Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/D-caeuVZGA72_r1jMiWkbOlp3Ao.roa
File: D-caeuVZGA72_r1jMiWkbOlp3Ao.roa (raw, json)
Hash identifier: Iqgyp32AYcHNyJ1z2qvy57JZgNgX1MXo4gqBl7Ef9yw=
Subject key identifier: 0F:E7:1A:7A:E5:59:18:0E:F6:FE:BD:63:32:25:A4:6C:E9:69:DC:0A
Certificate issuer: /CN=72047be15b275902dcf617dc3d0e16dc1f308022
Certificate serial: 0189D2475A1FC77D579E4E686AF236DB21AB
Authority key identifier: 72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/D-caeuVZGA72_r1jMiWkbOlp3Ao.roa
Signing time: Mon 07 Aug 2023 23:13:58 +0000
ROA not before: Mon 07 Aug 2023 23:13:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64:ffff:0:188:7858:a003/128 maxlen: 128
2001:67c:64:ffff:0:186:59e5:727c/128 maxlen: 128
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:189:a0e4:5c7d/128 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d2:47:5a:1f:c7:7d:57:9e:4e:68:6a:f2:36:db:21:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72047be15b275902dcf617dc3d0e16dc1f308022
Validity
Not Before: Aug 7 23:13:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0fe71a7ae559180ef6febd633225a46ce969dc0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:b3:7e:99:34:35:20:ff:fa:e6:6f:bd:b8:fd:
f2:30:88:fb:73:7e:c0:7c:ed:9b:1d:34:70:96:bd:
00:d4:dc:cb:28:b4:a6:da:83:96:21:da:cf:33:25:
da:17:d6:df:f5:e7:0b:93:9d:28:d5:3f:e4:bb:e0:
b5:32:c5:f9:ab:fa:57:89:7f:e5:d5:31:8e:70:34:
48:27:83:a7:0b:5a:02:e4:b3:74:ff:03:0a:75:7e:
58:f6:7c:90:f4:66:1b:8c:b7:6f:e7:69:f1:6b:48:
ac:ba:7b:f4:c5:f4:d8:cf:da:66:20:a1:3f:15:34:
ba:e1:c4:6d:0f:ba:56:da:fa:df:3b:09:cc:5e:51:
5e:0d:2c:e4:32:df:13:cb:6d:09:f7:be:92:a7:a0:
a2:f1:44:8f:91:13:16:fb:88:77:20:de:6d:f4:3d:
67:cc:5f:ae:48:62:84:15:6f:89:d6:8b:27:0a:17:
79:ee:25:aa:97:df:65:2c:f9:11:1b:77:d8:df:db:
94:02:eb:36:ee:d3:b8:3a:3c:39:83:ac:f8:ac:8f:
b7:f4:c2:97:13:3c:01:83:8f:a6:cf:2b:f8:4e:e8:
e8:bd:8d:1b:0b:ad:75:ce:e6:ca:a6:d6:2d:6b:ab:
09:6b:d1:5c:b2:12:f5:ab:17:75:a4:a0:3c:bb:f9:
db:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:E7:1A:7A:E5:59:18:0E:F6:FE:BD:63:32:25:A4:6C:E9:69:DC:0A
X509v3 Authority Key Identifier:
keyid:72:04:7B:E1:5B:27:59:02:DC:F6:17:DC:3D:0E:16:DC:1F:30:80:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgR74VsnWQLc9hfcPQ4W3B8wgCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/D-caeuVZGA72_r1jMiWkbOlp3Ao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/798447-21f4-45ab-99dc-1abe3ac10aa6/1/cgR74VsnWQLc9hfcPQ4W3B8wgCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
2e:36:f1:a4:33:ae:5d:e2:de:42:60:7c:be:f9:1a:5b:67:89:
23:11:86:be:ec:fe:9d:dd:c7:9e:45:c0:b0:60:22:2c:75:66:
67:43:71:0c:b0:02:03:d0:2a:c4:d6:75:d9:42:a4:b8:bf:e0:
0d:e2:68:3f:90:a3:bb:6b:aa:98:44:fc:22:c2:84:24:e2:2f:
13:e7:1a:9c:b1:b2:2d:b2:ed:75:86:97:a5:55:70:86:e9:5b:
25:3d:cb:14:ad:c1:53:d7:89:10:4c:82:06:22:fe:fa:eb:6b:
a3:6e:d0:5d:0b:78:38:d7:dc:4d:06:9d:1c:fd:e6:85:f6:c8:
03:51:69:f7:bc:ba:eb:35:f0:20:80:27:06:62:cf:9a:b2:44:
83:cc:04:15:3d:60:df:12:8f:23:5c:43:bd:f4:0b:ce:8a:ba:
48:10:7e:bf:03:e8:b5:67:28:b9:c3:1a:53:c7:7e:1f:5e:e7:
58:68:e9:0b:b4:29:b9:ce:df:a7:93:83:1e:95:ff:bc:de:26:
73:a1:e5:4e:3c:e1:79:c8:e7:84:db:1f:45:e1:7c:02:02:14:
d4:09:de:b1:48:ce:42:b5:65:c0:30:af:c5:a5:71:8a:2a:fe:
52:a1:45:6d:02:41:07:a6:b6:a4:4f:b0:1a:b1:dc:fa:e3:6d:
11:cf:86:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 21:28:19 2025 by rpki-client