0f:4f:c0:fa:2b:70:90:e4:
38:be:d6:b0:83:8f:38:47:df:5d:a3:71:f9:c5:d6:02:90:d8:
2d:4d:84:ee:cf:88:88:90:2d:91:6f:1a:9b:39:7f:32:37:93:
4d:9d:31:c4:c5:b5:9e:d7:f2:d0:30:2c:0e:79:41:8d:73:c9:
79:dc:fe:e6:ce:68:7b:06:e0:c5:f8:33:eb:24:f5:98:ce:f9:
b4:25:77:14:7e:7d:4f:65:d7:44:de:79:7e:64:fc:94:17:6a:
fa:73:fc:26:a9:33:42:19:6a:a4:7a:95:1a:ef:94:fe:51:65:
71:40:ec:a1:b6:18:c9:32:4b:93:97:c3:a1:03:5a:8c:04:af:
2c:a9:3c:d6:01:cc:0d:86:13:ba:98:1f:bd:c6:a5:ae:f6:47:
a4:2b:f8:19:0b:09:7f:c4:a6:8b:cd:26:57:f9:e4:31:0e:dd:
d2:a1:ea:aa:c9:5a:aa:c0:80:ee:5b:b6:52:cb:51:27:21:62:
69:4d:60:a8:97:90:f6:b4:3c:10:aa:98:73:f4:92:1f:52:81:
32:19:8b:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 21:44:05 2025 by rpki-client